Minimizing Disclosure Risk in HHS Open Data Initiatives. References

09/29/2014

Alexander, J. Trent, Michael Davern, and Betsey Stevenson. “Inaccurate Age and Sex Data in the Census PUMS Files: Evidence and Implications.” Public Opinion Quarterly, vol. 74, no. 3 (Fall 2010): 551-569.

Benitez K. and B. Malin. “Evaluating Deidentification Risks with Respect to the HIPAA Privacy Rule.” Journal of the American Medical Informatics Association, vol. 17, 2010, pp. 169–177.

Cavoukian, Ann, and Daniel Castro. “Big Data and Innovation, Setting the Record Straight: De-identification Does Work.” Toronto, Ontario, Canada: Office of the Information and Privacy Commissioner, June 16, 2014.

Ciriani, V., S. De Capitani di Vimercati, S. Foresti, and P. Samarati. “k-Anonymity.” In Secure Data Management in Decentralized Systems, edited by Ting Yu and Sushil Jajodia. New York: Springer, 2007.

Dalenius, Tore. “Towards a Methodology for Statistical Disclosure Control.” Statistik Tidskrift, vol. 15, 1977, pp. 429-444.

Domingo-Ferrer, J., and J.M. Mateo-Sanz. “Practical Data-oriented Microaggregation for Statistical Disclosure Control.” IEEE Transactions on Knowledge and Data Engineering, vol. 14, no. 1 (2002), pp. 189-201.

Duncan, George T., Mark Elliot, and Juan-Jose Salazar-Gonzalez. Statistical Confidentiality: Principles and Practice. New York: Springer, 2011.

Duncan, George T., and Diane Lambert. “The Risk of Disclosure for Microdata.” Journal of Business and Economic Statistics, vol. 7, no. 2, April 1989, pp. 207-217.

Dwork, Cynthia, and Moni Naor. “On the Difficulties of Disclosure Prevention in Statistical Databases or the Case for Differential Privacy.” Journal of Privacy and Confidentiality, vol. 2, no. 1, 2010, pp. 93-107.

El Emam, Khaled, and Fida Kamal Dankar. “Protecting Privacy Using k-Anonymity.” Journal of the American Medical Informatics Association, vol. 15, no. 5, September/October 2008, pp. 627-637.

El Emam, Khaled, Elizabeth Jonker, Luk Arbuckle, and Bradley Malin. “A Systematic Review of Re-Identification Attacks on Health Data.” PLoS ONE, vol. 6, no. 12, December 2011, pp. 1-12.

Federal Committee on Statistical Methodology. “Report on Statistical Disclosure Limitation Methodology.” Statistical Policy Working Paper 22 (second version). Washington, DC: Office of Information and Regulatory Affairs, Office of Management and Budget, 2005.

Golle, Phillippe. “Revising the Uniqueness of Simple Demographics in the U.S. Population.” Palo Alto, CA: Palo Alto Research Center, 2006.

Gouweleeuw, J.M., P. Kooiman, L.C. Willenborg, and P.P. DeWolf. “Post Randomisation for Statistical Disclosure Control: Theory and Implementation.” Research paper no. 9731. Voorburg, Netherlands: Statistics Netherlands, 1997.

Hundepool, A., J. Domingo-Ferrer, L. Franconi, S. Giessing, R. Lenz, J. Naylor, E.S. Nordholt, G. Seri, and P.P. de Wolf. Handbook on Statistical Disclosure Control. A Network Excellence in the European Statistical System in the Field of Statistical Disclosure Control (ESSNet SDC). Hoboken, NJ: Wiley, January 2010.

Kwok, Peter, and Deborah Lafky. “Harder Than You Think: A Case Study of Re-identification Risk of HIPAA-compliant Records.” Proceedings of the Joint Statistical Meetings. Alexandria, VA: American Statistical Association, 2011.

Machanavajjhala, Ashwin, Johannes Gehrke, Daniel Kifer, and Muthuramakrishnan Venkitasubramaniam. “l-Diversity: Privacy Beyond k-Anonymity.” Cornell Computer Science Department Technical Report. Ithaca, NY: Cornell University, 2005.

Marsh, C., C. Skinner, S. Arber, B. Penhale, S. Openshaw, J. Hobcraft, D. Lievesley, and N. Walford. “The Case for Samples of Anonymized Records from the 1991 Census.” Journal of the Royal Statistical Society, Series A, vol. 154, 1991, pp. 305-340.

Narayanan, A. and V. Shmatikov. “Robust De-anonymization of Large Spare Datasets. Proceedings of the IEEE Symposium on Security and Privacy, 2008, pp. 111-125.

National Research Council. Expanding Access to Research Data: Reconciling Risks and Opportunities. Panel on Data Access for Research Purposes, Committee on National Statistics, Division of Behavioral and Social Sciences and Education. Washington, DC: The National Academies Press, 2005.

Office of Management and Budget, Executive Office of the President. “Memorandum Number M-13-13: Open Data Policy––Managing Information as an Asset.” Washington, DC: OMB, May 9, 2013a. Available at [http://www.whitehouse.gov/omb/memoranda_default/]. Accessed July 15, 2013a.

Office of Management and Budget, Executive Office of the President. “Supplemental Guidance on the Implementation of M-13-13 ‘Open Data Policy––Managing Information as an Asset.’” Washington, DC: OMB, May 9, 2013b. Available at [http://www.whitehouse.gov/sites/ default/files/omb/memoranda/2013/m-13-13.pdf]. Accessed July 15, 2013.

Office of Science and Technology Policy, Executive Office of the President. “Increasing Access to the Results of Federally Funded Scientific Research.” Memorandum. Washington, DC: OSTP, February 22, 2013. Available at [http://www.whitehouse.gov/system/files/ microsites/ostp/ostp_public_access_memo_2013.pdf].

Ohm, Paul. “Broken Promises of Privacy: Responding to the Surprising Failure of Anonymization.” UCLA Law Review, vol. 57, 2010, pp. 1701-1777.

Pozen, D.E. “The Mosaic Theory, National Security, and the Freedom of Information Act.” The Yale Law Journal, December 2005, pp. 628–679.

Purdam, K. and M.J. Elliot. “A Case Study of the Impact of Statistical Disclosure Control on Data Quality in the Individual UK Samples of Anonymised Records.” Environmental Planning, Vol. A 39, 2007, pp. 1101-1118.

Rubin, Donald B. “Discussion of Statistical Disclosure Limitation.” Journal of Official Statistics, vol. 9, no. 2, 1993, pp. 461-468.

Sattar, A.H.M. Sarowar, Jiuyong Li, Jixue Liu, Raymond Heatherly, and Bradley Malin. “A Probabilistic Approach to Mitigate Composition Attacks on Privacy in Non-coordinated Environments.” Knowledge-Based Systems, vol. 67, September 2014, pp. 361-372.

Shlomo, Natalie. “Releasing Microdata: Disclosure Risk Estimation, Data Masking, and Assessing Utility.” Journal of Privacy and Confidentiality, vol. 2, no. 1, 2010, pp. 73-91.

Singh, Avinash C. “Maintaining Analytic Utility while Protecting Confidentiality of Survey and Nonsurvey Data.” Journal of Privacy and Confidentiality, vol. 1, no. 2, 2009, pp. 155-182.

Singh, A.C., F. Yu, and G.H. Dunteman. “MASSC: A New Data Mask for Limiting Statistical Information Loss and Disclosure.” In Work Session on Statistical Data Confidentiality 2003, Monographs in Official Statistics, edited by H. Linden, J. Riecan, and L. Belsby, pages 373-394. Luxemburg, Belgium: Eurostat, 2004.

Sweeney, Latanya. “Weaving Technology and Policy Together to Maintain Confidentiality.” Journal of Law, Medicine & Ethics, vol. 25 (1997), pp. 98-110.

Sweeney, Latanya. “Uniqueness of Simple Demographics in the U.S. Population.” Technical report. Pittsburgh, PA: Carnegie Mellon University, 2000.

Sweeney, Latanya. “k-Anonymity: A Model for Protecting Privacy.” International Journal on Uncertainty, Fuzziness and Knowledge-based Systems, vol. 10, no. 5, 2002, pp. 557-570.

U.S. Department of Health and Human Services. “Summary of the HIPAA Privacy Rule.” Washington, DC: U.S. Department of Health and Human Services. Last revised May 2003. Available at [http://www.hhs.gov/ocr/privacy/hipaa/understanding/summary/ privacysummary.pdf]. Accessed June 3, 2014.

U.S. Department of Health and Human Services. “Health Data Initiative.” Washington, DC: HHS, 2013a. Available at [http://www.hhs.gov/open/initiatives/hdi/index.html]. Accessed July 17, 2013.

U.S. Department of Health and Human Services. “Heritage Health Prize Announcement at 2013 Health Datapalooza.” Washington, DC: HHS, 2013b. Available at [http://www.slideshare.net/HealthDataConsortium/health-datapalooza-2013-h.... Accessed July 26, 2013.

U.S. Department of Health and Human Services. Healthdata.gov, Washington, DC. Available at [http://www.healthdata.gov/dataset/search]. Accessed July 24, 2014.

U.S. Department of Health, Education and Welfare, “Records, Computers, and the Rights of Citizens,” Report of the Secretary’s Advisory Committee on Automated Personal Data Systems. Washington, DC: U.S. Department of Health, Education and Welfare. Available at [http://www.justice.gov/opcl/docs/rec-com-rights.pdf]. July 1973.

U.S. Government Accountability Office. “Information Resellers: Consumer Privacy Framework Needs to Reflect Changes in Technology and the Marketplace.” Document number GAO-13-663. Washington, DC: GAO, September 2013.

White House. “Transparency and Open Government.” Memorandum for the Heads of Executive Departments and Agencies. Washington, DC: White House, January 2009. Available at [http://www.whitehouse.gov/the-press-office/TransparencyandOpenGovernment/]. Accessed September 5, 2014.

White House. “President’s Remarks Presenting New Management Agenda.” Washington, DC: White House, July 8, 2013a. Available at [http://www.whitehouse.gov/the-press-office/2013/07/08/remarks-president-.... Accessed July 20, 2013.

White House. “First Look at Next.Data.gov.” Washington, DC: White House, 2013b. Available at [http://www.whitehouse.gov/blog/2013/07/16/first-look-nextdatagov]. Accessed July 20, 2013.

White House. “Executive Order 13642—Making Open and Machine Readable the New Default for Government Information.” Washington, DC: White House, May 9, 2013c. Available at [http://www.whitehouse.gov/the-press-office/2013/05/09/executive-order-ma.... Accessed December 26, 2013.

Zayatz, Laura. “New Ways to Provide More and Better Data to the Public While Still Protecting Confidentiality.” Proceedings of the Joint Statistical Meetings, Section on Survey Research Methods. Alexandria, VA: American Statistical Association, 2008.

View full report

Preview
Download

"rpt_Disclosure.pdf" (pdf, 1.01Mb)

Note: Documents in PDF format require the Adobe Acrobat Reader®. If you experience problems with PDF documents, please download the latest version of the Reader®