Anonymization Defense GUARD (GUarding Anonymization pRoceDures)
Reference number | |
Coordinator | RISE Research Institutes of Sweden AB - RISE AB - Digitala System |
Funding from Vinnova | SEK 7 581 140 |
Project duration | November 2023 - October 2025 |
Status | Ongoing |
Venture | Advanced digitalization - Enabling technologies |
Call | Cyber security for industrial advanced digitalization 2023 |
Purpose and goal
Investigate and address vulnerabilities in using facial manipulation-based anonymisation methods.
Expected effects and result
The project is expected to help Sweden and Swedish industry to comply with privacy legislations while facilitating data sharing and collaboration on data driven and AI tasks. Establishing a strong basis to commercialise anonymization-based technology specifically designed to minimise the impact on data quality.
Planned approach and implementation
The project is a cooperation between Halmstad University, RISE and the consultancy Engage Studios. The work will 1)investigate possible types of attacks (such as reconstruction or adversarial attacks) that may cause risks with regards to the anonymization method. 2)develop defense mechanisms to prevent the attack types investigated in the previous step. 3)explore the robustness of the anonymization method. Two groups of robustness insurance are targeted: (i) robustness to changes in input data and (ii) robustness in the case of insufficient anonymizations.