Carnegie Mellon University

Data Privacy Course

Project Track 2: Identity Theft and On-line SSNs

Objective

Student projects in this track build on research projects of Prof. Sweeney's called Identity Angel and SSNwatch. The idea is to develop AI technologies that combat identity theft vulnerabilities specifically related to Social Security numbers (SSNs). Student projects in this track test the viability of these tools. More information about these are available here. It should also be noted that student projects in this track also build on prior student projects completed by students enrolled in this course in previous semesters.

Raw Materials

ConvertedResumes Database
In Lab 2 this semester, you built on the prior work of Yea-Wen Yang's student project (Fall 2003). In that project, she located 144 on-line resumes that contained SSNs in which the resumes appeared in PDF format. She then piped the results through Google to provide them in HTML format. This is termed the ConvertedResumes database. If you are working in this track and need a copy of this database, contact Professor Sweeney by sending an email message to paddataprivacylab.org.

Lab 2 Extraction Results
In Lab 2 this semester, you wrote programs to extract the SSN, date of birth, and email address from documents in the ConvertedResumes database. Student solutions and comparative results appear at the end of Lab 2.

LatestResumes Database
Professor Sweeney wrote a routine to extract 75 on-line resumes that contain Social Security numbers. These documents have been stored as text files (if they appeared in a PDF format) and in HTML if they appeared in HTML format on-line. These resumes were extracted recently from the Web (week of 12/1/2004). This database is termed the LatestResumes Database. If you are working in this track and need a copy of this database, contact Professor Sweeney by sending an email message to paddataprivacylab.org.

SSNwatch
During the in-class activites of Lab 3 this semester, you worked with the SSNwatch validation server. This is available on-line at https://dataprivacylab.org/dataprivacy/projects/ssnwatch/index.html. This server provides inferences about the age and demographics of a person using only the first few digits of their SSN.

Filtered Search
Professor Sweeney has written a Java program called FilteredSearch for your use (if needed). This program provides a skeleton for performing automated web searches and filtering the result. Based on search criteria, URL pages are fetched and stored locally. Multiple searches can be automatically perfomed. Searches can be limited to a particular site. Google is used as the basis for the search. (Note. You will have to get a registration key from Google, as described in the header of the Java file.)

Project Ideas

The exact nature of your project is up to you with some guidance from the course TAs and Professor Sweeney. If you are interested in working in this track, then you will need to complete at least one of the activities below as your "first assignment." Then, you can complete a second activity below (or propose and complete another related activity of your own design), so that together they comprise your final project in the course.

Activity A
Contact each of the 75 people in the LatestResumes database by sending them an email. Draft your email message and send it to padlab@Privacy.cs.cmu.edu for review. ONCE YOUR EMAIL MESSAGE is okay'd, you may send it to the individuals. When you send these messages, you must cc a copy to Professor Sweeney (latanya@dataprivacylab.org).
Send each person having a resume in the LatestResume a personal email message alerting them that their SSN was found on-line and that there are identity theft risks associated with providing such information. Use the approved email message. Then, report how many people respond and the nature of the response. Some people may provide email responses directly to you. Record these and classify them. Just before the assignment is due, visit each of the URLs containing the on-line resumes and report how many have the SSNs (or resumes) removed. Do you think the service was well received?
Your presentation goal is to assess the responsiveness and usefulness of alerting people of their risk to identity theft. Your presentation would describe this experiment and report results found.
Activity B
For each of the resumes in the ConvertedResumes databases, enter the first 5 digits in SSNwatch. Report how much of the information found elsewhere in the resume supports (or refutes) the inferences reported by SSNwatch. This can be done by comparing the identity theft uses reported as examples at https://dataprivacylab.org/dataprivacy/projects/ssnwatch/identitytheft.html with the actual information found on the resume.
Your presentation goal is to determine the utlity of SSNwatch as a tool for combating identity theft. Report the usefulness of SSNwatch by reporting how many resumes contained supporting information sufficient to check against. [See also Activity C, D and E.]
Activity C
Perform Activity B using the LatestResumes databases.
Activity D
Perform Activity B, but determine on the accuracy and specificity of SSNwatch by reporting whether the resume information agreed with SSNwatch results in cases where sufficient information in the resume was present. Similarly, report on whether the specificity of the reported information was sufficient for the groups tested. For example, an narrow age prediction within 5 years may be much more specific and useful than a 50 year age range.
Activity E
Perform Activity D using the LatestResumes databases.
Activity F
Search the web for documents containing SSNs by performing on-line searches. You are looking for documents that contain numbers in the format ddd-dd-dddd that could be valid SSNs. You can use Google or another search engine (other than Google) that will search based on numeric patterns.
Another approach is for you to write a program that conducts a brute-force attack by cycling through assigned SSNs to see which appear on-line. You may want to use number ranges that include those SSNs appearing in the ConvertedResumes or LatestResumes databases. Search on each number within a range of legal and useful values surrounding an SSN appearing in one of the databases. Recall, we discussed how SSNs are assigned in an earlier lecture. Not all 9 digits SSNs are valid or likely to represent people having on-line SSNs. Describe the nature and number of documents found. Among them should be resumes. How many were found? Any other kinds of documents?
Rather than the brute force attack on numbers appearing in the format ddd-dd-dddd, described above, you may want to alternatively try keywords (such as SSN, Social Security Number, or ID) and/or search for numbers appearing as a sequence of 9 consecutive digits (surrounded by non-digits). Use the first 5 digits of the numbers to be sure the retrieved documents are likely to hold assigned SSNs. Recall, we discussed how SSNs are assigned in an earlier lecture.
Your presentation goal may any of the following: (a) identify efficient search criteria to harvest on-line SSNs; and/or, (b) identify different kinds of documents that are on-line that contain SSNs. In your presentation, you will provide examples of interesting cases and report overall results.
Activity G
Estimate the number of on-line resumes and the number having SSNs. In order to accomplish this, you have to develop a set of search criteria (about 25 or more). Then, filter through first 100 retrieved results for each search criteria, reporting the nature of retreived documents, the number of actual resumes found, and the number of those containing SSNs.
Your presentation goal is to report on the performance at locating SSNs based on particular search critera. You should show the criteria and results found. You should also allow visitors to your project to review interesting documents by the kind of search criteria you performed.

Final report

Write a summary report of your findings. Include all graphs and findings reported as part of your project presentation. Submit your final report by email to paddataprivacylab.org. Additionally, FTP any cluster results you have as spreadsheets or tab-delimited files, into your personal space on dataprivacylab.org.

Graduate credit

If you are taking this course for graduate credit, you must complete at least three of the activities above (not 2). Rather than writing a project report, you will write a conference-style paper on your work.

Fal 2004 Privacy and Anonymity in Data
Professor: Latanya Sweeney, Ph.D. [latanya@dataprivacylab.org]