Bruce Schneier

 

Blog

Crypto-Gram Newsletter

Books

Essays and Op Eds

News and Interviews

Audio and Video

Speaking Schedule

Password Safe

Cryptography

About Bruce Schneier

Contact Information

 

Schneier on Security

A blog covering security and security technology.

« Terrorist Havens | Main | Hacking Two-Factor Authentication »

September 21, 2009

Inferring Friendship from Location Data

Interesting:

For nine months, Eagle's team recorded data from the phones of 94 students and staff at MIT. By using blue-tooth technology and phone masts, they could monitor the movements of the participants, as well as their phone calls. Their main goal with this preliminary study was to compare data collected from the phones with subjective self-report data collected through traditional survey methodology.

The participants were asked to estimate their average spatial proximity to the other participants, whether they were close friends, and to indicate how satisfied they were at work.

Some intriguing findings emerged. For example, the researchers could predict with around 95 per cent accuracy who was friends with whom by looking at how much time participants spent with each other during key periods, such as Saturday nights.

According to the abstract:

Data collected from mobile phones have the potential to provide insight into the relational dynamics of individuals. This paper compares observational data from mobile phones with standard self-report survey data. We find that the information from these two data sources is overlapping but distinct. For example, self-reports of physical proximity deviate from mobile phone records depending on the recency and salience of the interactions. We also demonstrate that it is possible to accurately infer 95% of friendships based on the observational data alone, where friend dyads demonstrate distinctive temporal and spatial patterns in their physical proximity and calling patterns. These behavioral patterns, in turn, allow the prediction of individual-level outcomes such as job satisfaction.

We all leave data shadows everywhere we go, and maintaining privacy is very hard. Here's the EFF writing about locational privacy.

EDITED TO ADD (10/12): More information.

Posted on September 21, 2009 at 1:41 PM14 Comments

To receive these entries once a month by e-mail, sign up for the Crypto-Gram Newsletter.

Comments

researchers could predict with around 95 per cent accuracy who was friends with whom by looking at how much time participants spent with each other during key periods, such as Saturday nights.

That result seems obvious.

Posted by: wiredog at September 21, 2009 1:57 PM

wiredog: "spent with each other" is not necessarily the correct term when all your raw data gives is "were at most a couple of miles apart" ...

Posted by: Anderer Gregor at September 21, 2009 2:06 PM

This was the first thing that came to mind:
http://xkcd.com/539/

Posted by: Tito at September 21, 2009 2:56 PM

Anderer Gregor: actually, more like 10m using triangulation and Bluetooth.

Posted by: Mark at September 21, 2009 2:58 PM

Fortunately, the technical details (pdf) are online for free. If your phone logs that it saw "Amy's Phone" on Bluetooth, you were pretty close to "Amy".

Posted by: Annie Nomous at September 21, 2009 3:30 PM

Posted by: Annie Nomous at September 21, 2009 3:32 PM

"...maintaining privacy is very hard "

________________

Why worry (?) ... we have the entire U.S. Federal government and NSA/FBI relentlessly working to protect citizen privacy and 4th Amendment rights.

CARNIVORE was (is) an example of their fine efforts {?}

Posted by: Eric Blair at September 21, 2009 3:49 PM

http://arxiv.org/ftp/arxiv/papers/0804/...

Earlier work in this vein -- in this case, conducted at the city level.

Posted by: Chris S at September 21, 2009 4:21 PM

Hmmm,

"researchers could predict with around 95 per cent accuracy who was friends with whom by looking at how much time participants spent with each other during key periods, such as Saturday nights."

Having spent the last three weeks in hospital I dread to think what these researchers might infer from my mobile phone location...

The US Gov a few years ago decided that they nolonger needed expensive on the ground unreliable "Human Assets" so cut back on HumInt and went head over heals with technology such as SigInt and ElInt and overhead observation.

Belatedly the US Gov has found out that hard data from TechInt sources whilst acurate does not provide the richness of information that HumInt does...

Time/Location data of this form is TechInt, it provides little or no information from which future actions / associations can be infered.

Importantly it only tells those looking at the data where a phone is not where it's nominal owner is.

Some people already regard this sort of information as being usefull to them for covering up their activities and routienly swap their mobile phones around.

This is not just at the criminal but business levels I suspect that those who can think about such issues and may be effected by them are already taking steps to look like "profile A" not "profile X"...

Posted by: Clive Robinson at September 22, 2009 5:11 AM

Like I said on another forum recently, Lawful Access Legislation only encourages the evolution of an interception/spying culture on our own soil against our own!

We might balk at Big Brother, but lot's of folks will get rich from the relationship!

Posted by: Peter Hillier at September 22, 2009 6:01 AM

um... duh?

Posted by: Shane at September 22, 2009 11:09 AM

Project Gaydar ("Gay Radar")

At MIT, an experiment identifies which students are gay, raising new questions about online privacy

Using data from the social network Facebook, they made a striking discovery: just by looking at a person’s online friends, they could predict whether the person was gay.

http://www.boston.com/bostonglobe/ideas/articles/...

Posted by: Brainfart at September 23, 2009 2:35 PM

I am surprised this study is recent, as I can remember reading, a few years back, of the same kind of study. (In IEEE Security & Privacy, if memory serves me corectly)

In fact, that previous study had claimed to have "accidently" discovered a secret relationship in the staff taking part of the experiment.

So it kind of smells like "déjà vu"

Posted by: Louis at September 24, 2009 11:00 AM

That is 1984 x 1984

Posted by: vasya pupkin at November 8, 2009 3:10 PM

Subscribe to comments on this entry

Post a comment




E-mail is optional and will not be displayed on the site.


Remember Me?


Allowed HTML: <a href="URL"> • <em> <cite> <i> • <strong> <b> • <sub> <sup> • <ul> <ol> <li> • <blockquote> <pre>

Powered by Movable Type. Photo at top by Geoffrey Stone.

Schneier.com is a personal website. Opinions expressed are not necessarily those of BT.

 
Bruce Schneier
Blog Menu

Search


blog only
essays and op eds only
whole site

Blog Home Page
100 Latest Comments

Archives by Date

2012 J F
2011 J F M A M J J A S O N D
2010 J F M A M J J A S O N D
2009 J F M A M J J A S O N D
2008 J F M A M J J A S O N D
2007 J F M A M J J A S O N D
2006 J F M A M J J A S O N D
2005 J F M A M J J A S O N D
2004 J F M A M J J A S O N D

Support Bloggers' Rights!
Defend Privacy--Support Epic
Latest Book
Liars & Outliers
more books by Bruce Schneier
Syndication
Full Text Feed
Excerpts Feed

Follow on Twitter
Subscribe via Kindle

Translations
German
Italian

more translations

Crypto-Gram Newsletter
If you prefer to receive Bruce Schneier's comments on security as a monthly e-mail digest, subscribe to Schneier on Security's sister publication, Crypto-Gram.
read more