De-Anonymization of Health Data: A Survey of Practical Attacks, Vulnerabilities and Challenges

Hamza Aguelal; Paolo Palmieri

doi:10.5220/0013274200003899

De-Anonymization of Health Data: A Survey of Practical Attacks, Vulnerabilities and Challenges

Hamza Aguelal, Paolo Palmieri

2025

Abstract

Health data ranks among the most sensitive personal information disclosing serious details about individuals. Although anonymization is used, vulnerabilities persist, leading to de-anonymization and privacy risks highlighted by regulations like the General Data Protection Regulation (GDPR). This survey examines de-anonymization attacks on health datasets, focusing on methodologies employed, data targeted, and the effectiveness of current anonymization practices. Unlike previous surveys that lack consensus on essential empirical questions, we provide a comprehensive summary of practical attacks, offering a more logical perspective on real-world risk. Our investigation systematically categorizes these practical attacks, revealing insights into success rates, generality and reproducibility, new analytics used, and the specific vulnerabilities they exploit. The study covers health-related datasets, including medical records, genomic data, electrocardiograms (ECGs), and neuroimaging, highlighting the need for more robust anonymization. Significant challenges remain in the literature despite existing reviews. We advocate for stronger data safeness by improving anonymization methods and advancing research on de-anonymization and assessment within healthcare.

Download

Paper Citation

in Harvard Style

Aguelal H. and Palmieri P. (2025). De-Anonymization of Health Data: A Survey of Practical Attacks, Vulnerabilities and Challenges. In Proceedings of the 11th International Conference on Information Systems Security and Privacy - Volume 2: ICISSP; ISBN 978-989-758-735-1, SciTePress, pages 595-606. DOI: 10.5220/0013274200003899

in Bibtex Style

@conference{icissp25,
author={Hamza Aguelal and Paolo Palmieri},
title={De-Anonymization of Health Data: A Survey of Practical Attacks, Vulnerabilities and Challenges},
booktitle={Proceedings of the 11th International Conference on Information Systems Security and Privacy - Volume 2: ICISSP},
year={2025},
pages={595-606},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0013274200003899},
isbn={978-989-758-735-1},
}

in EndNote Style

TY - CONF

JO - Proceedings of the 11th International Conference on Information Systems Security and Privacy - Volume 2: ICISSP
TI - De-Anonymization of Health Data: A Survey of Practical Attacks, Vulnerabilities and Challenges
SN - 978-989-758-735-1
AU - Aguelal H.
AU - Palmieri P.
PY - 2025
SP - 595
EP - 606
DO - 10.5220/0013274200003899
PB - SciTePress