In this paper, we propose a novel localization service to monitor the position of residents in assisted living facilities. The service supports a configurable balancing between precision and privacy, in such a way that the right of the residents to move freely in the environment in which they live without being tracked is preserved. However, in case of need, they can always be quickly localized. To do this, we implement, on top of an RFID-based architecture, a probabilistic model guaranteeing that the probability of identifying a person in a given (sensitive) place is at most $k^{-1}$k-1, where $k$k represents the required privacy level. This is obtained by ensuring that the EPC sent by RFID tags is not an identifier, but is equal to that of at least other $k-1$k-1 people, each afferent to a different reader. We show that our method reaches the goal, resisting also attacks aimed at breaking privacy on the basis of humans’ movement models. Importantly, privacy is guaranteed against both misuse of the administrator and client-side eavesdropping attacks.

中文翻译：

---

辅助生活设施的隐私保护本地化服务

在本文中，我们提出了一种新颖的本地化服务来监控居民在辅助生活设施中的位置。该服务支持精确度和隐私之间的可配置平衡，从而保护居民在他们居住的环境中自由移动而不会被跟踪的权利。但是，在需要的情况下，它们始终可以快速本地化。为此，我们在基于 RFID 的架构之上实施了一个概率模型，以保证在给定（敏感）地点识别一个人的概率至多为$k^{-1}$克——1， 在哪里 $千$克表示所需的隐私级别。这是通过确保 RFID 标签发送的 EPC 不是标识符而获得的，但至少等于其他$k-1$克——1人，每个人都传入不同的读者。我们表明我们的方法达到了目标，还抵抗了旨在基于人类运动模型破坏隐私的攻击。重要的是，可以保证隐私不受管理员滥用和客户端窃听攻击的影响。