Secure Storage and Privacy-Preserving Scanpath Comparison via Garbled Circuits in Eye Tracking
Suleyman Ozdel, Amr Nader, Yasmeen Abdrabou, Enkelejda Kasneci
TLDR
This paper introduces a garbled-circuit approach for secure, privacy-preserving scanpath comparison in eye-tracking data, enabling secure storage and analysis.
Key contributions
- Introduces a garbled-circuit (GC) method for privacy-preserving scanpath comparison in eye tracking.
- Supports two configurations: a two-party setting and a server-assisted setting for secure data processing.
- Ensures secure storage and comparison of gaze data without revealing raw inputs, even with offline data owners.
- Achieves high fidelity for MultiMatch, ScanMatch, and SubsMatch, with practical runtime and communication overhead.
Why it matters
This work addresses the critical need for privacy in eye-tracking data analysis, enabling secure insights from sensitive gaze information. By using garbled circuits, it offers a robust solution for both real-time and offline secure scanpath comparisons, paving the way for broader, privacy-compliant applications.
Original Abstract
With the growing use of eye tracking on VR and mobile platforms, gaze data is increasing. While scanpath comparison is important to gaze behavior analysis, existing methods lack privacy-preserving capabilities for real-world use. We present a garbled-circuit (GC)-based approach enabling secure storage and privacy-preserving scanpath comparison under the semi-honest model. It supports two configurations: (1) a two-party setting where the data owner and processor jointly compute similarity scores without revealing their inputs, and (2) a server-assisted setting where encrypted scanpaths are stored and processed while the data owner remains offline. All decryption and comparison operations are executed inside the GC. Experiments on three eye-tracking datasets evaluate fidelity, runtime, and communication, and show secure results for MultiMatch, ScanMatch, and SubsMatch closely match plaintext outcomes, with manageable runtime and communication overhead. Tests under various network conditions indicate that the design remains feasible for real-world privacy-preserving scanpath analysis and can be extended to other GC-based behavioral algorithms.
📬 Weekly AI Paper Digest
Get the top 10 AI/ML arXiv papers from the week — summarized, scored, and delivered to your inbox every Monday.