Preventing history forgery with secure provenance

Hasan, Ragib; Sion, Radu; Winslett, Marianne

doi:10.1145/1629080.1629082

Cited by 147 publications

(138 citation statements)

References 35 publications

Supporting

Mentioning

138

Contrasting

Order By: Relevance

“…Hasan et al [16] and Braun et al [17] set out a number of research questions, as does a more recent position paper by Davidson et al [20]. Hasan et al [10] develop a mechanism for securing the provenance describing a chain of revisions of a document (say, a file in a file system), using appropriate encryption and digital signatures to allow auditors to check the integrity of the provenance without necessarily having access to the underlying data or vice versa. Zhang et al [18] develop tamper-detection techniques for provenance in databases.…”

Section: Related and Future Workmentioning

confidence: 99%

“…In particular, our model does not have much to say about dynamic provenance in extant systems that seek to record all changes to some shared data [26], or to maintain the integrity of provenance records in a stateful system (e.g. file system) and prevent forgery [10]. We believe that modeling this kind of situation will require further extensions to our model to permit principals to both read and write data and communicate with one another, and to model what can be learned by multiple interactions with the system or other principals.…”

Section: Related and Future Workmentioning

confidence: 99%

“…Among these, the first three seem to address subjective concerns where there is not necessarily a unique way of framing the problem or deriving solutions. The many different models for and implementations of provenance in different systems, such as databases [12], [13], workflow management systems [7], [8], and storage systems [10], [11], suggests that there may be no single definition that applies to all these situations, nor an obvious choice of "best" or most general provenance mechanism even for a specific system. Indeed, it seems likely that the answer to question (2) is actually "no", since any real system can be modeled at finer and finer levels of granularity.…”

Section: Introductionmentioning

confidence: 99%

“…This is a motivation for work on provenance in curated databases [26] and security aspects of this situation are also considered by Zhang et al [18] and Hasan et al [10], [16].…”

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

A Formal Framework for Provenance Security

Cheney

2011

2011 IEEE 24th Computer Security Foundations Symposium

View full text Add to dashboard Cite

Abstract-Provenance, or information about the origin, derivation, or history of data, is becoming an important topic especially for shared scientific or public data on the Web. It clearly has implications on security (and vice versa) yet these implications are not well-understood. A great deal of work has focused on mechanisms for recording, managing or using some kind of provenance information, but relatively little progress has been made on foundational models that define provenance and relate it to security goals such as availability, confidentiality or privacy. We argue that such foundations are essential to making meaningful progress on these problems and should be developed. In this paper, we outline a formal model of provenance, propose formalizations of security properties for provenance such as disclosure and obfuscation, and explore their implications in domains based on automata, database queries and workflow provenance graphs.

show abstract

Section: Related and Future Workmentioning

confidence: 99%

Section: Related and Future Workmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

“…This is a motivation for work on provenance in curated databases [26] and security aspects of this situation are also considered by Zhang et al [18] and Hasan et al [10], [16].…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

A Formal Framework for Provenance Security

Cheney

2011

2011 IEEE 24th Computer Security Foundations Symposium

View full text Add to dashboard Cite

show abstract

“…Many other works on provenance addresses specific problems like provenance in software development known as versionning systems which manages distributed intra-files provenance but are not able to manage inter-files provenance. We also mention recent work on securing provenance from tempering based on cryptographic mechanisms [12]. The particularity of the provenance needs in our work is the superposition of a set of traditional provenance constraints with cloud specific constraints.…”

Section: Related Workmentioning

confidence: 99%

Document Provenance in the Cloud: Constraints and Challenges

Sakka¹,

Defude²,

Tellez³

2010

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Abstract. The amounts of digital information are growing in size and complexity. With the emergence of distributed services over internet and the booming of electronic exchanges, the need to identify information origins and its lifecycle history becomes essential. Essential because it's the only factor ensuring information integrity and probative value. That's why in different areas like government, commerce, medicine and science, tracking data origins is essential and can serve for informational, quality, forensics, regulatory compliance, rights protection and intellectual property purposes. Managing information provenance is a complex task and it has been extensively treated in databases, file system and scientific workflows. However, provenance in the cloud is a more challenging task due to specific problems related to the cloud added to the traditional ones.

show abstract

A novel visualization approach for data provenance

Yazici

Aktaş

2021

Concurrency and Computation

View full text Add to dashboard Cite

Data provenance has led to a developing need for the technologies to empower end-users to assess and take action on the data life cycle. In the Big Data era, companies' amount of data over the world increases each day. As data increases, metadata on the data origin and lifecycle of data also overgrows. Thus, this requires innovations that can provide a better understanding and interpretation of data using data provenance. This study addresses the challenge of extracting data in the form of graphs from scientific workflows and facilitating demanded visualization approaches such as graph comparison, summarization, backward-forward querying, and stream data visualization. W3C-PROV-O provenance specification is implemented via a visualization tool to assess the applicability of proposed algorithms. The proposed algorithms are tested on a large-scale provenance dataset to explore their performance. In addition, this study discusses the details of a comprehensive usability study of the prototype visualization tool. Results indicate that proposed visualization approaches are usable and processing overhead is insignificant.

show abstract

Preventing history forgery with secure provenance

Cited by 147 publications

References 35 publications

A Formal Framework for Provenance Security

A Formal Framework for Provenance Security

Document Provenance in the Cloud: Constraints and Challenges

A novel visualization approach for data provenance

Contact Info

Product

Resources

About