ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
Introducing secure provenance: problems and challenges
Full text PdfPdf (153 KB)
Source
Workshop On Storage Security And Survivability archive
Proceedings of the 2007 ACM workshop on Storage security and survivability table of contents
Alexandria, Virginia, USA
SESSION: Secure paths table of contents
Pages: 13 - 18  
Year of Publication: 2007
ISBN:978-1-59593-891-6
Authors
Ragib Hasan  University of Illinois at Urbana-Champaign, Urbana, IL
Radu Sion  Stony Brook University, Stony Brook, NY
Marianne Winslett  University of Illinois at Urbana-Champaign, Urbana, IL
Sponsors
ACM: Association for Computing Machinery
SIGSAC: ACM Special Interest Group on Security, Audit, and Control
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 20,   Downloads (12 Months): 177,   Citation Count: 2
Additional Information:

abstract   references   cited by   index terms   collaborative colleagues  

Tools and Actions: Request Permissions Request Permissions    Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/1314313.1314318
What is a DOI?

ABSTRACT

Data provenance summarizes the history of the ownership of the item, as well as the actions performed on it. While widely used in archives, art, and archeology, provenance is also very important in forensics, scientific computing, and legal proceedings involving data. Significant research has been conducted in this area, yet the security and privacy issues of provenance have not been explored. In this position paper, we define the secure provenance problem and argue that it is of vital importance in numerous applications. We then discuss a select few of the issues related to ensuring the privacy and integrity of provenance information.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
IBM 4758 PCI Cryptographic Coprocessor. Online at http://www-03.ibm.com/security/cryptocards/pcicc/overview.shtml, 2006.
 
2
IBM 4764 PCI-X Cryptographic Coprocessor. Online at http://www-03.ibm.com/security/cryptocards/pcixcc/overview.shtml, 2007.
 
3
IBM Cryptographic Hardware. Online at http://www-03.ibm.com/security/products/, 2007.
 
4
Trusted Computing Group. Online at https://www.trustedcomputinggroup.org/, 2007.
 
5
Trusted Platform Module (TPM) Specifications. Online at https://www.trustedcomputinggroup.org/specs/TPM, 2007.
6
Atul Adya , William J. Bolosky , Miguel Castro , Gerald Cermak , Ronnie Chaiken , John R. Douceur , Jon Howell , Jacob R. Lorch , Marvin Theimer , Roger P. Wattenhofer, Farsite: federated, available, and reliable storage for an incompletely trusted environment, ACM SIGOPS Operating Systems Review, v.36 n.SI, Winter 2002  [doi>10.1145/844128.844130]
 
7
R. S. Barga and L. A. Digiampietri. Automatic generation of workflow provenance. In Proceedings of the International Provenance and Annotation Workshop (IPAW), pages 1--9, 2006.
 
8
U. Braun, S. L. Garfinkel, D. A. Holland, K.-K. Muniswamy-Reddy, and M. I. Seltzer. Issues in automatic provenance collection. In Proceedings of the International Provenance and Annotation Workshop (IPAW), pages 171--183, 2006.
9
Peter Buneman , Adriane Chapman , James Cheney, Provenance management in curated databases, Proceedings of the 2006 ACM SIGMOD international conference on Management of data, June 27-29, 2006, Chicago, IL, USA  [doi>10.1145/1142473.1142534]
 
10
P. Buneman, A. Chapman, J. Cheney, and S. Vansummeren. A provenance model for manually curated data. In Proceedings of the International Provenance and Annotation Workshop (IPAW), pages 162--170, 2006.
 
11
Peter Buneman , Sanjeev Khanna , Wang Chiew Tan, Data Provenance: Some Basic Issues, Proceedings of the 20th Conference on Foundations of Software Technology and Theoretical Computer Science, p.87-93, December 13-15, 2000
 
12
Peter Buneman , Sanjeev Khanna , Wang Chiew Tan, Why and Where: A Characterization of Data Provenance, Proceedings of the 8th International Conference on Database Theory, p.316-330, January 04-06, 2001
 
13
Centers for Medicare & Medicaid Services. The Health Insurance Portability and Accountability Act of 1996 (HIPAA). Online at http://www.cms.hhs.gov/hipaa/, 1996.
 
14
U. S. Congress. Federal rules of civil procedure. Online at http://www.law.cornell.edu/rules/frcp/, 2006.
15
Frank Dabek , M. Frans Kaashoek , David Karger , Robert Morris , Ion Stoica, Wide-area cooperative storage with CFS, ACM SIGOPS Operating Systems Review, v.35 n.5, Dec. 2001
 
16
B. W. Dearstyne. The archival enterprise: Modern archival principles, practices, and management techniques. American Library Association, 1993.
 
17
Grid-Based Metadata Services, Proceedings of the 16th International Conference on Scientific and Statistical Database Management, p.393, June 21-23, 2004  [doi>10.1109/SSDBM.2004.39]
 
18
Ian T. Foster , Jens-S. Vöckler , Michael Wilde , Yong Zhao, Chimera: AVirtual Data System for Representing, Querying, and Automating Data Derivation, Proceedings of the 14th International Conference on Scientific and Statistical Database Management, p.37-46, July 24-26, 2002  [doi>10.1109/SSDM.2002.1029704]
 
19
James Frew , Rajendra Bose, Earth System Science Workbench: A Data Management Infrastructure for Earth Science Products, Proceedings of the 13th International Conference on Scientific and Statistical Database Management, p.180-189, July 18-20, 2001
 
20
C. Goble. Position statement: Musings on provenance, workflow workflow and (semantic web) annotations for bioinformatics. In Workshop on Data Derivation and Provenance, Chicago, 2002.
 
21
J. Golbeck. Combining provenance with trust in social networks for semantic web content filtering. In Proceedings of the International Provenance and Annotation Workshop (IPAW), pages 101--108, 2006.
 
22
Ragib Hasan , Zahid Anwar , William Yurcik , Larry Brumbaugh , Roy Campbell, A Survey of Peer-to-Peer Storage Techniques for Distributed File Systems, Proceedings of the International Conference on Information Technology: Coding and Computing (ITCC'05) - Volume II, p.205-213, April 04-06, 2005  [doi>10.1109/ITCC.2005.42]
23
Ragib Hasan , Suvda Myagmar , Adam J. Lee , William Yurcik, Toward a threat model for storage systems, Proceedings of the 2005 ACM workshop on Storage security and survivability, November 11-11, 2005, Fairfax, VA, USA  [doi>10.1145/1103780.1103795]
24
Ragib Hasan , William Yurcik, A statistical analysis of disclosed storage security breaches, Proceedings of the second ACM workshop on Storage security and survivability, October 30-30, 2006, Alexandria, Virginia, USA  [doi>10.1145/1179559.1179561]
25
John Kubiatowicz , David Bindel , Yan Chen , Steven Czerwinski , Patrick Eaton , Dennis Geels , Ramakrishan Gummadi , Sean Rhea , Hakim Weatherspoon , Westley Weimer , Chris Wells , Ben Zhao, OceanStore: an architecture for global-scale persistent storage, ACM SIGPLAN Notices, v.35 n.11, p.190-201, Nov. 2000  [doi>10.1145/356989.357007]
 
26
Jinyuan Li , Maxwell Krohn , David Mazières , Dennis Shasha, Secure untrusted data repository (SUNDR), Proceedings of the 6th conference on Symposium on Opearting Systems Design & Implementation, p.9-9, December 06-08, 2004, San Francisco, CA
 
27
Clifford A. Lynch, When documents deceive: trust and provenance as new factors for information retrieval in a tangled web, Journal of the American Society for Information Science and Technology, v.52 n.1, p.12-17, Jan. 2001  [doi>10.1002/1532-2890(2000)52:1<12::AID-ASI1062>3.3.CO;2-M]
 
28
Kiran-Kumar Muniswamy-Reddy , David A. Holland , Uri Braun , Margo Seltzer, Provenance-aware storage systems, Proceedings of the annual conference on USENIX '06 Annual Technical Conference, p.4-4, May 30-June 03, 2006, Boston, MA
 
29
J. D. Myers, T. C. Allison, S. Bittner, B. Didier, M. Frenklach, J. William H. Green, Y.-L. Ho, J. Hewson, W. Koegler, C. Lansing, D. Leahy, M. Lee, R. McCoy, M. Minkoff, S. Nijsure, G. von Laszewski, D. Montoya, C. Pancerella, R. Pinzon, W. Pitz, L. A. Rahn, B. Ruscic, K. Schuchardt, E. Stephan, A. Wagner, T. Windus, and C. Yang. A collaborative informatics infrastructure for multi-scale science. clade, 00:24, 2004.
 
30
National Association of Insurance Commissioners. Graham-Leach-Bliley Act, 1999. www.naic.org/GLBA.
 
31
David Reiner , Gil Press , Mike Lenaghan , David Barta , Rich Urmston, Information Lifecycle Management: The EMC Perspective, Proceedings of the 20th International Conference on Data Engineering, p.804, March 30-April 02, 2004
 
32
C. Sar and P. Cao. Lineage file system. Online at http://crypto.stanford.edu/ cao/lineage.html, January 2005.
33
Yogesh L. Simmhan , Beth Plale , Dennis Gannon, A survey of data provenance in e-science, ACM SIGMOD Record, v.34 n.3, September 2005  [doi>10.1145/1084805.1084812]
 
34
M. Szomszor and L. Moreau. Recording and reasoning over data provenance in web and grid services. In International Conference on Ontologies, Databases and Applications of SEmantics (ODBASE), volume 2888 of Lecture Notes in Computer Science, pages 603--620, Catania, Italy, 2003.
 
35
The U.S. Securities and Exchange Commission. Rule 17a-3&4, 17 CFR Part 240: Electronic Storage of Broker-Dealer Records. Online at http://edocket.access.gpo.gov/cfr_2002/aprqtr/17cfr240.17a-4.htm, 2003.
 
36
U.S. Public Law No. 107-204, 116 Stat. 745. The Public Company Accounting Reform and Investor Protection Act, 2002.
 
37
N. N. Vijayakumar and B. Plale. Towards low overhead provenance tracking in near real-time stream filtering. In Proceedings of the International Provenance and Annotation Workshop (IPAW), pages 46--54, 2006.
 
38
J. Widom. Trio: A system for integrated management of data, accuracy, and lineage. In Proceedings of the Second Biennial Conference on Innovative Data Systems Research (CIDR '05), January 2005.
 
39
J. Zhao, C. A. Goble, R. Stevens, and S. Bechhofer. Semantically linking and browsing provenance logs for e-science. In ICSNW, pages 158--176, 2004.

CITED BY  2
Arnon Rosenthal , Len Seligman , Adriane Chapman , Barbara Blaustein, Scalable access controls for lineage, First workshop on on Theory and practice of provenance, p.1-10, February 23, 2009, San Francisco, CA
Ragib Hasan , Radu Sion , Marianne Winslett, The case of the fake picasso: preventing history forgery with secure provenance, Proccedings of the 7th conference on File and stroage technologies, p.1-14, February 24-27, 2009, San Francisco, California

INDEX TERMS

Primary Classification:
  C. Computer Systems Organization
  C.2 COMPUTER-COMMUNICATION NETWORKS
      C.2.0 General
          Subjects: Security and protection (e.g., firewalls)

Additional Classification:
  D. Software
  D.4 OPERATING SYSTEMS
      D.4.2 Storage Management

  H. Information Systems
  H.3 INFORMATION STORAGE AND RETRIEVAL
      H.3.4 Systems and Software


General Terms:
Security


Keywords:
lineage, provenance, secure storage

Collaborative Colleagues:
Ragib Hasan: colleagues
Radu Sion: colleagues
Marianne Winslett: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player