Files in this item



application/pdfhasan-secure-provenance.pdf (647kB)
Main articlePDF


Title:Preventing History Forgery with Secure Provenance
Author(s):Hasan, Ragib; Sion, Radu; Winslett, Marianne
data protection
Issue Date:2009-05-24
Citation Info:As increasing amounts of valuable information are produced and persist digitally, the ability to determine the origin of data becomes important. In science, medicine, commerce, and government, data provenance tracking is essential for rights protection, regulatory compliance, management of intelligence and medical data, and authentication of information as it flows through workplace tasks. While significant research has been conducted in this area, the associated security and privacy issues have not been explored, leaving provenance information vulnerable to illicit alteration as it passes through untrusted environments. In this paper, we show how to provide strong integrity and confidentiality assurances for data provenance information at the kernel, file system, or application layer. We describe Sprov, our provenance-aware system prototype that implements provenance tracking of data writes at the application layer, which makes Sprov extremely easy to deploy. We present empirical results that show that, for real-life workloads, the runtime overhead of Sprov for recording provenance with confidentiality and integrity guarantees ranges from 1% -- 13%, when all file modifications are recorded, and from 12% -- 16%, when all file read and modifications are tracked.
Publication Status:published or submitted for publication
Peer Reviewed:not peer reviewed
Sponsor:NSF CNS-0716532, CNS- 0803280, CNS-0716608, CNS-0627554, CNS-0708025, IIS-0803197.
Date Available in IDEALS:2009-07-02

This item appears in the following Collection(s)

Item Statistics