Data Provenance in Security and Privacy-Reference-Cited by-同舟云学术

Data Provenance in Security and Privacy

Published:2023-07-17 Issue:14s Volume:55 Page:1-35
ISSN:0360-0300
Container-title:ACM Computing Surveys
language:en
Short-container-title:ACM Comput. Surv.

Author:

Pan Bofeng¹^ORCID,Stakhanova Natalia¹^ORCID,Ray Suprio²^ORCID

Affiliation:

1. University of Saskatchewan

2. University of New Brunswick

Abstract

Provenance information corresponds to essential metadata that describes the entities, users, and processes involved in the history and evolution of a data object. The benefits of tracking provenance information have been widely understood in a variety of domains; however, only recently have provenance solutions gained interest in the security community. Indeed, on the one hand, provenance allows for a reliable historical analysis enabling security-related applications such as forensic analysis and attribution of malicious activity. On the other hand, the unprecedented changes in the threat landscape place demands for securing provenance information to facilitate its trustworthiness. With the recent growth of provenance studies in security, in this work we examine the role of data provenance in security and privacy. To set this work in context, we outline fundamental principles and models of data provenance and explore how the existing studies achieve security principles. We further review the existing schemes for securing data provenance collection and manipulation known as secure provenance and the role of data provenance for security and privacy, which we refer to as threat provenance.

Funder

Mitacs-Ericsson Global Artificial Intelligence Accelerator (GAIA) partnership

Publisher

Association for Computing Machinery (ACM)

Subject

General Computer Science,Theoretical Computer Science

Link

https://dl.acm.org/doi/pdf/10.1145/3593294

Reference148 articles.

1. Wikipedia. 2022. Merkle Tree. Retrieved April 28 2023 from https://en.wikipedia.org/wiki/Merkle_tree.

2. A framework for establishing trust in Cloud provenance;Abbadi Imad M.;International Journal of Information Security,2013

3. ProFact: A provenance-based analytics framework for access control policies;Jabal Amani Abu;IEEE Transactions on Services Computing,2021

4. Umut Acar Peter Buneman James Cheney Jan Van Den Bussche Natalia Kwasnikowska and Stijn Vansummeren. 2010. A graph model of data and workflow provenance. In Proceedings of the 2nd Conference on Theory and Practice of Provenance (TAPP’10) . 1–8.

5. Order preserving secure provenance scheme for distributed networks;Ahmed Idrees;Computers & Security,2019

Cited by 4 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. ProvSec: Open Cybersecurity System Provenance Analysis Benchmark Dataset with Labels;International Journal of Networked and Distributed Computing;2023-11-15

2. Forensics Science and Using a Color Model Digital Twin Artwork to Identify a Counterfeit;2023 International Conference on Information and Digital Technologies (IDT);2023-06-22

3. Provenance Data Management in Health Information Systems: A Systematic Literature Review;Journal of Personalized Medicine;2023-06-13

4. A Near Real-Time Big Data Provenance Generation Method Based on the Conjoint Analysis of Heterogeneous Logs;IEEE Access;2023