A comprehensive survey on data provenance: State-of-the-art approaches and their deployments for IoT security enforcement-Reference-Cited by-同舟云学术

A comprehensive survey on data provenance: State-of-the-art approaches and their deployments for IoT security enforcement

Published:2021-06-18 Issue:4 Volume:29 Page:423-446
ISSN:1875-8924
Container-title:Journal of Computer Security
language:
Short-container-title:JCS

Author:

Alam Md Morshed¹,Wang Weichao¹

Affiliation:

1. Department of Software and Information Systems, University of North Carolina at Charlotte, NC, USA. E-mails: malam3@uncc.edu, wwang22@uncc.edu

Abstract

Data provenance collects comprehensive information about the events and operations in a computer system at both application and kernel levels. It provides a detailed and accurate history of transactions that help delineate the data flow scenario across the whole system. Data provenance helps achieve system resilience by uncovering several malicious attack traces after a system compromise that are leveraged by the analyzer to understand the attack behavior and discover the level of damage. Existing literature demonstrates a number of research efforts on information capture, management, and analysis of data provenance. In recent years, provenance in IoT devices attracts several research efforts because of the proliferation of commodity IoT devices. In this survey paper, we present a comparative study of the state-of-the-art approaches to provenance by classifying them based on frameworks, deployed techniques, and subjects of interest. We also discuss the emergence and scope of data provenance in IoT network. Finally, we present the urgency in several directions that data provenance needs to pursue, including data management and analysis.

Publisher

IOS Press

Subject

Computer Networks and Communications,Hardware and Architecture,Safety, Risk, Reliability and Quality,Software

Reference70 articles.

1. A Framework for Harmonizing Forensic Science Practices and Digital/Multimedia Evidence, The Organization of Scientific Area Committees for Forensic, Accessed 2020-11-17.

2. Secure Data Provenance in Cloud-Centric Internet of Things via Blockchain Smart Contracts

3. G. Alonso, D. Agrawal, A. Abbadi and C. Mohan, Functionality and Limitations of Current Workflow Management Systems, 1997, unpublished.

4. Data Provenance for IoT using Wireless Channel Characteristics and Physically Unclonable Functions

5. A. Bates, D.J. Tian, K.R.B. Butler and T. Moyer, Trustworthy whole-system provenance for the Linux kernel, in: 24th USENIX Security Symposium (USENIX Security 15), USENIX Association, Washington, DC, 2015, pp. 319–334, ISBN 978-1-931971-232, https://www.usenix.org/conference/usenixsecurity15/technical-sessions/presentation/bates.

Cited by 6 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. IoTHaven: An Online Defense System to Mitigate Remote Injection Attacks in Trigger-action IoT Platforms;2024 IEEE 30th International Symposium on Local and Metropolitan Area Networks (LANMAN);2024-07-10

2. IoTWarden: A Deep Reinforcement Learning Based Real-Time Defense System to Mitigate Trigger-Action IoT Attacks;2024 IEEE Wireless Communications and Networking Conference (WCNC);2024-04-21

3. System-level data management for endpoint advanced persistent threat detection: Issues, challenges and trends;Computers & Security;2023-12

4. Application Research of Data Encryption Algorithm in Computer Security Management;Wireless Communications and Mobile Computing;2022-07-14

5. IoTMonitor: A Hidden Markov Model-based Security System to Identify Crucial Attack Nodes in Trigger-action IoT Platforms;2022 IEEE Wireless Communications and Networking Conference (WCNC);2022-04-10