Do You Know Where Your Data's Been? Tamper-Evident Database Provenance

Abstract

Database provenance chronicles the history of updates and modifications to data, and has received much attention due to its central role in scientific data management. However, the use of provenance information still requires a leap of faith. Without additional protections, provenance records are vulnerable to accidental corruption, and even malicious forgery, a problem that is most pronounced in the loosely-coupled multi-user environments often found in scientific research. This paper investigates the problem of providing integrity and tamper-detection for database provenance. We propose a checksum-based approach, which is well-suited to the unique characteristics of database provenance, including non-linear provenance objects and provenance associated with multiple fine granularities of data. We demonstrate that the proposed solution satisfies a set of desirable security properties, and that the additional time and space overhead incurred by the checksum approach is manageable, making the solution feasible in practice.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jan 01, 2010
Accession Number
AD1132116

Entities

People

  • Adriane Chapman
  • Jing Zhang
  • Kristen Lefevre

Organizations

  • MITRE Corporation

Tags

DTIC Thesaurus Topics

  • Algorithms
  • Biological Sciences
  • Blood Cells
  • Cell Count
  • Cells
  • Computer Access Control
  • Computer Science
  • Computers
  • Corporations
  • Cryptography
  • Cybersecurity
  • Data Management
  • Databases
  • Electronic Commerce
  • Environment
  • Relational Database Management Systems
  • Relational Databases
  • Reliability
  • Storage
  • Test And Evaluation

Fields of Study

  • Computer science

Readers

  • Computer Networking
  • Cybersecurity.

Technology Areas

  • Space