CERIAS - Center for Education and Research in Information Assurance and Security

Skip Navigation
Purdue University - Discovery Park
Center for Education and Research in Information Assurance and Security

Fake Picassos, Tampered History, and Digital Forgery: Protecting the Genealogy of Bits with Secure Provenance

Ragib Hasan - University of Illinois at Urbana-Champaign

Sep 02, 2009

Size: 611.8MB

Download: Video Icon MP4 Video  
Watch in your Browser   Watch on Youtube Watch on YouTube


As increasing amounts of valuable information are produced and persist
digitally, the ability to determine the origin of data becomes
important. In science, medicine, commerce, and government, data
provenance tracking is essential for rights protection, regulatory
compliance, management of intelligence and medical data, and
authentication of information as it flows through workplace tasks.
While significant research has been conducted in this area, the
associated security and privacy issues have not been explored, leaving
provenance information vulnerable to illicit alteration as it passes
through untrusted environments.

In this talk, we show how to provide strong integrity and
confidentiality assurances for data provenance information in an
untrusted distributed environment. We describe our provenance-aware
system prototype that implements provenance tracking of data writes at
the application layer, which makes it extremely easy to deploy. We
present empirical results that show that, for typical real-life
workloads, the run-time overhead of our approach to recording
provenance with confidentiality and integrity guarantees ranges from
1% - 13%.

For more details, please refer to http://dais.cs.uiuc.edu/provenance

About the Speaker

Ragib Hasan is a Ph.D. candidate at the Department of Computer
Science, University of Illinois at Urbana-Champaign, working with
Prof. Marianne Winslett. He is also co-advised by Prof. Radu Sion of Stony
Brook University. His dissertation focuses on storage security in
general, and secure provenance, tamper-evident data storage, and
term-immutable databases in particular. His other research interests
include trust management, remembrance-capable systems, and computer-
supported collaborative knowledge-generation. Hasan graduated
summa-cum-laude, with a B.S. in Computer Science and Engineering, from
Bangladesh University of Engineering and Technology in 2003. He
received his M.S. in Computer Science from the University of Illinois
at Urbana-Champaign in 2005. He is the recipient of the 2009 NSF/CRA
Computing Innovation (CIFellows) Postdoctoral Fellowship, and would
join the Johns Hopkins University as a postdoctoral researcher in Fall

Unless otherwise noted, the security seminar is held on Wednesdays at 4:30P.M. STEW G52, West Lafayette Campus. More information...


The views, opinions and assumptions expressed in these videos are those of the presenter and do not necessarily reflect the official policy or position of CERIAS or Purdue University. All content included in these videos, are the property of Purdue University, the presenter and/or the presenter’s organization, and protected by U.S. and international copyright laws. The collection, arrangement and assembly of all content in these videos and on the hosting website exclusive property of Purdue University. You may not copy, reproduce, distribute, publish, display, perform, modify, create derivative works, transmit, or in any other way exploit any part of copyrighted material without permission from CERIAS, Purdue University.