Prov-Trust: Towards a trustworthy sgx-based data provenance system

Nesrine Kaaniche; Sana Belguith; Maryline Laurent; Ashish Gehani; Giovanni Russello

doi:10.5220/0009889302250237

Prov-Trust: Towards a trustworthy sgx-based data provenance system

Nesrine Kaaniche
, Sana Belguith
, Maryline Laurent
, Ashish Gehani
, Giovanni Russello

Résultats de recherche: Le chapitre dans un livre, un rapport, une anthologie ou une collection › Contribution à une conférence › Revue par des pairs

Résumé

Data provenance refers to records of the inputs, entities, systems, and processes that influence data of interest, providing a historical record of the data and its origins. Secure data provenance is vital to ensure accountability, forensics investigation of security attacks and privacy preservation. In this paper, we propose Prov-Trust, a decentralized and auditable SGX-based data provenance system relying on highly distributed ledgers. This consensually shared and synchronized database allows anchored data to have public witness, providing tamper-proof provenance data, enabling the transparency of data accountability, and enhancing the secrecy and availability of the provenance data. Prov-Trust relies on Intel SGX enclave to ensure a trusted execution of the provenance kernel to collect, store and query provenance records. The use of SGX enclave protects data provenance and users' credentials against malicious hosting and processing parties. Prov-Trust does not rely on a trusted third party to store provenance data while performing their verification using smart contracts and voting process. The storage of the provenance data in Prov-Trust is done using either the log events of Smart Contracts or blockchain's transactions depending on the provenance change event, which enables low storage costs. Finally, Prov-Trust ensures an accurate privacy-preserving auditing process based on blockchain traces and achieved thanks to events' logs that are signed by SGX enclaves, transactions being registered after each vote session, and sealing the linking information using encryption schemes.

langue originale	Anglais
titre	ICETE 2020 - Proceedings of the 17th International Joint Conference on e-Business and Telecommunications
rédacteurs en chef	Christian Callegari, Soon Xin Ng, Panagiotis Sarigiannidis, Sebastiano Battiato, Angel Serrano Sanchez de Leon, Adlen Ksentini, Pascal Lorenz, Mohammad Obaidat, Mohammad Obaidat, Mohammad Obaidat
Editeur	SciTePress
Pages	225-237
Nombre de pages	13
ISBN (Electronique)	9789897584459
Les DOIs	https://doi.org/10.5220/0009889302250237
état	Publié - 1 janv. 2020
Evénement	17th International Conference on Security and Cryptography, SECRYPT 2020 - Part of the 17th International Joint Conference on e-Business and Telecommunications, ICETE 2020 - Virtual, Online, France Durée: 8 juil. 2020 → 10 juil. 2020

Série de publications

Nom	ICETE 2020 - Proceedings of the 17th International Joint Conference on e-Business and Telecommunications
Volume	3

Une conférence

Une conférence	17th International Conference on Security and Cryptography, SECRYPT 2020 - Part of the 17th International Joint Conference on e-Business and Telecommunications, ICETE 2020
Pays/Territoire	France
La ville	Virtual, Online
période	8/07/20 → 10/07/20

Accès au document

10.5220/0009889302250237

Autres fichiers et liens

Lien vers la publication dans Scopus

Contient cette citation

Kaaniche, N., Belguith, S., Laurent, M., Gehani, A., & Russello, G. (2020). Prov-Trust: Towards a trustworthy sgx-based data provenance system. Dans C. Callegari, S. X. Ng, P. Sarigiannidis, S. Battiato, A. S. S. de Leon, A. Ksentini, P. Lorenz, M. Obaidat, M. Obaidat, & M. Obaidat (eds.), ICETE 2020 - Proceedings of the 17th International Joint Conference on e-Business and Telecommunications (p. 225-237). (ICETE 2020 - Proceedings of the 17th International Joint Conference on e-Business and Telecommunications; Vol 3). SciTePress. https://doi.org/10.5220/0009889302250237

Kaaniche, Nesrine ; Belguith, Sana ; Laurent, Maryline et al. / Prov-Trust : Towards a trustworthy sgx-based data provenance system. ICETE 2020 - Proceedings of the 17th International Joint Conference on e-Business and Telecommunications. Editeur / Christian Callegari ; Soon Xin Ng ; Panagiotis Sarigiannidis ; Sebastiano Battiato ; Angel Serrano Sanchez de Leon ; Adlen Ksentini ; Pascal Lorenz ; Mohammad Obaidat ; Mohammad Obaidat ; Mohammad Obaidat. SciTePress, 2020. p. 225-237 (ICETE 2020 - Proceedings of the 17th International Joint Conference on e-Business and Telecommunications).

@inproceedings{cbcc408e09cc4d82a1d5f7e06af92144,

title = "Prov-Trust: Towards a trustworthy sgx-based data provenance system",

abstract = "Data provenance refers to records of the inputs, entities, systems, and processes that influence data of interest, providing a historical record of the data and its origins. Secure data provenance is vital to ensure accountability, forensics investigation of security attacks and privacy preservation. In this paper, we propose Prov-Trust, a decentralized and auditable SGX-based data provenance system relying on highly distributed ledgers. This consensually shared and synchronized database allows anchored data to have public witness, providing tamper-proof provenance data, enabling the transparency of data accountability, and enhancing the secrecy and availability of the provenance data. Prov-Trust relies on Intel SGX enclave to ensure a trusted execution of the provenance kernel to collect, store and query provenance records. The use of SGX enclave protects data provenance and users' credentials against malicious hosting and processing parties. Prov-Trust does not rely on a trusted third party to store provenance data while performing their verification using smart contracts and voting process. The storage of the provenance data in Prov-Trust is done using either the log events of Smart Contracts or blockchain's transactions depending on the provenance change event, which enables low storage costs. Finally, Prov-Trust ensures an accurate privacy-preserving auditing process based on blockchain traces and achieved thanks to events' logs that are signed by SGX enclaves, transactions being registered after each vote session, and sealing the linking information using encryption schemes.",

keywords = "Blockchain, Data integrity, Data provenance, Intel sGX, Privacy preserving",

author = "Nesrine Kaaniche and Sana Belguith and Maryline Laurent and Ashish Gehani and Giovanni Russello",

note = "Publisher Copyright: Copyright {\textcopyright} 2020 by SCITEPRESS - Science and Technology Publications, Lda. All rights reserved; 17th International Conference on Security and Cryptography, SECRYPT 2020 - Part of the 17th International Joint Conference on e-Business and Telecommunications, ICETE 2020 ; Conference date: 08-07-2020 Through 10-07-2020",

year = "2020",

month = jan,

day = "1",

doi = "10.5220/0009889302250237",

language = "English",

series = "ICETE 2020 - Proceedings of the 17th International Joint Conference on e-Business and Telecommunications",

publisher = "SciTePress",

pages = "225--237",

editor = "Christian Callegari and Ng, \{Soon Xin\} and Panagiotis Sarigiannidis and Sebastiano Battiato and \{de Leon\}, \{Angel Serrano Sanchez\} and Adlen Ksentini and Pascal Lorenz and Mohammad Obaidat and Mohammad Obaidat and Mohammad Obaidat",

booktitle = "ICETE 2020 - Proceedings of the 17th International Joint Conference on e-Business and Telecommunications",

}

Kaaniche, N, Belguith, S, Laurent, M, Gehani, A & Russello, G 2020, Prov-Trust: Towards a trustworthy sgx-based data provenance system. Dans C Callegari, SX Ng, P Sarigiannidis, S Battiato, ASS de Leon, A Ksentini, P Lorenz, M Obaidat, M Obaidat & M Obaidat (eds), ICETE 2020 - Proceedings of the 17th International Joint Conference on e-Business and Telecommunications. ICETE 2020 - Proceedings of the 17th International Joint Conference on e-Business and Telecommunications, VOL. 3, SciTePress, p. 225-237, 17th International Conference on Security and Cryptography, SECRYPT 2020 - Part of the 17th International Joint Conference on e-Business and Telecommunications, ICETE 2020, Virtual, Online, France, 8/07/20. https://doi.org/10.5220/0009889302250237

Prov-Trust: Towards a trustworthy sgx-based data provenance system. / Kaaniche, Nesrine; Belguith, Sana; Laurent, Maryline et al.
ICETE 2020 - Proceedings of the 17th International Joint Conference on e-Business and Telecommunications. Ed. / Christian Callegari; Soon Xin Ng; Panagiotis Sarigiannidis; Sebastiano Battiato; Angel Serrano Sanchez de Leon; Adlen Ksentini; Pascal Lorenz; Mohammad Obaidat; Mohammad Obaidat; Mohammad Obaidat. SciTePress, 2020. p. 225-237 (ICETE 2020 - Proceedings of the 17th International Joint Conference on e-Business and Telecommunications; Vol 3).

Résultats de recherche: Le chapitre dans un livre, un rapport, une anthologie ou une collection › Contribution à une conférence › Revue par des pairs

TY - GEN

T1 - Prov-Trust

T2 - 17th International Conference on Security and Cryptography, SECRYPT 2020 - Part of the 17th International Joint Conference on e-Business and Telecommunications, ICETE 2020

AU - Kaaniche, Nesrine

AU - Belguith, Sana

AU - Laurent, Maryline

AU - Gehani, Ashish

AU - Russello, Giovanni

PY - 2020/1/1

Y1 - 2020/1/1

N2 - Data provenance refers to records of the inputs, entities, systems, and processes that influence data of interest, providing a historical record of the data and its origins. Secure data provenance is vital to ensure accountability, forensics investigation of security attacks and privacy preservation. In this paper, we propose Prov-Trust, a decentralized and auditable SGX-based data provenance system relying on highly distributed ledgers. This consensually shared and synchronized database allows anchored data to have public witness, providing tamper-proof provenance data, enabling the transparency of data accountability, and enhancing the secrecy and availability of the provenance data. Prov-Trust relies on Intel SGX enclave to ensure a trusted execution of the provenance kernel to collect, store and query provenance records. The use of SGX enclave protects data provenance and users' credentials against malicious hosting and processing parties. Prov-Trust does not rely on a trusted third party to store provenance data while performing their verification using smart contracts and voting process. The storage of the provenance data in Prov-Trust is done using either the log events of Smart Contracts or blockchain's transactions depending on the provenance change event, which enables low storage costs. Finally, Prov-Trust ensures an accurate privacy-preserving auditing process based on blockchain traces and achieved thanks to events' logs that are signed by SGX enclaves, transactions being registered after each vote session, and sealing the linking information using encryption schemes.

AB - Data provenance refers to records of the inputs, entities, systems, and processes that influence data of interest, providing a historical record of the data and its origins. Secure data provenance is vital to ensure accountability, forensics investigation of security attacks and privacy preservation. In this paper, we propose Prov-Trust, a decentralized and auditable SGX-based data provenance system relying on highly distributed ledgers. This consensually shared and synchronized database allows anchored data to have public witness, providing tamper-proof provenance data, enabling the transparency of data accountability, and enhancing the secrecy and availability of the provenance data. Prov-Trust relies on Intel SGX enclave to ensure a trusted execution of the provenance kernel to collect, store and query provenance records. The use of SGX enclave protects data provenance and users' credentials against malicious hosting and processing parties. Prov-Trust does not rely on a trusted third party to store provenance data while performing their verification using smart contracts and voting process. The storage of the provenance data in Prov-Trust is done using either the log events of Smart Contracts or blockchain's transactions depending on the provenance change event, which enables low storage costs. Finally, Prov-Trust ensures an accurate privacy-preserving auditing process based on blockchain traces and achieved thanks to events' logs that are signed by SGX enclaves, transactions being registered after each vote session, and sealing the linking information using encryption schemes.

KW - Blockchain

KW - Data integrity

KW - Data provenance

KW - Intel sGX

KW - Privacy preserving

UR - https://www.scopus.com/pages/publications/85111138820

U2 - 10.5220/0009889302250237

DO - 10.5220/0009889302250237

M3 - Conference contribution

AN - SCOPUS:85111138820

T3 - ICETE 2020 - Proceedings of the 17th International Joint Conference on e-Business and Telecommunications

SP - 225

EP - 237

BT - ICETE 2020 - Proceedings of the 17th International Joint Conference on e-Business and Telecommunications

A2 - Callegari, Christian

A2 - Ng, Soon Xin

A2 - Sarigiannidis, Panagiotis

A2 - Battiato, Sebastiano

A2 - de Leon, Angel Serrano Sanchez

A2 - Ksentini, Adlen

A2 - Lorenz, Pascal

A2 - Obaidat, Mohammad

PB - SciTePress

Y2 - 8 July 2020 through 10 July 2020

ER -

Kaaniche N, Belguith S, Laurent M, Gehani A, Russello G. Prov-Trust: Towards a trustworthy sgx-based data provenance system. Dans Callegari C, Ng SX, Sarigiannidis P, Battiato S, de Leon ASS, Ksentini A, Lorenz P, Obaidat M, Obaidat M, Obaidat M, rédacteurs en chef, ICETE 2020 - Proceedings of the 17th International Joint Conference on e-Business and Telecommunications. SciTePress. 2020. p. 225-237. (ICETE 2020 - Proceedings of the 17th International Joint Conference on e-Business and Telecommunications). doi: 10.5220/0009889302250237

Prov-Trust: Towards a trustworthy sgx-based data provenance system

Résumé

Série de publications

Une conférence

Accès au document

Autres fichiers et liens

Empreinte digitale

Contient cette citation