Name
Abstract | ||
|---|---|---|
Web services often combine or ''mashup'' a collection of heterogeneous data sources. Service providers take data from various sources, including other service providers, and perform some computation or combination of the results and present it to the user. This paper is concerned with the provenance of data provided by web services. Provenance for services includes where the information that is provided by the service originated and who has operated on it. We use a provenance tag that is passed along with the result of the service and contains enough information to recreate a provenance graph. We consider the methods a malicious participant could use to try and fake this provenance information and provide a threat model and security analysis to show our protocol prevents these attacks. We also discuss exclusion attacks where a service provider tries to exclude some input from the provenance information provided. |
Year | DOI | Venue |
|---|---|---|
2011 | 10.1109/UCC.2011.73 | UCC |
Keywords | Field | DocType |
malicious participant,enough information,web services,exclusion attack,security analysis,provenance tag,provenance graph,web service,service provider,heterogeneous data source,verifying digital provenance,provenance information,protocols,servers,verification,cloning,public key,data models,data model | Data modeling,Mashup,World Wide Web,Threat model,Computer science,Server,Service provider,Security analysis,Web service,Public-key cryptography | Conference |
ISBN | Citations | PageRank |
978-1-4577-2116-8 | 0 | 0.34 |
References | Authors | |
11 | 3 | |
Name | Order | Citations | PageRank |
|---|---|---|---|
| Ben Palmer | 1 | 0 | 0.68 |
| Kris Bubendorfer | 2 | 341 | 29.28 |
| IIan Welch | 3 | 0 | 0.34 |