Prov-Trust: Towards a Trustworthy SGX-based Data Provenance System
Nesrine Kaaniche, Sana Belguith, Maryline Laurent, Ashish Gehani, Giovanni Russello
2020
Abstract
Data provenance refers to records of the inputs, entities, systems, and processes that influence data of interest, providing a historical record of the data and its origins. Secure data provenance is vital to ensure accountability, forensics investigation of security attacks and privacy preservation. In this paper, we propose Prov-Trust, a decentralized and auditable SGX-based data provenance system relying on highly distributed ledgers. This consensually shared and synchronized database allows anchored data to have public witness, providing tamper-proof provenance data, enabling the transparency of data accountability, and enhancing the secrecy and availability of the provenance data. Prov-Trust relies on Intel SGX enclave to ensure a trusted execution of the provenance kernel to collect, store and query provenance records. The use of SGX enclave protects data provenance and users’ credentials against malicious hosting and processing parties. Prov-Trust does not rely on a trusted third party to store provenance data while performing their verification using smart contracts and voting process. The storage of the provenance data in Prov-Trust is done using either the log events of Smart Contracts or blockchain’s transactions depending on the provenance change event, which enables low storage costs. Finally, Prov-Trust ensures an accurate privacy-preserving auditing process based on blockchain traces and achieved thanks to events’ logs that are signed by SGX enclaves, transactions being registered after each vote session, and sealing the linking information using encryption schemes.
DownloadPaper Citation
in Harvard Style
Kaaniche N., Belguith S., Laurent M., Gehani A. and Russello G. (2020). Prov-Trust: Towards a Trustworthy SGX-based Data Provenance System.In Proceedings of the 17th International Joint Conference on e-Business and Telecommunications - Volume 3: SECRYPT, ISBN 978-989-758-446-6, pages 225-237. DOI: 10.5220/0009889302250237
in Bibtex Style
@conference{secrypt20,
author={Nesrine Kaaniche and Sana Belguith and Maryline Laurent and Ashish Gehani and Giovanni Russello},
title={Prov-Trust: Towards a Trustworthy SGX-based Data Provenance System},
booktitle={Proceedings of the 17th International Joint Conference on e-Business and Telecommunications - Volume 3: SECRYPT,},
year={2020},
pages={225-237},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0009889302250237},
isbn={978-989-758-446-6},
}
in EndNote Style
TY - CONF
JO - Proceedings of the 17th International Joint Conference on e-Business and Telecommunications - Volume 3: SECRYPT,
TI - Prov-Trust: Towards a Trustworthy SGX-based Data Provenance System
SN - 978-989-758-446-6
AU - Kaaniche N.
AU - Belguith S.
AU - Laurent M.
AU - Gehani A.
AU - Russello G.
PY - 2020
SP - 225
EP - 237
DO - 10.5220/0009889302250237