CSR: Medium: CloudTracker: Transparent, Secure Provenance Tracking and Security Policy Enforcement in Clouds

CSR：中：CloudTracker：云中透明、安全的来源跟踪和安全策略执行

基本信息

批准号：
1161541
负责人：
Radu Sion
金额：
$ 87.1万
依托单位：
SUNY at Stony Brook
依托单位国家：
美国
项目类别：
Continuing Grant
财政年份：
2012
资助国家：
美国
起止时间：
2012-08-01 至 2018-07-31
项目状态：
已结题

来源：
https://www.nsf.gov/awardsearch/showAward?AWD_ID=1161541&HistoricalAwards=false
关键词：
CSR Medium CloudTracker Transparent Secure

项目摘要

As companies, governments, and individual users adopt increasingly diverse computing platforms, from outsourced cloud computations to personal laptops and mobile devices, enforcing uniform security policies across these platforms becomes unwieldy.Similarly, regulatory compliance and business auditing requires tracking the history of this data in a comprehensive, secure, and platform-independent manner. Unfortunately, technology has not kept pace with these practical concerns, and several systems and security research challenges must be addressed to make this vision a reality.There is a natural and under-explored connection between understanding the origins of data and using that data's history to enforce security policies. To leverage this connection, this project is developing a comprehensive, general framework for automatically tracking the history of data and enforcing associated security policies in cloud computing environments. The research focuses on three key research challenges. First, the project investigates novel applications of virtualization technologies to transparently infer data provenance by inspecting a guest operating system (OS) and applications. Second, this project is developing techniques to securely store, manage, and query provenance data at cloud scale. Finally, the project combines the first two technologies to transparently and collaboratively enforce security policies throughout the cloud and end-user systems.The prototype system is designed to allow individual users and organizations to rapidly adopt new technology platforms, from clouds to novel end-user systems, without having to worry about the interaction of these new systems with security policies and regulatory compliance concerns.

随着公司，政府和个人用户采用越来越多样化的计算平台，从外包云计算到个人笔记本电脑和移动设备，在这些平台上执行统一的安全策略变得笨拙。类似，监管性合规性和业务审计需要以全面的，安全和平台独立的方式跟踪此数据的历史。不幸的是，技术并没有与这些实际问题保持同步，必须解决一些系统和安全研究挑战，以使这一愿景成为现实。在理解数据的起源和使用该数据历史记录来执行安全策略之间存在自然且不足的联系。为了利用此连接，该项目正在开发一个全面的一般框架，用于自动跟踪云计算环境中数据的历史和执行相关的安全策略。该研究重点是三个关键的研究挑战。首先，该项目通过检查来宾操作系统（OS）和应用程序来调查虚拟化技术的新应用来透明地推断数据出处。其次，该项目正在开发以云规模安全存储，管理和查询出处数据的技术。最后，该项目结合了前两种技术，以透明，协作地执行整个云和最终用户系统的安全策略。该原型系统旨在允许单个用户和组织快速采用新技术平台，从云到新颖的最终用户系统，而不必担心这些新系统与安全策略和法规合规性问题的交互。

项目成果

期刊论文数量（0）

专著数量（0）

科研奖励数量（0）

会议论文数量（0）

专利数量（0）

数据更新时间：{{ journalArticles.updateTime }}

DOI：
{{ item.doi }}
发表时间：
{{ item.publish_year }}
期刊：
{{ item.journal_name }}
影响因子：
{{ item.factor }}
作者：
{{ item.authors }}
通讯作者：
{{ item.author }}

数据更新时间：{{ journalArticles.updateTime }}

作者：
{{ item.author }}

数据更新时间：{{ monograph.updateTime }}

作者：
{{ item.author }}

数据更新时间：{{ sciAawards.updateTime }}

作者：
{{ item.author }}

数据更新时间：{{ conferencePapers.updateTime }}

作者：
{{ item.author }}

数据更新时间：{{ patent.updateTime }}

Radu Sion其他文献

Sensornet

传感器网

DOI：
发表时间：
2009
期刊：
Encyclopedia of Database Systems
影响因子：
0
作者：
Rodney Topor;Kenneth Salem;Amarnath Gupta;K. Goda;John F. Gehrke;N. Palmer;Mohamed Sharaf;Alexandros Labrinidis;J. Roddick;Ariel Fuxman;Renée J. Miller;Wang;Anastasios Kementsietsidis;Philippe Bonnet;D. Shasha;Ronald Peikert;Bertram Ludäscher;S. Bowers;T. McPhillips;Harald Naumann;K. Voruganti;J. Domingo;Ben Carterette;Panagiotis G. Ipeirotis;Marcelo Arenas;Y. Manolopoulos;Y. Theodoridis;V. Tsotras;B. Carminati;Jan Jurjens;Eduardo B. Fernandez;Murat Kantarcıoǧlu;Jaideep Vaidya;Indrakshi Ray;Athena Vakali;Cristina Sirangelo;E. Pitoura;Himanshu Gupta;Surajit Chaudhuri;G. Weikum;Ulf Leser;David W. Embley;Fausto Giunchiglia;P. Shvaiko;Mikalai Yatskevich;Edward Y. Chang;Christine Parent;S. Spaccapietra;E. Zimányi;G. Anadiotis;S. Kotoulas;Ronny Siebes;Grigoris Antoniou;D. Plexousakis;J. Bailey;François Bry;Tim Furche;Sebastian Schaffert;David Martin;Gregory D. Speegle;Krithi Ramamritham;P. Chrysanthis;Kai;Stéphane Bressan;S. Abiteboul;D. Suciu;G. Dobbie;Tok Wang Ling;Sugato Basu;Ramesh Govindan;Michael H. Böhlen;C. S. Jensen;Jianyong Wang;K. Vidyasankar;A. Chan;Serge Mankovski;S. Elnikety;P. Valduriez;Yannis Velegrakis;Mario A. Nascimento;Michael Huggett;Andrew U. Frank;Yanchun Zhang;Guandong Xu;R. Snodgrass;Alan Fekete;Marcus Herzog;Konstantinos Morfonios;Y. Ioannidis;E. Wohlstadter;M. Matera;F. Schwagereit;Steffen Staab;Keir Fraser;Jingren Zhou;M. Mokbel;Walid G. Aref;Mirella M. Moro;Markus Schneider;Panos Kalnis;Gabriel Ghinita;Michael F. Goodchild;Shashi Shekhar;James Kang;Vijayaprasath Gandhi;Nikos Mamoulis;Betsy George;Michel Scholl;Agnès Voisard;Ralf Hartmut Güting;Yufei Tao;Dimitris Papadias;Peter Revesz;G. Kollios;E. Frentzos;Apostolos N. Papadopoulos;Bernhard Thalheim;Jovan Pehcevski;Benjamin Piwowarski;S. Theodoridis;Konstantinos Koutroumbas;George Karabatis;Don Chamberlin;Philip A. Bernstein;Michael H. Böhlen;J. Gamper;Ping Li;Kazimierz Subieta;S. Harizopoulos;Ethan Zhang;Yi Zhang;Theodore Johnson;Hans;S. Fienberg;Jiashun Jin;Radu Sion;C. Paice;Nikos Hardavellas;Ippokratis Pandis;Edie M. Rasmussen;Hiroshi Yoshida;G. Graefe;Bernd Reiner;Karl Hahn;K. Wada;T. Risch;Jiawei Han;Bolin Ding;Lukasz Golab;Michael Stonebraker;Bibudh Lahiri;Srikanta Tirthapura;Erik Vee;Yanif Ahmad;U. Çetintemel;Mitch Cherniack;S. Zdonik;Mariano P. Consens;M. Lalmas;R. Baeza;D. Hiemstra;Peer Krögerand;Arthur Zimek;Nick Craswell;Carson Kai;Maxime Crochemore;Thierry Lecroq;Arie Shoshani;Jimmy Lin;Hwanjo Yu;David B. Lomet;H. Hinterberger;Ninghui Li;Phillip B. Gibbons;Mouna Kacimi;Thomas Neumann
通讯作者：
Thomas Neumann

INVISILINE : Invisible Plausibly-Deniable Storage

INVISILINE ：隐形的可否认的存储

DOI：
发表时间：
期刊：
影响因子：
0
作者：
Sandeep Kiran Pinjala;Bogdan Carbunar;Anrin Chakraborti;Radu Sion
通讯作者：
Radu Sion

A grid-based approach for enterprise-scale data mining

DOI：
10.1016/j.future.2006.04.003
发表时间：
2007-01-01
期刊：
Research article
影响因子：
作者：
Ramesh Natarajan;Radu Sion;Thomas Phan
通讯作者：
Thomas Phan

Data Gathering

数据收集

DOI：
10.1007/978-0-387-39940-9_2355
发表时间：
2009
期刊：
Encyclopedia of Database Systems
影响因子：
0
作者：
T. Risch;Turkmen Canli;A. Khokhar;Jun Yang;Kamesh Munagala;Adam Silberstein;P. Chrysanthis;E. Pitoura;Venkatesh Ganti;Amol Deshpande;H. Do;James Caverlee;Ninghui Li;L. Gruenwald;Lucian Popa;A. Kansal;Feng Zhao;A. Poulovassilis;M. Herzog;Il;Jiawei Han;Daniel J. Abadi;David P. Hansen;Christine O’Keefe;Theodore Johnson;Amarnath Gupta;C. Batini;K. Sattler;M. Scannapieco;J. Domingo;Rui Zhang;B. Kemme;Qing Zhang;Xuemin Lin;Luc Bouganim;Philip B. Gibbons;Lukasz Golab;Yanif Ahmad;U. Çetintemel;S. Prabhakar;R. Cheng;H. Hinterberger;M. Golfarelli;J. Eder;Karl Wiggisser;Panos Vassiliadis;C. Blanco;E. Fernández;Juan Trujillo;M. Piattini;Shawn N. Murphy;E. Chen;Changqing Li;Xue Li;M. Mattoso;M. Gyssens;J. Mylopoulos;S. Madden;K. Goda;Pat Helland;C. Amza;L. Bertossi;Jean;J. Henrard;V. Englebert;D. Roland;Jean;Elena Ferrari;Biswanath Panda;J. Gehrke;Mirek Riedewald;Mikael Berndtsson;J. Mellin;Surajit Chaudhuri;Vivek R. Narasayya;G. Weikum;Nicolas Bruno;Grigoris Karvounarakis;A. Gokhale;E. Cohen;T. Lin;Alin Dobra;Timothy Roscoe;T. Lin;R. Kaushik;K. Chang;M. Moro;V. Tsotras;Daniel A. Keim;Peter Bak;Matthias Schäfer;M. Ester;A. Borgida;A. Maurino;P. Mitra;Cristina Sirangelo;R.W. Moore;G. Janée;L. Floriani;P. Magillo;V. Srinivasan;Seungwon Yang;Edward A. Fox;Radu Sion;B. Carminati;T. Pedersen;H. Shen;Chris H. Q. Ding;E. Clementini;A. Blackwell;M. Costabile;K. Wada;K. Järvelin;Jaana Kekäläinen;S. Dustdar;Christian Platzer;Bernd J. Krämer;Minos N. Garofalakis;Gail;P. Boncz;Carpendale Sheelagh;M. Weske;Kian;S. Elnikety;W. Tok;Wojciech Galuba;Sarunas Girdzijauskas;Stéphane Bressan;Panos Kalnis;G. Amati;E. Munson;Ying‐tong Zhao;G. Karypis;Frank Wm. Tompa;Vassilis Plachouras;Ben He;Ethan V. Munson;Mary Laarsgard;D. Cook;M. Matera
通讯作者：
M. Matera