TY - GEN
T1 - Leveraging Data Provenance to Enhance Cyber Resilience
AU - Moyer, Thomas
AU - Chadha, Karishma
AU - Cunningham, Robert
AU - Schear, Nabil
AU - Smith, Warren
AU - Bates, Adam
AU - Butler, Kevin
AU - Capobianco, Frank
AU - Jaeger, Trent
AU - Cable, Patrick
N1 - Publisher Copyright:
© 2016 IEEE.
PY - 2017/2/1
Y1 - 2017/2/1
N2 - Building secure systems used to mean ensuring a secure perimeter, but that is no longer the case. Today's systems are ill-equipped to deal with attackers that are able to pierce perimeter defenses. Data provenance is a critical technology in building resilient systems that will allow systems to recover from attackers that manage to overcome the "hard-shell" defenses. In this paper, we provide background information on data provenance, details on provenance collection, analysis, and storage techniques and challenges. Data provenance is situated to address the challenging problem of allowing a system to "fight-through" an attack, and we help to identify necessary work to ensure that future systems are resilient.
AB - Building secure systems used to mean ensuring a secure perimeter, but that is no longer the case. Today's systems are ill-equipped to deal with attackers that are able to pierce perimeter defenses. Data provenance is a critical technology in building resilient systems that will allow systems to recover from attackers that manage to overcome the "hard-shell" defenses. In this paper, we provide background information on data provenance, details on provenance collection, analysis, and storage techniques and challenges. Data provenance is situated to address the challenging problem of allowing a system to "fight-through" an attack, and we help to identify necessary work to ensure that future systems are resilient.
UR - http://www.scopus.com/inward/record.url?scp=85015150309&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85015150309&partnerID=8YFLogxK
U2 - 10.1109/SecDev.2016.034
DO - 10.1109/SecDev.2016.034
M3 - Conference contribution
AN - SCOPUS:85015150309
T3 - Proceedings - 2016 IEEE Cybersecurity Development, SecDev 2016
SP - 107
EP - 114
BT - Proceedings - 2016 IEEE Cybersecurity Development, SecDev 2016
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 2016 IEEE Cybersecurity Development, SecDev 2016
Y2 - 3 November 2016 through 4 November 2016
ER -