… provenance systems might be exposed to and recommend security solutions to better protect
the provenance … model for securing provenance metadata using cryptocurrency primitives. …

… In this section, we first give several threat models (Section 6.1) commonly used in threat
detection research using provenance graphs. Then we give a comparison of the existing …

… We discuss the existing threat provenance studies and the associated mechanisms for tracing
threats, … systems exhibited is assuring security under relaxed threat models, often implicitly …

… We introduce the threat model in §IV. An overall description of THREATRACE is presented
in §V. We introduce the experiments in §VI and discuss some issues and limitations in §VII. …

… In Section 2 we present in detail the threat model. Then, in Section 3 we introduce our
provenance defense to identify poisonous data when a partially trusted data set is available. In …

… This work describes our progress in defining a threat model and proposing security controls
for provenance systems in the context of e-Science. We identify the assurance of correct …

… in-memory provenance graph analysis as it runs. Prior research that used provenance graphs
for … for detecting APTs from provenance graph data and explaining the predictions to cyber-…

… that effectively leverages data provenance analysis. From modeling to detection, UNICORN
… Through extensive yet time-efficient graph analysis, UNICORN explores provenance graphs …

… We model the data using the W3C provenance labels for nodes and relations [20]. W3C
PROV defines three node types: agent, entity, and activity. Additionally, there are relations …

… data provenance to commercial EDR tools. We introduce the notion of Tactical Provenance
… about causal dependencies between EDR-generated threat alerts. TPGs provide compact …