Security Assurance for Scientific Workflows

Today, more and more scientists use scientific workflows to integrate and structure various local and remote heterogeneous data and service resources to perform in silico experiments to produce significant scientific discoveries. As a result, scientific workflows have become the de facto cyberinfrastructure upper-ware for e-Science. As more and more scientific research projects become collaborative in nature and involve multiple geographically distributed organizations, many scientific workflows become distributed and inter-organizational. In such environments, it is extremely important that information is accessible by and propagated to only authorized parties. The goal of this project is to secure information propagation in scientific workflows and control the access to provenance metadata of scientific workflows.

Project Members

Publications

Information Flow Analysis of Scientific Workflows, by Ping Yang, Shiyong Lu, Mikhail Gofman, and Zijiang Yang, to appear, Special issue on scientific workflows, Journal of Computer and System Sciences (JCSS) , 2009.

Secure Scientific Workflow Provenance Querying with Security Views, by A. Chebotko, S. Chang, S. Lu, F Fotouhi and P. Yang, 9th International Conference on Web-Age Information Management (WAIM), pages 349-356, © IEEE press, 2008. [pdf]

Formal Modelling and Analysis of Scientific Workflows Using Hierarchical State Machines, by P. Yang, Z. Yang and S. Lu, to appear, 2nd International Workshop on Scientific Workflows and Business Workflow Standards in e-Science, held in conjuction with IEEE international conference on e-science and grid computing, © IEEE press, 2007. [abstract| bibtex| pdf]

Model Checking Approach to Itinerary-based Access Control Enforcement of Mobile Tasks in Scientific Workflows, by Z. Yang, S. Lu and P. Yang, to appear, Journal of Autonomic and Trusted Computing [pdf].