Modeling Data Integrity Threats for Scientific Workflows Using OSCRP and MITRE ATT&CK

Abhinit, Ishan; Adams, Emily K; Chase, Brian; Mandal, Anirban; Xin, Yufeng; Vahi, Karan; Rynge, Mats; Deelman, Ewa

Indiana University

Home
→
Indiana University Bloomington
→
Office of the Vice President for Information Technology/University Information Technology Services
→
Pervasive Technology Institute
→
Center for Applied Cybersecurity Research
→
View Item

Modeling Data Integrity Threats for Scientific Workflows Using OSCRP and MITRE ATT&CK

Abhinit, Ishan; Adams, Emily K; Chase, Brian; Mandal, Anirban; Xin, Yufeng; Vahi, Karan; Rynge, Mats; Deelman, Ewa

Keywords: Data Integrity, threat model, non-malicious, scientific workflows, OSCRP, MITRE ATT&CK

URI: https://hdl.handle.net/2022/28188

Date: 2022-08-22

Type: Working Paper

Abstract:

Guaranteeing the data integrity of scientific workflows and their associated data products, in the face of nonmalicious and malicious threats, is of paramount importance for the validity and credibility of scientific research. In this work, we describe how we can leverage two popular cybersecurity classification frameworks - OSCRP and MITRE ATT&CK®, to systematically model threats to the integrity of scientific workflows and data in a research setting. We enumerate nonmalicious and malicious threats to the integrity of scientific workflows, and present the relevant assets, concerns, avenues of attacks and impact of the threats in typical scientific workflow execution scenarios.

Show full item record