ABSTRACT
To best illustrate the notion of inference, we focus on the medical domain that generates provenance for a patient’s medical record. The medical records usually consist of some sensitive provenance information. The provenance of a patient’s record is used for purposes such as verification of medical procedures, or tracking the medication usage while under the care of a health care professional. We use the synthetic provenance generated from a toy hospital for our running examples. This provenance will be shown as an RDF graph in order to highlight the sensitive nodes, edges, and paths that our inference controller will protect. In order to understand our approach to secure data provenance and inference control, we will set the stage by describing various inference scenarios whereby we pinpoint possible inference attacks.
