CamFlow

CamFlow is a modular Linux implementation of data provenance capture. CamFlow stands for Cambridge Flow Architecture, the Cam is also the river that flows through Cambridge, UK.

View CamFlow github project

CamFlow is a Linux Security Modules (LSMs) designed to capture data provenance for the purpose of system audit (version prior to v0.2.0 also support Decentralised Information Flow Control enforcement). CamFlow can stack with existing security modules such as SELinux.

For instructions on how to install CamFlow visit this link. We also provide vagrant scripts to easily setup virtual machines running CamFlow. The source code is available on our github repository. Please do not hesitate to fork our project or create issues to report bugs.

Research Project

CamFlow is the result of research at the University of Cambridge, Computer Laboratory, Opera Research Group. The project was funded by the Engineering and Physical Sciences Research Council (EPSRC, UK) under the CloudSafetyNet research grant.

From July 2016, the development is being supported at Harvard University's Center for Research on Computation and Society as part of the End to End Provenance (eeProv) project.

Notice

CamFlow is a prototype and a work in progress. It is far from feature-complete, stable or secure. We are working hard to make it so one day.

Publications

CamFlow is discussed in the following publications. Details given in these papers may be outdated - please refer to the code if in doubt, or contact us.

Pasquier T. and Eyers D. Information Flow Audit for Transparency and Compliance in the Handling of Personal Data. IC2E International Workshop on Legal and Technical Issues in Cloud Computing (CLaw'16) (2016), IEEE. .pdf bib 10.1109/IC2EW.2016.29

Pasquier, T., Singh, J., , Bacon, J., and Eyers, D. Information Flow Audit for PaaS Clouds. In International Conference on Cloud Engineering (IC2E) (2016), IEEE. .pdf bib 10.1109/IC2E.2016.19

Pasquier, T., Singh, J., Eyers, D., and Bacon, J. CamFlow: Managed Data-Sharing for Cloud Services. IEEE Transactions on Cloud Computing (2015). .pdf .bib 10.1109/TCC.2015.2489211

Contact

Authors and Contributors