- New
-
Topics
- All Categories
- Metaphysics and Epistemology
- Value Theory
- Science, Logic, and Mathematics
- Science, Logic, and Mathematics
- Logic and Philosophy of Logic
- Philosophy of Biology
- Philosophy of Cognitive Science
- Philosophy of Computing and Information
- Philosophy of Mathematics
- Philosophy of Physical Science
- Philosophy of Social Science
- Philosophy of Probability
- General Philosophy of Science
- Philosophy of Science, Misc
- History of Western Philosophy
- Philosophical Traditions
- Philosophy, Misc
- Other Academic Areas
- Journals
- Submit material
- More
Ontology-based security modeling in ArchiMate
Ítalo Oliveira, Tiago Prince Sales, João Paulo A. Almeida, Riccardo Baratella, Mattia Fumagalli & Giancarlo Guizzardi
Software and Systems Modeling (forthcoming)
Abstract
Enterprise Risk Management involves the process of identification, evaluation, treatment, and communication regarding risks throughout the enterprise. To support the tasks associated with this process, several frameworks and modeling languages have been proposed, such as the Risk and Security Overlay (RSO) of ArchiMate. An ontological investigation of this artifact would reveal its adequacy, capabilities, and limitations w.r.t. the domain of risk and security. Based on that, a language redesign can be proposed as a refinement. Such analysis and redesign have been executed for the risk elements of the RSO grounded in the Common Ontology of Value and Risk. The next step along this line of research is to address the following research problems: What would be the outcome of an ontological analysis of security-related elements of the RSO? That is, can we identify other semantic deficiencies in the RSO through an ontological analysis? Once such an analysis is provided, can we redesign the security elements of the RSO accordingly, in order to produce an improved artifact? Here, with the aid of the Reference Ontology for Security Engineering (ROSE) and the ontological theory of prevention behind it, we address the remaining gap by proceeding with an ontological analysis of the security-related constructs of the RSO. The outcome of this assessment is an ontology-based redesign of the ArchiMate language regarding security modeling. In a nutshell, we report the following contributions: (1) an ontological analysis of the RSO that identifies six limitations concerning security modeling; (2) because of the key role of the notion of prevention in security modeling, the introduction of the ontological theory of prevention in ArchiMate; (3) a well-founded redesign of security elements of ArchiMate; and (4) ontology-based security modeling patterns that are logical consequences of our proposal of redesign due to its underlying ontology of security. As a form of evaluation, we show that our proposal can describe risk treatment options, according to ISO 31000. Finally, besides presenting multiple examples, we proceed with a real-world illustrative application taken from the cybersecurity domain.Author Profiles
My notes
Similar books and articles
Ontological Analysis and Redesign of Security Modeling in ArchiMate.Ítalo Oliveira, Tiago Prince Sales, João Paulo A. Almeida, Riccardo Baratella, Mattia Fumagalli & Giancarlo Guizzardi - 2022 - In Ítalo Oliveira, Tiago Prince Sales, João Paulo A. Almeida, Riccardo Baratella, Mattia Fumagalli & Giancarlo Guizzardi (eds.), The Practice of Enterprise Modeling - 15th IFIP WG 8.1 Working Conference, PoEM 2022. Springer. pp. 82-98.
An Ontology of Security from a Risk Treatment Perspective.Ítalo Oliveira, Tiago Prince Sales, Riccardo Baratella, Mattia Fumagalli & Giancarlo Guizzardi - 2022 - In Ítalo Oliveira, Tiago Prince Sales, Riccardo Baratella, Mattia Fumagalli & Giancarlo Guizzardi (eds.), 41th International Conference, ER 2022, Proceedings. Cham: Springer. pp. 365-379.
Boosting D3FEND: Ontological analysis and recommendations.Ítalo Oliveira, Gal Engelberg, Pedro Paulo F. Barcelos, Tiago Prince Sales, Mattia Fumagalli, Riccardo Baratella, Dan Klein & Giancarlo Guizzardi - forthcoming - In Formal Ontology in Information Systems. Nieuwe Hemweg, The Netherlands: IOS Press.
UFO: Unified Foundational Ontology.Giancarlo Guizzardi, Alessander Bottes Benevides, Claudemir M. Fonseca, João Paulo A. Almeida, Tiago Prince Sales & Daniele Porello - 2022 - Applied ontology 1 (17):167-210.
Understanding and Modeling Prevention.Riccardo Baratella, Mattia Fumagalli, Ítalo Oliveira & Giancarlo Guizzardi - 2022 - In Renata Guizzardi, Jolita Ralyté & Xavier Franch (eds.), Research Challenges in Information Science - 16th International Conference, RCIS 2022. Cham, Svizzera: Springer. pp. 389-405.
Cognitive modeling and representation of knowledge in ontological engineering.Christine W. Chan - 2003 - Brain and Mind 4 (2):269-282.
Towards ontological foundations for conceptual modeling: The unified foundational ontology (UFO) story.Giancarlo Guizzardi, Gerd Wagner, João Paulo Andrade Almeida & Renata S. S. Guizzardi - 2015 - Applied ontology 10 (3-4):259-271.
FORT: a minimal Foundational Ontological Relations Theory for Conceptual Modeling Tasks.Fatima Danash & Danielle Ziebelin - 2022 - 41st International Conference on Conceptual Modeling.
Cognitive Modeling and Representation of Knowledge in Ontological Engineering.Christine W. Chan - 2003 - Brain and Mind 4 (2):269-282.
A Critical Analysis on the Security Architectures of Internet of Things: The Road Ahead.Vivek V. Jog & T. Senthil Murugan - 2018 - Journal of Intelligent Systems 27 (2):149-162.
Ontology of Mathematical Modeling Based on Interval Data.Mykola Dyvak, Andriy Melnyk, Artur Rot, Marcin Hernes & Andriy Pukas - 2022 - Complexity 2022:1-19.
Defining 'ontological category'.Jan Westerhoff - 2002 - Proceedings of the Aristotelian Society 102 (3):287–293.
Endurant Types in Ontology-Driven Conceptual Modeling: Towards OntoUML 2.0.Giancarlo Guizzardi, Tiago Prince Sales, Claudenir M. Fonseca, Daniele Porello, Joao Paulo Almeida & Nicola Guarino - 2018 - In J. C. Trujillo, K. C. Davis, X. Du, Z. Li, T. W. Ling, G. Li & M. L. Lee (eds.), Conceptual Modeling - 37th International Conference, {ER} 2018, Xi'an, China, October 22-25, 2018, Proceedings. Springer. pp. 136--150.
An ontological investigation over human relations in linked data.Miroslav Vacura, Vojtěch Svátek & Aldo Gangemi - 2016 - Applied ontology 11 (3):227-254.
Analytics
Added to PP
2024-02-17
Downloads
171 (#114,136)
6 months
171 (#18,422)
2024-02-17
Downloads
171 (#114,136)
6 months
171 (#18,422)
Historical graph of downloads
PhilPapers logo by Andrea Andrews and Meghan Driscoll.
This site uses cookies and Google Analytics (see our terms & conditions for details regarding the privacy implications). Use of this site is subject to terms & conditions.
All rights reserved by The PhilPapers Foundation
Server: philpapers-web-5ff6c685cb-pqwqt uwo