ArchiMate风险模型的本体分析与再设计

2018 IEEE 22nd International Enterprise Distributed Object Computing Conference (EDOC) Pub Date : 2018-10-01 DOI:10.1109/EDOC.2018.00028

T. P. Sales, J. P. Almeida, S. Santini, F. Baião, G. Guizzardi

{"title":"ArchiMate风险模型的本体分析与再设计","authors":"T. P. Sales, J. P. Almeida, S. Santini, F. Baião, G. Guizzardi","doi":"10.1109/EDOC.2018.00028","DOIUrl":null,"url":null,"abstract":"Risk analysis is a complex and critical activity in various contexts, ranging from strategic planning to IT systems operation. Given its complexity, several Enterprise Architecture (EA) frameworks and modeling languages have been developed to help analysts in representing and analyzing risks. Yet, the notion of risk remains overloaded and conceptually unclear in most of them. In this paper, we investigate the real-world semantics underlying risk-related constructs in one of such approaches, namely ArchiMate's Risk and Security Overlay (RSO). We perform this investigation by means of ontological analysis to reveal semantic limitations in the overlay, such as ambiguity and missing constructs. Building on the results of this analysis, we propose a well-founded redesign of the risk modeling aspects of the RSO.","PeriodicalId":6544,"journal":{"name":"2018 IEEE 22nd International Enterprise Distributed Object Computing Conference (EDOC)","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2018-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"15","resultStr":"{\"title\":\"Ontological Analysis and Redesign of Risk Modeling in ArchiMate\",\"authors\":\"T. P. Sales, J. P. Almeida, S. Santini, F. Baião, G. Guizzardi\",\"doi\":\"10.1109/EDOC.2018.00028\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Risk analysis is a complex and critical activity in various contexts, ranging from strategic planning to IT systems operation. Given its complexity, several Enterprise Architecture (EA) frameworks and modeling languages have been developed to help analysts in representing and analyzing risks. Yet, the notion of risk remains overloaded and conceptually unclear in most of them. In this paper, we investigate the real-world semantics underlying risk-related constructs in one of such approaches, namely ArchiMate's Risk and Security Overlay (RSO). We perform this investigation by means of ontological analysis to reveal semantic limitations in the overlay, such as ambiguity and missing constructs. Building on the results of this analysis, we propose a well-founded redesign of the risk modeling aspects of the RSO.\",\"PeriodicalId\":6544,\"journal\":{\"name\":\"2018 IEEE 22nd International Enterprise Distributed Object Computing Conference (EDOC)\",\"volume\":null,\"pages\":null},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2018-10-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"15\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2018 IEEE 22nd International Enterprise Distributed Object Computing Conference (EDOC)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/EDOC.2018.00028\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2018 IEEE 22nd International Enterprise Distributed Object Computing Conference (EDOC)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/EDOC.2018.00028","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 15

摘要

从战略规划到IT系统操作，风险分析在各种情况下都是一项复杂而关键的活动。鉴于其复杂性，已经开发了一些企业架构(EA)框架和建模语言来帮助分析人员表示和分析风险。然而，风险的概念在大多数情况下仍然是超负荷的，并且在概念上不明确。在本文中，我们研究了其中一种方法中风险相关结构的真实世界语义，即ArchiMate的风险和安全覆盖(RSO)。我们通过本体论分析来进行这项调查，以揭示覆盖中的语义限制，如歧义和缺失结构。在此分析结果的基础上，我们建议对RSO的风险建模方面进行有充分根据的重新设计。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Ontological Analysis and Redesign of Risk Modeling in ArchiMate

Risk analysis is a complex and critical activity in various contexts, ranging from strategic planning to IT systems operation. Given its complexity, several Enterprise Architecture (EA) frameworks and modeling languages have been developed to help analysts in representing and analyzing risks. Yet, the notion of risk remains overloaded and conceptually unclear in most of them. In this paper, we investigate the real-world semantics underlying risk-related constructs in one of such approaches, namely ArchiMate's Risk and Security Overlay (RSO). We perform this investigation by means of ontological analysis to reveal semantic limitations in the overlay, such as ambiguity and missing constructs. Building on the results of this analysis, we propose a well-founded redesign of the risk modeling aspects of the RSO.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2018 IEEE 22nd International Enterprise Distributed Object Computing Conference (EDOC)

自引率

0.00%

发文量