An Ontology-Driven Approach for Process-Aware Risk Propagation

Gal Engelberg; Mattia Fumagalli; Adrian Kuboszek; Dan Klein; Pnina Soffer; Giancarlo Guizzardi

doi:10.1145/3555776.3577795

An Ontology-Driven Approach for Process-Aware Risk Propagation

Gal Engelberg, Mattia Fumagalli, Adrian Kuboszek, Dan Klein, Pnina Soffer, Giancarlo Guizzardi

Department of Information Systems

University of Haifa

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

Risk Propagation (RP) is a central technique that allows the calculation of the cascading effect of risk within a system. At the current state, there is a lack of risk propagation solutions that can be used to assess the impact of risk at different levels of abstraction, accounting for actors, processes, physical-digital objects, and their relations. To fill this gap, in this paper, we propose a process-aware risk propagation approach that builds on two main components: i. an ontology, which supports functionalities typical of Semantic Web technologies (SWT), and ii. an ad hoc method to calculate the propagation of risk within the given system. We implemented our approach in a proof-of-concept tool, which was validated in the cybersecurity domain.

Original language	American English
Title of host publication	Proceedings of the 38th ACM/SIGAPP Symposium on Applied Computing, SAC 2023
Publisher	Association for Computing Machinery
Pages	1742-1745
Number of pages	4
ISBN (Electronic)	9781450395175
DOIs	https://doi.org/10.1145/3555776.3577795
State	Published - 27 Mar 2023
Event	38th Annual ACM Symposium on Applied Computing, SAC 2023 - Tallinn, Estonia Duration: 27 Mar 2023 → 31 Mar 2023

Publication series

Name	Proceedings of the 38th ACM/SIGAPP Symposium on Applied Computing

Conference

Conference	38th Annual ACM Symposium on Applied Computing, SAC 2023
Country/Territory	Estonia
City	Tallinn
Period	27/03/23 → 31/03/23

Keywords

ontology-driven risk propagation
risk analytics
risk propagation

All Science Journal Classification (ASJC) codes

Software

Access to Document

10.1145/3555776.3577795

Cite this

Engelberg, G., Fumagalli, M., Kuboszek, A., Klein, D., Soffer, P., & Guizzardi, G. (2023). An Ontology-Driven Approach for Process-Aware Risk Propagation. In Proceedings of the 38th ACM/SIGAPP Symposium on Applied Computing, SAC 2023 (pp. 1742-1745). (Proceedings of the 38th ACM/SIGAPP Symposium on Applied Computing). Association for Computing Machinery. https://doi.org/10.1145/3555776.3577795

@inproceedings{ba57458d534c4644ac41f7262970a540,

title = "An Ontology-Driven Approach for Process-Aware Risk Propagation",

abstract = "Risk Propagation (RP) is a central technique that allows the calculation of the cascading effect of risk within a system. At the current state, there is a lack of risk propagation solutions that can be used to assess the impact of risk at different levels of abstraction, accounting for actors, processes, physical-digital objects, and their relations. To fill this gap, in this paper, we propose a process-aware risk propagation approach that builds on two main components: i. an ontology, which supports functionalities typical of Semantic Web technologies (SWT), and ii. an ad hoc method to calculate the propagation of risk within the given system. We implemented our approach in a proof-of-concept tool, which was validated in the cybersecurity domain.",

keywords = "ontology-driven risk propagation, risk analytics, risk propagation",

author = "Gal Engelberg and Mattia Fumagalli and Adrian Kuboszek and Dan Klein and Pnina Soffer and Giancarlo Guizzardi",

note = "Publisher Copyright: {\textcopyright} 2023 Owner/Author(s).; 38th Annual ACM Symposium on Applied Computing, SAC 2023 ; Conference date: 27-03-2023 Through 31-03-2023",

year = "2023",

month = mar,

day = "27",

doi = "10.1145/3555776.3577795",

language = "American English",

series = "Proceedings of the 38th ACM/SIGAPP Symposium on Applied Computing",

publisher = "Association for Computing Machinery",

pages = "1742--1745",

booktitle = "Proceedings of the 38th ACM/SIGAPP Symposium on Applied Computing, SAC 2023",

address = "United States",

}

Engelberg, G, Fumagalli, M, Kuboszek, A, Klein, D, Soffer, P & Guizzardi, G 2023, An Ontology-Driven Approach for Process-Aware Risk Propagation. in Proceedings of the 38th ACM/SIGAPP Symposium on Applied Computing, SAC 2023. Proceedings of the 38th ACM/SIGAPP Symposium on Applied Computing, Association for Computing Machinery, pp. 1742-1745, 38th Annual ACM Symposium on Applied Computing, SAC 2023, Tallinn, Estonia, 27/03/23. https://doi.org/10.1145/3555776.3577795

An Ontology-Driven Approach for Process-Aware Risk Propagation. / Engelberg, Gal; Fumagalli, Mattia; Kuboszek, Adrian et al.
Proceedings of the 38th ACM/SIGAPP Symposium on Applied Computing, SAC 2023. Association for Computing Machinery, 2023. p. 1742-1745 (Proceedings of the 38th ACM/SIGAPP Symposium on Applied Computing).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - An Ontology-Driven Approach for Process-Aware Risk Propagation

AU - Engelberg, Gal

AU - Fumagalli, Mattia

AU - Kuboszek, Adrian

AU - Klein, Dan

AU - Soffer, Pnina

AU - Guizzardi, Giancarlo

PY - 2023/3/27

Y1 - 2023/3/27

N2 - Risk Propagation (RP) is a central technique that allows the calculation of the cascading effect of risk within a system. At the current state, there is a lack of risk propagation solutions that can be used to assess the impact of risk at different levels of abstraction, accounting for actors, processes, physical-digital objects, and their relations. To fill this gap, in this paper, we propose a process-aware risk propagation approach that builds on two main components: i. an ontology, which supports functionalities typical of Semantic Web technologies (SWT), and ii. an ad hoc method to calculate the propagation of risk within the given system. We implemented our approach in a proof-of-concept tool, which was validated in the cybersecurity domain.

AB - Risk Propagation (RP) is a central technique that allows the calculation of the cascading effect of risk within a system. At the current state, there is a lack of risk propagation solutions that can be used to assess the impact of risk at different levels of abstraction, accounting for actors, processes, physical-digital objects, and their relations. To fill this gap, in this paper, we propose a process-aware risk propagation approach that builds on two main components: i. an ontology, which supports functionalities typical of Semantic Web technologies (SWT), and ii. an ad hoc method to calculate the propagation of risk within the given system. We implemented our approach in a proof-of-concept tool, which was validated in the cybersecurity domain.

KW - ontology-driven risk propagation

KW - risk analytics

KW - risk propagation

UR - http://www.scopus.com/inward/record.url?scp=85162900157&partnerID=8YFLogxK

U2 - 10.1145/3555776.3577795

DO - 10.1145/3555776.3577795

M3 - Conference contribution

T3 - Proceedings of the 38th ACM/SIGAPP Symposium on Applied Computing

SP - 1742

EP - 1745

BT - Proceedings of the 38th ACM/SIGAPP Symposium on Applied Computing, SAC 2023

PB - Association for Computing Machinery

T2 - 38th Annual ACM Symposium on Applied Computing, SAC 2023

Y2 - 27 March 2023 through 31 March 2023

ER -

An Ontology-Driven Approach for Process-Aware Risk Propagation

Abstract

Publication series

Conference

Keywords

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this