Ontological analysis in the problems of container applications threat modelling
Objectives. The main purpose of the work is the experimental verification of the method of automatic threat modelling based on the ontological approach using the example of multicomponent container applications presented in the form of data flow diagrams.Methods. Methods of ontological modelling and...
Saved in:
| Main Authors: | , |
|---|---|
| Format: | Article |
| Language: | Russian |
| Published: |
National Academy of Sciences of Belarus, the United Institute of Informatics Problems
2023-12-01
|
| Series: | Informatika |
| Subjects: | |
| Online Access: | https://inf.grid.by/jour/article/view/1265 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1832543345494196224 |
|---|---|
| author | A. I. Brazhuk E. V. Olizarovich |
| author_facet | A. I. Brazhuk E. V. Olizarovich |
| author_sort | A. I. Brazhuk |
| collection | DOAJ |
| description | Objectives. The main purpose of the work is the experimental verification of the method of automatic threat modelling based on the ontological approach using the example of multicomponent container applications presented in the form of data flow diagrams.Methods. Methods of ontological modelling and knowledge management are used in the work. The Web Ontology Language is used to represent knowledge; automatic reasoning based on description logics is used for threat modelling.Results. A machine-readable set (dataset) of 200 data flow diagrams is developed; each diagram is obtained from the configuration of a real container application and is presented as an ontology and a knowledge graph. An ontological two-level domain-specific threat model of container applications is formed. An experiment is conducted to compare the coverage by threats using the common approach and using domain-specific threats for created dataset. For 95 % of the diagrams, the domain-specific threat model showed the coverage similar or greater than the common approach.Conclusion. The results of the experiment prove the suitability and effectiveness of the ontological approach for automatic threat modelling. The created dataset can be used for various research in the field of automation of threat modelling. |
| format | Article |
| id | doaj-art-16eec3a408b3473db6e60172d1aa8a18 |
| institution | Kabale University |
| issn | 1816-0301 |
| language | Russian |
| publishDate | 2023-12-01 |
| publisher | National Academy of Sciences of Belarus, the United Institute of Informatics Problems |
| record_format | Article |
| series | Informatika |
| spelling | doaj-art-16eec3a408b3473db6e60172d1aa8a182025-02-03T11:46:29ZrusNational Academy of Sciences of Belarus, the United Institute of Informatics ProblemsInformatika1816-03012023-12-01204698610.37661/1816-0301-2023-20-4-69-861050Ontological analysis in the problems of container applications threat modellingA. I. Brazhuk0E. V. Olizarovich1Yanka Kupala State University of GrodnoYanka Kupala State University of GrodnoObjectives. The main purpose of the work is the experimental verification of the method of automatic threat modelling based on the ontological approach using the example of multicomponent container applications presented in the form of data flow diagrams.Methods. Methods of ontological modelling and knowledge management are used in the work. The Web Ontology Language is used to represent knowledge; automatic reasoning based on description logics is used for threat modelling.Results. A machine-readable set (dataset) of 200 data flow diagrams is developed; each diagram is obtained from the configuration of a real container application and is presented as an ontology and a knowledge graph. An ontological two-level domain-specific threat model of container applications is formed. An experiment is conducted to compare the coverage by threats using the common approach and using domain-specific threats for created dataset. For 95 % of the diagrams, the domain-specific threat model showed the coverage similar or greater than the common approach.Conclusion. The results of the experiment prove the suitability and effectiveness of the ontological approach for automatic threat modelling. The created dataset can be used for various research in the field of automation of threat modelling.https://inf.grid.by/jour/article/view/1265computer systemscontainer applicationssystem analysisinformation securitythreat modellingontologiesautomatic reasoningdescription logics |
| spellingShingle | A. I. Brazhuk E. V. Olizarovich Ontological analysis in the problems of container applications threat modelling Informatika computer systems container applications system analysis information security threat modelling ontologies automatic reasoning description logics |
| title | Ontological analysis in the problems of container applications threat modelling |
| title_full | Ontological analysis in the problems of container applications threat modelling |
| title_fullStr | Ontological analysis in the problems of container applications threat modelling |
| title_full_unstemmed | Ontological analysis in the problems of container applications threat modelling |
| title_short | Ontological analysis in the problems of container applications threat modelling |
| title_sort | ontological analysis in the problems of container applications threat modelling |
| topic | computer systems container applications system analysis information security threat modelling ontologies automatic reasoning description logics |
| url | https://inf.grid.by/jour/article/view/1265 |
| work_keys_str_mv | AT aibrazhuk ontologicalanalysisintheproblemsofcontainerapplicationsthreatmodelling AT evolizarovich ontologicalanalysisintheproblemsofcontainerapplicationsthreatmodelling |