Boosting D3FEND: Ontological Analysis and Recommendations

Ítalo Oliveira*, Gal Engelberg, Pedro Paulo F. Barcelos, Tiago Prince Sales, Mattia Fumagalli, Riccardo Baratella, Dan Klein, Giancarlo Guizzardi

*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceedingConference contributionAcademicpeer-review

1 Citation (Scopus)
72 Downloads (Pure)

Abstract

Formal Ontology is a discipline whose business is to develop formal theories about general aspects of reality such as identity, dependence, parthood, truthmaking, causality, etc. A foundational ontology is a specific consistent set of these ontological theories that support activities such as domain analysis, conceptual clarification, and meaning negotiation. A (well-founded) core ontology specifies, under a foundational ontology, the central concepts and relations of a given domain. Foundational and core ontologies can be seen as ontology engineering frameworks to systematically address the laborious task of building large (more specific) domain ontologies. However, both in research and industry, it is common that ontologies as computational artifacts are built without the aid of any framework of this kind, favoring the occurrence of numerous modeling mistakes and gaps. Through a case study, here we show an exemplar of such a case in the domain of cybersecurity by providing an ontological analysis of D3FEND, an OWL knowledge graph of cybersecurity countermeasure techniques proposed by the MITRE Corporation. Based on the Reference Ontology for Security Engineering (ROSE), a core ontology of the security domain founded in the Unified Foundational Ontology (UFO), our investigation reveals a number of semantic deficiencies in D3FEND, including missing concepts, semantic overload of terms, and a systematic lack of constraints that renders that model under-specified. As a result of our ontological analysis, we propose several suggestions for the appropriate redesign of D3FEND to overcome those issues.

Original languageEnglish
Title of host publicationFormal Ontology in Information Systems - Proceedings of the 13th International Conference, FOIS 2023
EditorsTorsten Hahmann, Antony Galton, Maria M. Hedblom, Nathalie Aussenac-Gilles
PublisherIOS
Pages334-348
Number of pages15
ISBN (Electronic)9781643684680
DOIs
Publication statusPublished - 21 Dec 2023
Event13th International Conference on Formal Ontology in Information Systems, FOIS 2023 - Sherbrooke, Canada
Duration: 17 Jul 202320 Jul 2023
Conference number: 13

Publication series

NameFrontiers in Artificial Intelligence and Applications
Volume377
ISSN (Print)0922-6389
ISSN (Electronic)1879-8314

Conference

Conference13th International Conference on Formal Ontology in Information Systems, FOIS 2023
Abbreviated titleFOIS
Country/TerritoryCanada
CitySherbrooke
Period17/07/2320/07/23

Keywords

  • (Cyber)Security ontologies
  • D3FEND
  • Ontological analysis
  • Ontology engineering

Fingerprint

Dive into the research topics of 'Boosting D3FEND: Ontological Analysis and Recommendations'. Together they form a unique fingerprint.

Cite this