Abstract
Formal Ontology is a discipline whose business is to develop formal theories about general aspects of reality such as identity, dependence, parthood, truthmaking, causality, etc. A foundational ontology is a specific consistent set of these ontological theories that support activities such as domain analysis, conceptual clarification, and meaning negotiation. A (well-founded) core ontology specifies, under a foundational ontology, the central concepts and relations of a given domain. Foundational and core ontologies can be seen as ontology engineering frameworks to systematically address the laborious task of building large (more specific) domain ontologies. However, both in research and industry, it is common that ontologies as computational artifacts are built without the aid of any framework of this kind, favoring the occurrence of numerous modeling mistakes and gaps. Through a case study, here we show an exemplar of such a case in the domain of cybersecurity by providing an ontological analysis of D3FEND, an OWL knowledge graph of cybersecurity countermeasure techniques proposed by the MITRE Corporation. Based on the Reference Ontology for Security Engineering (ROSE), a core ontology of the security domain founded in the Unified Foundational Ontology (UFO), our investigation reveals a number of semantic deficiencies in D3FEND, including missing concepts, semantic overload of terms, and a systematic lack of constraints that renders that model under-specified. As a result of our ontological analysis, we propose several suggestions for the appropriate redesign of D3FEND to overcome those issues.
Original language | English |
---|---|
Title of host publication | Formal Ontology in Information Systems - Proceedings of the 13th International Conference, FOIS 2023 |
Editors | Torsten Hahmann, Antony Galton, Maria M. Hedblom, Nathalie Aussenac-Gilles |
Publisher | IOS Press BV |
Pages | 334-348 |
Number of pages | 15 |
ISBN (Electronic) | 9781643684680 |
DOIs | |
State | Published - 21 Dec 2023 |
Externally published | Yes |
Event | 13th International Conference on Formal Ontology in Information Systems, FOIS 2023 - Virtual, Online Duration: 18 Sep 2023 → 20 Sep 2023 |
Publication series
Name | Frontiers in Artificial Intelligence and Applications |
---|---|
Volume | 377 |
ISSN (Print) | 0922-6389 |
ISSN (Electronic) | 1879-8314 |
Conference
Conference | 13th International Conference on Formal Ontology in Information Systems, FOIS 2023 |
---|---|
City | Virtual, Online |
Period | 18/09/23 → 20/09/23 |
Bibliographical note
Publisher Copyright:© 2023 The Authors.
Keywords
- (Cyber)Security ontologies
- D3FEND
- Ontological analysis
- Ontology engineering
ASJC Scopus subject areas
- Artificial Intelligence