An Ontology for Secure Socio-Technical Systems

An Ontology for Secure Socio-Technical Systems

Fabio Massacci (University of Trento, Italy), John Mylopoulos (University of Trento, Italy) and Nicola Zannone (University of Trento, Italy)
Copyright: © 2008 |Pages: 19
DOI: 10.4018/978-1-59904-660-0.ch011
OnDemand PDF Download:
$37.50

Abstract

Security is often compromised by exploiting vulnerabilities in the interface between the organization and the information systems that support it. This reveals the necessity of modeling and analyzing information systems together with the organizational setting where they will operate. In this chapter we address this problem by presenting a modeling language tailored to analyze the problem of security at an organizational level. This language proposes a set of concepts founded on the notions of permission, delegation, and trust. The chapter also presents a semantics for these concepts, based on Datalog. A case study from the bank domain is employed to illustrate the proposed language.

Complete Chapter List

Search this Book:
Reset