Abstract
The chapter presents a new ontology-based approach to the definition of specification means used in the IT security development process compliant with the Common Criteria standard. Introducing the ontological approach makes, generally, the IT security development process easier and more effective. The chapter provides multiple-use specification means to create Security Targets (STs) for different kinds of IT products or systems. First, the review of works concerning the ontological approach within the information security domain was performed. Then the chapter discusses the ITSDO workout: domain and scope definition, identification of terms within the domain, identification of the hierarchy of classes and its properties, creation of a set of individuals, and the ontology testing and validation. This way a prototype of the specification means knowledge base was proposed, developed in the Protégé Ontology Editor and Knowledge Acquisition System.KeywordsClass HierarchyOntology DevelopmentSecurity ObjectiveOntological ApproachCompetency QuestionThese keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.
Published Version
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call