Blockchain-based ontology driven reference framework for security risk management

Mubashar Iqbal; Aleksandr Kormiltsyn; Vimal Kumar Dwivedi; Raimundas Matulevičius

doi:10.1016/j.datak.2023.102257

Blockchain-based ontology driven reference framework for security risk management

Mubashar Iqbal
, Aleksandr Kormiltsyn
, Vimal Kumar Dwivedi
, Raimundas Matulevičius

Research output: Contribution to journal › Article › peer-review

13 Citations (Scopus)

Abstract

Security risk management (SRM) is crucial for protecting valuable assets from malicious harm. While blockchain technology has been proposed to mitigate security threats in traditional applications, it is not a perfect solution, and its security threats must be managed. This paper addresses the research problem of having no unified and formal knowledge models to support the SRM of traditional applications using blockchain and the SRM of blockchain-based applications. In accordance with this, we present a blockchain-based reference model (BbRM) and an ontology driven reference framework (OntReF) for the SRM of traditional and blockchain-based applications. The BbRM consolidates security threats of traditional and blockchain-based applications, structured following the SRM domain model and offers guidance for creating the OntReF using the domain model. OntReF is grounded on unified foundational ontology (UFO) and provides semantic interoperability and supporting the dynamic knowledge representation and instantiation of information security knowledge for the SRM. Our evaluation approaches demonstrate that OntReF is practical to use.

Original language	English
Article number	102257
Pages (from-to)	1-23
Number of pages	23
Journal	Data and Knowledge Engineering
Volume	149
Early online date	4 Dec 2023
DOIs	https://doi.org/10.1016/j.datak.2023.102257
Publication status	Published (in print/issue) - 1 Jan 2024

Bibliographical note

Publisher Copyright:
© 2023 Elsevier B.V.

Funding

Vimal Dwivedi received his Ph.D. in Computer Science and Engineering from Tallinn University of Technology, Tallinn, Estonia. His Ph.D. project was partially sponsored by Qtum Foundation in Singapore. As a part of his Ph.D. research, he has developed an XML-based smart contract language that allows non-IT blockchain practitioners to write smart contracts for business use cases. He is working as a research fellow in the School of Electronics, Electrical Engineering, and Computer Science (EEECS) at the Queen’s University Belfast (QUB), Northern Ireland, United Kingdom, with Prof. Karen and Assis. Prof. Vishal Sharma, under the project entitled, digital twin and blockchain for business decision modeling. Before coming to QUB, he was a lecturer in the Institute of Computer Science at the University of Tartu, Tartu, Estonia. Before this, he was an early researcher with the information systems group at TalTech. He serves as a guest editor for Mathematics and Computer Science.

Keywords

Blockchain
CPNs tool
Ontology framework
Security risk management
Unified foundational ontology
Web ontology language

Access to Document

10.1016/j.datak.2023.102257

Cite this

@article{259914e900e74faba1b5a6c5d454b73c,

title = "Blockchain-based ontology driven reference framework for security risk management",

abstract = "Security risk management (SRM) is crucial for protecting valuable assets from malicious harm. While blockchain technology has been proposed to mitigate security threats in traditional applications, it is not a perfect solution, and its security threats must be managed. This paper addresses the research problem of having no unified and formal knowledge models to support the SRM of traditional applications using blockchain and the SRM of blockchain-based applications. In accordance with this, we present a blockchain-based reference model (BbRM) and an ontology driven reference framework (OntReF) for the SRM of traditional and blockchain-based applications. The BbRM consolidates security threats of traditional and blockchain-based applications, structured following the SRM domain model and offers guidance for creating the OntReF using the domain model. OntReF is grounded on unified foundational ontology (UFO) and provides semantic interoperability and supporting the dynamic knowledge representation and instantiation of information security knowledge for the SRM. Our evaluation approaches demonstrate that OntReF is practical to use.",

keywords = "Blockchain, CPNs tool, Ontology framework, Security risk management, Unified foundational ontology, Web ontology language",

author = "Mubashar Iqbal and Aleksandr Kormiltsyn and Dwivedi, \{Vimal Kumar\} and Raimundas Matulevi{\v c}ius",

note = "Publisher Copyright: {\textcopyright} 2023 Elsevier B.V.",

year = "2024",

month = jan,

day = "1",

doi = "10.1016/j.datak.2023.102257",

language = "English",

volume = "149",

pages = "1--23",

journal = "Data and Knowledge Engineering",

issn = "0169-023X",

publisher = "Elsevier BV",

}

TY - JOUR

T1 - Blockchain-based ontology driven reference framework for security risk management

AU - Iqbal, Mubashar

AU - Kormiltsyn, Aleksandr

AU - Dwivedi, Vimal Kumar

AU - Matulevičius, Raimundas

PY - 2024/1/1

Y1 - 2024/1/1

N2 - Security risk management (SRM) is crucial for protecting valuable assets from malicious harm. While blockchain technology has been proposed to mitigate security threats in traditional applications, it is not a perfect solution, and its security threats must be managed. This paper addresses the research problem of having no unified and formal knowledge models to support the SRM of traditional applications using blockchain and the SRM of blockchain-based applications. In accordance with this, we present a blockchain-based reference model (BbRM) and an ontology driven reference framework (OntReF) for the SRM of traditional and blockchain-based applications. The BbRM consolidates security threats of traditional and blockchain-based applications, structured following the SRM domain model and offers guidance for creating the OntReF using the domain model. OntReF is grounded on unified foundational ontology (UFO) and provides semantic interoperability and supporting the dynamic knowledge representation and instantiation of information security knowledge for the SRM. Our evaluation approaches demonstrate that OntReF is practical to use.

AB - Security risk management (SRM) is crucial for protecting valuable assets from malicious harm. While blockchain technology has been proposed to mitigate security threats in traditional applications, it is not a perfect solution, and its security threats must be managed. This paper addresses the research problem of having no unified and formal knowledge models to support the SRM of traditional applications using blockchain and the SRM of blockchain-based applications. In accordance with this, we present a blockchain-based reference model (BbRM) and an ontology driven reference framework (OntReF) for the SRM of traditional and blockchain-based applications. The BbRM consolidates security threats of traditional and blockchain-based applications, structured following the SRM domain model and offers guidance for creating the OntReF using the domain model. OntReF is grounded on unified foundational ontology (UFO) and provides semantic interoperability and supporting the dynamic knowledge representation and instantiation of information security knowledge for the SRM. Our evaluation approaches demonstrate that OntReF is practical to use.

KW - Blockchain

KW - CPNs tool

KW - Ontology framework

KW - Security risk management

KW - Unified foundational ontology

KW - Web ontology language

UR - https://www.scopus.com/pages/publications/85179122332

UR - https://pure.qub.ac.uk/en/publications/blockchain-based-ontology-driven-reference-framework-for-security

U2 - 10.1016/j.datak.2023.102257

DO - 10.1016/j.datak.2023.102257

M3 - Article

SN - 0169-023X

VL - 149

SP - 1

EP - 23

JO - Data and Knowledge Engineering

JF - Data and Knowledge Engineering

M1 - 102257

ER -

Blockchain-based ontology driven reference framework for security risk management

Abstract

Bibliographical note

Funding

Keywords

Access to Document

Other files and links

Fingerprint

Cite this