Building a Cybersecurity Risk Metamodel for Improved Method and Tool Integration

TL;DR

This paper presents a model-driven cybersecurity risk metamodel that enhances tool integration and traceability, improving the efficiency and effectiveness of risk analysis and security testing processes.

Contribution

It introduces a unified metamodel for synchronizing and tracing information across various cybersecurity tools, facilitating better integration and process consistency.

Findings

Effective mapping and synchronization across tools

Improved traceability in cybersecurity workflows

Validated approach with multiple scenarios

Abstract

Nowadays, companies are highly exposed to cyber security threats. In many industrial domains, protective measures are being deployed and actively supported by standards. However the global process remains largely dependent on document driven approach or partial modelling which impacts both the efficiency and effectiveness of the cybersecurity process from the risk analysis step. In this paper, we report on our experience in applying a model-driven approach on the initial risk analysis step in connection with a later security testing. Our work rely on a common metamodel which is used to map, synchronise and ensure information traceability across different tools. We validate our approach using different scenarios relying domain modelling, system modelling, risk assessment and security testing tools.