Proceedings of the AAAI Workshop on Artificial Intelligence for Cyber Security

UCO: A Unified Cybersecurity Ontology

Zareen Syed, Ankur Padia, M. Lisa Mathews, Tim Finin, and Anupam Joshi

February 12, 2016

In this paper, we describe the Unified Cybersecurity Ontology (UCO) that is intended to support information integration and cyber situational awareness in cybersecurity systems. The ontology incorporates and integrates heterogeneous data and knowledge schemas from different cybersecurity systems and most commonly used cybersecurity standards for information sharing and exchange. The UCO ontology has also been mapped to a number of existing cybersecurity ontologies as well as concepts in the Linked Open Data cloud. Similar to DBpedia, which serves as the core for general knowledge in the Linked Open Data cloud, we envision UCO to serve as the core for the cybersecurity domain, which would evolve and grow with the passage of time, with additional cybersecurity data sets as they become available. We also present a prototype system and concrete use cases supported by the UCO ontology. To the best of our knowledge, this is the first cybersecurity ontology that has been mapped to general world ontologies to support broader and diverse security use cases. We compare the resulting ontology with previous efforts, discuss its strengths and limitations, and describe potential future work directions.

BibTeX OWL Tweet Scholar

Tags: ai, cybersecurity, ontology, owl, rdf, security, uco

Type: InProceedings

Publisher: AAAI Press

Organization: AAAI

Note:

Downloads: 4238 downloads