Personalised Provenance Reasoning Models and Risk Assessment in Business Systems: A Case Study

P. Townend, D. Webster, C. C. Venters, V. Dimitrova, K. Djemame, L. Lau, Jie Xu, S. Fores, V. Viduto, C. Dibsdale, N. Taylor, J. Austin (+2 others)
2013 2013 IEEE Seventh International Symposium on Service-Oriented System Engineering  
As modern information systems become increasingly business-and safety-critical, it is extremely important to improve both the trust that a user places in a system and their understanding of the risks associated with making a decision. This paper presents the STRAPP framework, a generic framework that supports both of these goals through the use of personalised provenance reasoning engines and state-of-art risk assessment techniques. We present the high-level architecture of the framework, and
more » ... scribe the process of systematically modelling system provenance with the W3C PROV provenance data model. We discuss the business drivers behind the concept of personalizing provenance information, and describe the STRAPP approach to enabling this through a user-adaptive system style. We discuss using data provenance for risk management and treatment in order to evaluate risk levels, and discuss the use of CORAS to develop a risk reasoning engine representing core classes and relationships. Finally, we demonstrate the initial implementation of our personalised provenance system in the context of the Rolls-Royce Equipment Health Management, and discuss its operation, the lessons we have learnt through our research and implementation (both technical and in business), and our future plans for this project.
doi:10.1109/sose.2013.53 dblp:conf/sose/TownendWVDDLXFVDTAMH13 fatcat:f4ma4ldvxjb5xn6y53zucjbfhe