{"id":"https://openalex.org/W2116815276","doi":"https://doi.org/10.1109/hicss.2008.211","title":"Integration of an Ontological Information Security Concept in Risk Aware\u00a0 Business Process Management","display_name":"Integration of an Ontological Information Security Concept in Risk Aware\u00a0 Business Process Management","publication_year":2008,"publication_date":"2008-01-01","ids":{"openalex":"https://openalex.org/W2116815276","doi":"https://doi.org/10.1109/hicss.2008.211","mag":"2116815276"},"language":"en","primary_location":{"id":"doi:10.1109/hicss.2008.211","is_oa":false,"landing_page_url":"https://doi.org/10.1109/hicss.2008.211","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 41st Annual Hawaii International Conference on System Sciences (HICSS 2008)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5026353917","display_name":"Gernot Goluch","orcid":null},"institutions":[{"id":"https://openalex.org/I4210167190","display_name":"SBA Research","ror":"https://ror.org/05nny6x17","country_code":"AT","type":"facility","lineage":["https://openalex.org/I4210167190"]}],"countries":["AT"],"is_corresponding":true,"raw_author_name":"Gernot Goluch","raw_affiliation_strings":["Secure Business Austria, Vienna, Austria"],"affiliations":[{"raw_affiliation_string":"Secure Business Austria, Vienna, Austria","institution_ids":["https://openalex.org/I4210167190"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5035676027","display_name":"Andreas Ekelhart","orcid":"https://orcid.org/0000-0003-3682-1364"},"institutions":[{"id":"https://openalex.org/I4210167190","display_name":"SBA Research","ror":"https://ror.org/05nny6x17","country_code":"AT","type":"facility","lineage":["https://openalex.org/I4210167190"]}],"countries":["AT"],"is_corresponding":false,"raw_author_name":"Andreas Ekelhart","raw_affiliation_strings":["Secure Business Austria, Vienna, Austria"],"affiliations":[{"raw_affiliation_string":"Secure Business Austria, Vienna, Austria","institution_ids":["https://openalex.org/I4210167190"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5001374797","display_name":"Stefan Fenz","orcid":"https://orcid.org/0000-0002-2880-1526"},"institutions":[{"id":"https://openalex.org/I4210167190","display_name":"SBA Research","ror":"https://ror.org/05nny6x17","country_code":"AT","type":"facility","lineage":["https://openalex.org/I4210167190"]}],"countries":["AT"],"is_corresponding":false,"raw_author_name":"Stefan Fenz","raw_affiliation_strings":["Secure Business Austria, Vienna, Austria"],"affiliations":[{"raw_affiliation_string":"Secure Business Austria, Vienna, Austria","institution_ids":["https://openalex.org/I4210167190"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5090676576","display_name":"Stefan Jakoubi","orcid":null},"institutions":[{"id":"https://openalex.org/I4210167190","display_name":"SBA Research","ror":"https://ror.org/05nny6x17","country_code":"AT","type":"facility","lineage":["https://openalex.org/I4210167190"]}],"countries":["AT"],"is_corresponding":false,"raw_author_name":"Stefan Jakoubi","raw_affiliation_strings":["Secure Business Austria, Vienna, Austria"],"affiliations":[{"raw_affiliation_string":"Secure Business Austria, Vienna, Austria","institution_ids":["https://openalex.org/I4210167190"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5006191355","display_name":"Simon Tjoa","orcid":"https://orcid.org/0000-0003-2280-9604"},"institutions":[{"id":"https://openalex.org/I4210167190","display_name":"SBA Research","ror":"https://ror.org/05nny6x17","country_code":"AT","type":"facility","lineage":["https://openalex.org/I4210167190"]}],"countries":["AT"],"is_corresponding":false,"raw_author_name":"Simon Tjoa","raw_affiliation_strings":["Secure Business Austria, Vienna, Austria"],"affiliations":[{"raw_affiliation_string":"Secure Business Austria, Vienna, Austria","institution_ids":["https://openalex.org/I4210167190"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5078722110","display_name":"Alexander M\u00fcck","orcid":"https://orcid.org/0000-0002-0215-720X"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"and Thomas Muck","raw_affiliation_strings":["Austrian Social Insurance Authority for Business, Vienna, Austria"],"affiliations":[{"raw_affiliation_string":"Austrian Social Insurance Authority for Business, Vienna, Austria","institution_ids":[]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":6,"corresponding_author_ids":["https://openalex.org/A5026353917"],"corresponding_institution_ids":["https://openalex.org/I4210167190"],"apc_list":null,"apc_paid":null,"fwci":11.3721,"has_fulltext":false,"cited_by_count":41,"citation_normalized_percentile":{"value":0.9809414,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"377","last_page":"377"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9987999796867371,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9987999796867371,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T13295","display_name":"Safety Systems Engineering in Autonomy","score":0.9909999966621399,"subfield":{"id":"https://openalex.org/subfields/2213","display_name":"Safety, Risk, Reliability and Quality"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12127","display_name":"Software System Performance and Reliability","score":0.9878000020980835,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6829513311386108},{"id":"https://openalex.org/keywords/business-process-modeling","display_name":"Business process modeling","score":0.621320366859436},{"id":"https://openalex.org/keywords/business-process","display_name":"Business process","score":0.6009368896484375},{"id":"https://openalex.org/keywords/business-process-management","display_name":"Business process management","score":0.5961022973060608},{"id":"https://openalex.org/keywords/risk-management","display_name":"Risk management","score":0.5634680390357971},{"id":"https://openalex.org/keywords/ontology","display_name":"Ontology","score":0.5389868021011353},{"id":"https://openalex.org/keywords/knowledge-management","display_name":"Knowledge management","score":0.5224437117576599},{"id":"https://openalex.org/keywords/risk-analysis","display_name":"Risk analysis (engineering)","score":0.5204913020133972},{"id":"https://openalex.org/keywords/process-management","display_name":"Process management","score":0.506548285484314},{"id":"https://openalex.org/keywords/artifact-centric-business-process-model","display_name":"Artifact-centric business process model","score":0.4935263395309448},{"id":"https://openalex.org/keywords/business-rule","display_name":"Business rule","score":0.4311329424381256},{"id":"https://openalex.org/keywords/business-process-model-and-notation","display_name":"Business Process Model and Notation","score":0.4297696352005005},{"id":"https://openalex.org/keywords/process","display_name":"Process (computing)","score":0.4236440658569336},{"id":"https://openalex.org/keywords/business-process-discovery","display_name":"Business process discovery","score":0.41379544138908386},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.20144891738891602},{"id":"https://openalex.org/keywords/work-in-process","display_name":"Work in process","score":0.1503567099571228},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.119834303855896},{"id":"https://openalex.org/keywords/operations-management","display_name":"Operations management","score":0.08474728465080261}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6829513311386108},{"id":"https://openalex.org/C207505557","wikidata":"https://www.wikidata.org/wiki/Q4374012","display_name":"Business process modeling","level":4,"score":0.621320366859436},{"id":"https://openalex.org/C85345410","wikidata":"https://www.wikidata.org/wiki/Q851587","display_name":"Business process","level":3,"score":0.6009368896484375},{"id":"https://openalex.org/C80309976","wikidata":"https://www.wikidata.org/wiki/Q7007379","display_name":"Business process management","level":4,"score":0.5961022973060608},{"id":"https://openalex.org/C32896092","wikidata":"https://www.wikidata.org/wiki/Q189447","display_name":"Risk management","level":2,"score":0.5634680390357971},{"id":"https://openalex.org/C25810664","wikidata":"https://www.wikidata.org/wiki/Q44325","display_name":"Ontology","level":2,"score":0.5389868021011353},{"id":"https://openalex.org/C56739046","wikidata":"https://www.wikidata.org/wiki/Q192060","display_name":"Knowledge management","level":1,"score":0.5224437117576599},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.5204913020133972},{"id":"https://openalex.org/C195094911","wikidata":"https://www.wikidata.org/wiki/Q14167904","display_name":"Process management","level":1,"score":0.506548285484314},{"id":"https://openalex.org/C162754035","wikidata":"https://www.wikidata.org/wiki/Q17006331","display_name":"Artifact-centric business process model","level":5,"score":0.4935263395309448},{"id":"https://openalex.org/C11066294","wikidata":"https://www.wikidata.org/wiki/Q1518244","display_name":"Business rule","level":4,"score":0.4311329424381256},{"id":"https://openalex.org/C179299601","wikidata":"https://www.wikidata.org/wiki/Q1017605","display_name":"Business Process Model and Notation","level":5,"score":0.4297696352005005},{"id":"https://openalex.org/C98045186","wikidata":"https://www.wikidata.org/wiki/Q205663","display_name":"Process (computing)","level":2,"score":0.4236440658569336},{"id":"https://openalex.org/C93453677","wikidata":"https://www.wikidata.org/wiki/Q1017580","display_name":"Business process discovery","level":5,"score":0.41379544138908386},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.20144891738891602},{"id":"https://openalex.org/C174998907","wikidata":"https://www.wikidata.org/wiki/Q357662","display_name":"Work in process","level":2,"score":0.1503567099571228},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.119834303855896},{"id":"https://openalex.org/C21547014","wikidata":"https://www.wikidata.org/wiki/Q1423657","display_name":"Operations management","level":1,"score":0.08474728465080261},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0},{"id":"https://openalex.org/C10138342","wikidata":"https://www.wikidata.org/wiki/Q43015","display_name":"Finance","level":1,"score":0.0},{"id":"https://openalex.org/C111472728","wikidata":"https://www.wikidata.org/wiki/Q9471","display_name":"Epistemology","level":1,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1109/hicss.2008.211","is_oa":false,"landing_page_url":"https://doi.org/10.1109/hicss.2008.211","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 41st Annual Hawaii International Conference on System Sciences (HICSS 2008)","raw_type":"proceedings-article"},{"id":"pmh:oai:CiteSeerX.psu:10.1.1.136.4444","is_oa":false,"landing_page_url":"http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.136.4444","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"http://csdl.computer.org/comp/proceedings/hicss/2008/3075/00/30750377.pdf","raw_type":"text"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":12,"referenced_works":["https://openalex.org/W99539854","https://openalex.org/W1549342539","https://openalex.org/W1551337616","https://openalex.org/W1665997306","https://openalex.org/W1945354286","https://openalex.org/W2145071552","https://openalex.org/W2146792152","https://openalex.org/W2369295637","https://openalex.org/W2626788661","https://openalex.org/W2796585648","https://openalex.org/W4295706279","https://openalex.org/W6640824262"],"related_works":["https://openalex.org/W93556318","https://openalex.org/W2013374526","https://openalex.org/W2097616329","https://openalex.org/W2097547132","https://openalex.org/W4300427051","https://openalex.org/W2534879192","https://openalex.org/W96518150","https://openalex.org/W4312816458","https://openalex.org/W2368748614","https://openalex.org/W237078725"],"abstract_inverted_index":{"priately":[0],"counteract":[1],"occurring":[2],"threats":[3],"has":[4],"increasingly":[5],"become":[6],"a":[7,55,78,113],"crucial":[8,143],"success":[9],"factor.":[10],"Traditional":[11],"business":[12,32,66,89,171],"process":[13,67,90,172],"management":[14,25,68,71,91],"provides":[15,112,130],"concepts":[16],"for":[17,117,144],"the":[18,28,37,41,46,100,107,134,152,155,161,164],"economical":[19],"optimization":[20],"of":[21,30,44,58,65,84,154,163],"processes,":[22],"while":[23],"risk":[24,70],"focuses":[26],"on":[27],"design":[29],"robust":[31],"processes.":[33],"While":[34],"aiming":[35],"at":[36],"same":[38],"goal,":[39],"namely":[40],"improve-":[42],"ment":[43],"business,":[45],"approaches":[47],"how":[48,151],"to":[49,54,86,168],"reach":[50],"this":[51,95],"vary,":[52],"due":[53],"different":[56],"understanding":[57],"improvement.":[59],"Following":[60],"this,":[61],"op-":[62],"timizing":[63],"recommendations":[64],"and":[69,92,106,120,139],"may":[72],"be":[73],"contradictory.":[74],"Therefore,":[75],"we":[76,97],"proposed":[77],"unified":[79],"method,":[80],"integrating":[81],"both":[82],"points":[83],"views":[85],"enable":[87],"risk-aware":[88,170],"optimization.":[93],"In":[94],"paper,":[96],"briefly":[98],"describe":[99],"ROPE":[101,165],"(Risk-Oriented":[102],"Process":[103],"Evaluation)":[104],"methodology":[105,166],"Security":[108,156],"Ontology":[109],"concept,":[110],"which":[111,141],"solid":[114],"knowledge":[115,132,158],"base":[116,159],"an":[118],"applicable":[119],"holistic":[121],"company":[122],"specific":[123],"IT":[124],"security":[125],"approach.":[126],"This":[127],"heavy-weight":[128],"ontology":[129],"structured":[131],"regarding":[133],"relations":[135],"between":[136],"threats,":[137],"safeguards,":[138],"assets,":[140],"are":[142],"modeling":[145],"processes":[146],"in":[147],"ROPE.":[148],"We":[149],"show":[150],"integration":[153],"Ontology's":[157],"enhances":[160],"applicability":[162],"leading":[167],"improved":[169],"management.":[173]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2021,"cited_by_count":1},{"year":2020,"cited_by_count":3},{"year":2019,"cited_by_count":5},{"year":2017,"cited_by_count":1},{"year":2016,"cited_by_count":1},{"year":2015,"cited_by_count":6},{"year":2014,"cited_by_count":5},{"year":2012,"cited_by_count":5}],"updated_date":"2026-04-05T17:49:38.594831","created_date":"2025-10-10T00:00:00"}