{"id":"https://openalex.org/W7119471156","doi":"https://doi.org/10.48550/arxiv.2601.04010","title":"An Ontology-Based Approach to Security Risk Identification of Container Deployments in OT Contexts","display_name":"An Ontology-Based Approach to Security Risk Identification of Container Deployments in OT Contexts","publication_year":2026,"publication_date":"2026-01-07","ids":{"openalex":"https://openalex.org/W7119471156","doi":"https://doi.org/10.48550/arxiv.2601.04010"},"language":null,"primary_location":{"id":"doi:10.48550/arxiv.2601.04010","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2601.04010","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"article"},"type":"preprint","indexed_in":["datacite"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://doi.org/10.48550/arxiv.2601.04010","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5098959598","display_name":"Yannick Landeck","orcid":"https://orcid.org/0009-0008-0340-3602"},"institutions":[],"countries":[],"is_corresponding":true,"raw_author_name":"Landeck, Yannick","raw_affiliation_strings":[],"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5122305308","display_name":"Dian Balta","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Balta, Dian","raw_affiliation_strings":[],"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5037403044","display_name":"Martin Wimmer","orcid":"https://orcid.org/0009-0009-2716-8886"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Wimmer, Martin","raw_affiliation_strings":[],"affiliations":[]},{"author_position":"last","author":{"id":"https://openalex.org/A5063361583","display_name":"Christian Knierim","orcid":"https://orcid.org/0000-0002-5713-4654"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Knierim, Christian","raw_affiliation_strings":[],"affiliations":[]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5098959598"],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":null,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":null,"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12127","display_name":"Software System Performance and Reliability","score":0.641700029373169,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12127","display_name":"Software System Performance and Reliability","score":0.641700029373169,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12203","display_name":"Mobile Agent-Based Network Management","score":0.05999999865889549,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.05180000141263008,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/container","display_name":"Container (type theory)","score":0.7419000267982483},{"id":"https://openalex.org/keywords/identification","display_name":"Identification (biology)","score":0.5544000267982483},{"id":"https://openalex.org/keywords/software-deployment","display_name":"Software deployment","score":0.5152000188827515},{"id":"https://openalex.org/keywords/modular-design","display_name":"Modular design","score":0.5092999935150146},{"id":"https://openalex.org/keywords/interpretability","display_name":"Interpretability","score":0.4959000051021576},{"id":"https://openalex.org/keywords/key","display_name":"Key (lock)","score":0.4521999955177307},{"id":"https://openalex.org/keywords/risk-management","display_name":"Risk management","score":0.44830000400543213},{"id":"https://openalex.org/keywords/isolation","display_name":"Isolation (microbiology)","score":0.4401000142097473}],"concepts":[{"id":"https://openalex.org/C2781018962","wikidata":"https://www.wikidata.org/wiki/Q5164884","display_name":"Container (type theory)","level":2,"score":0.7419000267982483},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6355999708175659},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5925999879837036},{"id":"https://openalex.org/C116834253","wikidata":"https://www.wikidata.org/wiki/Q2039217","display_name":"Identification (biology)","level":2,"score":0.5544000267982483},{"id":"https://openalex.org/C105339364","wikidata":"https://www.wikidata.org/wiki/Q2297740","display_name":"Software deployment","level":2,"score":0.5152000188827515},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.5146999955177307},{"id":"https://openalex.org/C101468663","wikidata":"https://www.wikidata.org/wiki/Q1620158","display_name":"Modular design","level":2,"score":0.5092999935150146},{"id":"https://openalex.org/C2781067378","wikidata":"https://www.wikidata.org/wiki/Q17027399","display_name":"Interpretability","level":2,"score":0.4959000051021576},{"id":"https://openalex.org/C26517878","wikidata":"https://www.wikidata.org/wiki/Q228039","display_name":"Key (lock)","level":2,"score":0.4521999955177307},{"id":"https://openalex.org/C32896092","wikidata":"https://www.wikidata.org/wiki/Q189447","display_name":"Risk management","level":2,"score":0.44830000400543213},{"id":"https://openalex.org/C2775941552","wikidata":"https://www.wikidata.org/wiki/Q25212305","display_name":"Isolation (microbiology)","level":2,"score":0.4401000142097473},{"id":"https://openalex.org/C12174686","wikidata":"https://www.wikidata.org/wiki/Q1058438","display_name":"Risk assessment","level":2,"score":0.4287000000476837},{"id":"https://openalex.org/C25810664","wikidata":"https://www.wikidata.org/wiki/Q44325","display_name":"Ontology","level":2,"score":0.40849998593330383},{"id":"https://openalex.org/C37736160","wikidata":"https://www.wikidata.org/wiki/Q1801315","display_name":"Adversarial system","level":2,"score":0.36579999327659607},{"id":"https://openalex.org/C83163435","wikidata":"https://www.wikidata.org/wiki/Q3954104","display_name":"Security management","level":2,"score":0.35100001096725464},{"id":"https://openalex.org/C103377522","wikidata":"https://www.wikidata.org/wiki/Q3493999","display_name":"Security information and event management","level":4,"score":0.3206999897956848},{"id":"https://openalex.org/C182590292","wikidata":"https://www.wikidata.org/wiki/Q989632","display_name":"Network security","level":2,"score":0.31709998846054077},{"id":"https://openalex.org/C178148461","wikidata":"https://www.wikidata.org/wiki/Q1632136","display_name":"Security controls","level":3,"score":0.30140000581741333},{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.28060001134872437},{"id":"https://openalex.org/C140547941","wikidata":"https://www.wikidata.org/wiki/Q7797194","display_name":"Threat model","level":2,"score":0.2759999930858612},{"id":"https://openalex.org/C206345919","wikidata":"https://www.wikidata.org/wiki/Q20380951","display_name":"Resource (disambiguation)","level":2,"score":0.26600000262260437},{"id":"https://openalex.org/C121822524","wikidata":"https://www.wikidata.org/wiki/Q5157582","display_name":"Computer security model","level":2,"score":0.2653999924659729},{"id":"https://openalex.org/C201305675","wikidata":"https://www.wikidata.org/wiki/Q852998","display_name":"Stakeholder","level":2,"score":0.2515000104904175}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.48550/arxiv.2601.04010","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2601.04010","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"article"}],"best_oa_location":{"id":"doi:10.48550/arxiv.2601.04010","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2601.04010","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"article"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":0,"referenced_works":[],"related_works":[],"abstract_inverted_index":{"In":[0],"operational":[1],"technology":[2],"(OT)":[3],"contexts,":[4,64],"containerised":[5],"applications":[6],"often":[7],"require":[8],"elevated":[9],"privileges":[10,25],"to":[11,120,151],"access":[12],"low-level":[13],"network":[14],"interfaces":[15],"or":[16],"perform":[17],"administrative":[18],"tasks":[19],"such":[20],"as":[21,77],"application":[22],"monitoring.":[23],"These":[24],"reduce":[26],"the":[27,78,112,149],"default":[28],"isolation":[29],"provided":[30],"by":[31,47],"containers":[32],"and":[33,54,65,98,125,140,153],"introduce":[34],"significant":[35],"security":[36,100],"risks.":[37],"Security":[38,80],"risk":[39,95,116,121,127,155],"identification":[40],"for":[41,147],"OT":[42],"container":[43,99],"deployments":[44],"is":[45],"challenged":[46],"hybrid":[48],"IT/OT":[49],"architectures,":[50],"fragmented":[51],"stakeholder":[52],"knowledge,":[53],"continuous":[55],"system":[56],"changes.":[57],"Existing":[58],"approaches":[59],"lack":[60],"reproducibility,":[61],"interpretability":[62],"across":[63],"technical":[66],"integration":[67],"with":[68],"deployment":[69],"artefacts.":[70,101],"We":[71],"propose":[72],"a":[73,107,144],"model-based":[74],"approach,":[75],"implemented":[76],"Container":[79],"Risk":[81],"Ontology":[82],"(CSRO),":[83],"which":[84],"integrates":[85],"five":[86],"key":[87],"domains:":[88],"adversarial":[89],"behaviour,":[90],"contextual":[91],"assumptions,":[92],"attack":[93],"scenarios,":[94],"assessment":[96],"rules,":[97],"Our":[102],"evaluation":[103],"of":[104,115],"CSRO":[105,130],"in":[106],"case":[108],"study":[109],"demonstrates":[110],"that":[111],"end-to-end":[113],"formalisation":[114],"calculation,":[117],"from":[118],"artefact":[119],"level,":[122],"enables":[123],"automated":[124],"reproducible":[126],"identification.":[128],"While":[129],"currently":[131],"focuses":[132],"on":[133],"technical,":[134],"container-level":[135],"treatment":[136],"measures,":[137],"its":[138],"modular":[139],"flexible":[141],"design":[142],"provides":[143],"solid":[145],"foundation":[146],"extending":[148],"approach":[150],"host-level":[152],"organisational":[154],"factors.":[156]},"counts_by_year":[],"updated_date":"2026-01-09T23:14:04.187858","created_date":"2026-01-09T00:00:00"}