a requirements based approach for automating enterprise
play

A Requirements Based Approach for Automating Enterprise IT - PowerPoint PPT Presentation

Oct 30, 2023 •327 likes •588 views

A Requirements Based Approach for Automating Enterprise IT Architecture Modeling Using Multiple Data Sources Margus Vlja, Robert Lagerstrm, Mathias Ekstedt, Matus Korman ModTools15 Outline Motivation Methodology

  1. A Requirements Based Approach for Automating Enterprise IT Architecture Modeling Using Multiple Data Sources Margus Välja, Robert Lagerström, Mathias Ekstedt, Matus Korman ModTools15

  2. Outline • Motivation • Methodology • Requirements and Approach • Study • Discussion

  3. Motivation Too complex environments to create models manually (hundreds of devices which each have tens of instances of software) If we would succeed, Timeliness and scalability still problematic

  4. Motivation Too much heterogeneous data and difficult to make sense of it

  5. Motivation: Model Collected Known In progress Known vulnerabilities in existing Configuration methods used for Application protocols software web applications and similar IT management processes’ Computer and network Patch levels of clients, servers and characteristics like for example for hardware with addresses software products zone management process Social aspects like social zone, Access control points and password security awareness program, and Network zones authentication mechanisms developer training Software (also firmware) Software architecture and software including system software assurance methods like static code and operating systems Data flows analysis Types of security controls present like cryptography methods and User accounts port security

  6. Motivation: Data sources Type of tool Examples Type of data Data acquiring method Vulnerability Scanning network, scanners, network Hardware devices, software, computer nodes and Active scanners scanners vulnerabilities application servers Vulnerability scanners, network Hardware devices, software, scanners, packet vulnerabilities, network Listening to existing Passive scanners analyzers communication network traffic Business, Enterprise architecture information, IT Models of organization and management architecture its IT (in different views) Manual input, scanning Change, release, license management, System management directory services TO-BE to AS-IS elements Manual input, scanning IDS, IPS, firewalls, System, network, process Scanning, listening, Security monitors SIEM solutions state information registering security events

  7. Methodology: Earlier work • Model to model transformation standards Extensible Stylesheet Language Transformations (XSLT), Query/View/Transformation (QVT) etc. • Attempts to create EA models (Archimate, CySeMoL) • Business process modelling

  8. Methodology • Requirements • EA model maintenance • Enterprise information credibility • Data cleaning (DW) • IT operational model • EAAT & CySeMoL • XSLT

  9. Approach: Architectural requirements 1. Data collection process needs to be supported by tools to limit manual inspection. 2. Data collection process needs to be extensible to cover additional sources easily.

  10. Approach: Integration requirements 3. The system needs to be able to detect changes in real world enterprise architectures. 4. The system needs to provide a mechanism to define mapping from incoming data to the internal data structure. 5. The system needs to have a machine understandable internal structure.

  11. Approach: Data quality requirements 6. The system needs to provide mechanisms to ensure data quality that is sufficient for the modeling goals including the classification of data sources 7. The data needs to be of appropriate granularity, consistency, completeness and actuality (time), all of which must be measurable. 8. The system needs to allow for the automated propagation of changes. 9. The system needs to be able to identify and resolve data identity conflicts from different sources via reconciliation.

  12. Approach: Data quality requirements 10. As more sources agree an answer, the credibility of that answer should be monotonically non-decreasing. 11. The data source must be known. 12. The data source’s historical credibility must be known.

  13. Approach: human-machine approach One source Multiple sources Description Data acquisition Data acquisition Collecting data for a model Data analysis Decision and action selection Action Implementation Data analysis Data analysis Model based analysis Decision and Decision and action action selection selection Model based action selection Action Implementation Action Implementation Real life consequences

  14. Approach: High level view

  15. Approach: Concerns: Data acquisition Concern Process step Automation What data are needed for Define data needs based on the 1 modeling? metamodel as a common data structure No 2 Where do the data come from? Define data sources No What kind of tools and machine understandable structure should Decide tools and machine understandable 3 be used? format No Which data sources can be 4 trusted and to what extent? Define credibility calculation rules Partial Create adapters to common data 5 How are the data acquired? structure Yes

  16. Approach: Concerns: Data analysis Concern Process step Automation Identify common data quality problems Are there any data quality and define known techniques to solve problems and can these be them (data cleaning workflow and 6 solved? mapping rules) Yes Which data are still missing from the model and can missing data be Identify missing data and define rules 7 derived from existing data? for deriving missing data Partial Are there any patterns that can be 8 reused to improve future models? Define patterns and reuse them Yes How can the processed data be 9 transformed into a model? Apply a transformation method Yes

  17. Empirical study • SCADA lab • 5 servers • 2 Red Hat Systems • 3 Windows • Security analysis • EAAT and CySeMoL • Automatic model generation

  18. Empirical study: Addressing concerns • Data sources Nexpose and Wireshark • Nexpose prioritized over Wireshark • Data exported to XML format and abstracted to right level with adapters

  19. Empirical study: Addressing concerns • Common data structure represents CySeMoL ontology, data quality attributes • Unique identifiers chosen like IP address to merge data • Outside dictionaries needed to complement data • Some data needs to be omitted from the model • EAAT transformation through XLST

  20. Results Calculable model with more than 10000 elements Process can be repeated with new data in minutes

  21. Results: Model

  22. Limitations • Implementation specific details missing • Only certain type of models supported • Manual implementation work

  23. Conclusion • Model creation with multiple sources automated • 9 Concerns need to be addressed

  24. Questions ?

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Requirements Capture and Specification Universit` a di Genova, Italy) for Enterprise

Requirements Capture and Specification Universit` a di Genova, Italy) for Enterprise

Requirements Capture and Specification for Enterprise Applications: a UML Based Attempt Christine Choppy (LIPN, Universit e Paris XIII, France) Gianna Reggio (DISI, Requirements Capture and Specification Universit` a di Genova, Italy)

800 views • 58 slides
Teaching an Ethnographic Approach to Requirements Elicita6on in

Teaching an Ethnographic Approach to Requirements Elicita6on in

Teaching an Ethnographic Approach to Requirements Elicita6on in an Enterprise Architecture Course Gil Regev, Laura Regev, Yasmina Nam, Julie Lang, Alain

255 views • 22 slides
An Extended Enterprise Architecture for a Netw ork- Enabled, Effects-based Approach for National

An Extended Enterprise Architecture for a Netw ork- Enabled, Effects-based Approach for National

An Extended Enterprise Architecture for a Netw ork- Enabled, Effects-based Approach for National Park Protection Transitioning Military Paradigms Tod M. Schuck Stevens Institute of Technology Lockheed Martin MS2 14 th ICCRTS June 15-17

326 views • 13 slides
Protective Security Requirements A Risk Based Approach UNCLASSIFIED What is the PSR? .a

Protective Security Requirements A Risk Based Approach UNCLASSIFIED What is the PSR? .a

UNCLASSIFIED Protective Security Requirements A Risk Based Approach UNCLASSIFIED What is the PSR? .a new framework of New Zealand Protective Security Requirements which provides clear guidance and support for State sector departments

353 views • 17 slides
Extending Catalog zones another approach in automating maintenance Leo Vandewoestijne

Extending Catalog zones another approach in automating maintenance Leo Vandewoestijne

Extending Catalog zones another approach in automating maintenance Leo Vandewoestijne dns.company Rev 0.000 Spoilers/Warnings - Not much new; working in Bind already - This presentation was prepared while having lack of time

578 views • 12 slides
IMPLEMENTING LOGIC BY SEMANTICS The RISCAL Approach to Automating Program Reasoning over Finite

IMPLEMENTING LOGIC BY SEMANTICS The RISCAL Approach to Automating Program Reasoning over Finite

IMPLEMENTING LOGIC BY SEMANTICS The RISCAL Approach to Automating Program Reasoning over Finite Domains Wolfgang Schreiner Research Institute for Symbolic Computation (RISC) Formal Methods in Computer Science Specification: Describe

458 views • 28 slides
Agenda What Is SUSE Enterprise Storage 5.5 Requirements Planning and Sizing

Agenda What Is SUSE Enterprise Storage 5.5 Requirements Planning and Sizing

Agenda What Is SUSE Enterprise Storage 5.5 Requirements Planning and Sizing Deployment Best Practices Testing What Is SUSE Enterprise Storage 5.5 What Is SUSE Enterprise Storage 5.5 Open Source General-Purpose Software-Defined

574 views • 26 slides
Automating Registrar Onboarding What is AROS? A utomated R egistrar O nboarding S ystem

Automating Registrar Onboarding What is AROS? A utomated R egistrar O nboarding S ystem

Automating Registrar Onboarding What is AROS? A utomated R egistrar O nboarding S ystem Replacing the current paper/fax based accreditation system Automating what can be automated Providing a better user experience Improving

232 views • 8 slides
Adit Enterprise. Adit Enterprise. Adit Enterprise. Adit Enterprise. ADIT Enterprise is a

Adit Enterprise. Adit Enterprise. Adit Enterprise. Adit Enterprise. ADIT Enterprise is a

Adit Enterprise. Adit Enterprise. Adit Enterprise. Adit Enterprise. ADIT Enterprise is a wholesale distribution business providing complete range of Electronic Security Systems Kamlesh 093232 51184 Adit Enterprise Adit Enterprise Adit

619 views • 29 slides
EA Anamnesis: Towards an approach for Enterprise Architecture rationalization Georgios

EA Anamnesis: Towards an approach for Enterprise Architecture rationalization Georgios

DSM 2012 EA Anamnesis: Towards an approach for Enterprise Architecture rationalization Georgios Plataniotis Sybren de Kinderen Henderik A. Proper CRP Henri Tudor, Luxembourg 1 Enterprise Architecture A design that shows

450 views • 17 slides
Enterprise Vocabulary Development in Protege/OWL: Workflow and Concept History Requirements

Enterprise Vocabulary Development in Protege/OWL: Workflow and Concept History Requirements

Enterprise Vocabulary Development in Protege/OWL: Workflow and Concept History Requirements Sherri de Coronado Gilberto Fragoso Protg Workshop Jul 8, 2004 Topics Background NCI Thesaurus conversion to OWL Requirements

511 views • 26 slides
A Single Platform Approach: Automating Receivables, Payables, & P Card Reconciliation

A Single Platform Approach: Automating Receivables, Payables, & P Card Reconciliation

A Single Platform Approach: Automating Receivables, Payables, & P Card Reconciliation Andy Schwartz Jeff Bissonette MTS Software Solutions StoneMor Partners, L.P. Introduction MTS Software Solutions MTS provides software, hardware

967 views • 18 slides
Rule-Based Maintenance of Post-Requirements Traceability Relations Patrick Mder, Orlena Gotel

Rule-Based Maintenance of Post-Requirements Traceability Relations Patrick Mder, Orlena Gotel

Rule-Based Maintenance of Post-Requirements Traceability Relations Patrick Mder, Orlena Gotel and Ilka Philippow 16th IEEE International Requirements Engineering Conference September 10, 2008 Requirements traceability Our approach

420 views • 19 slides
Automating the Generation of Mutation-based Test Cases Mik ike e Pap apad adakis akis

Automating the Generation of Mutation-based Test Cases Mik ike e Pap apad adakis akis

Automating the Generation of Mutation-based Test Cases Mik ike e Pap apad adakis akis Department of Informatics Athens University of Economics and Business 1 Mutation Testing White-box, fault-based testing technique Considered as

540 views • 22 slides
A new open source approach for requirements and architecture A new open source approach for

A new open source approach for requirements and architecture A new open source approach for

A new open source approach for requirements and architecture A new open source approach for requirements and architecture WHY?! Traceability? Why do I care? Document the project Plan better Reduce uncertainty QA Bug fixing Mustard

653 views • 27 slides
Correctness of Program Transformations: Automating Diagram-Based Proofs David Sabel

Correctness of Program Transformations: Automating Diagram-Based Proofs David Sabel

Correctness of Program Transformations: Automating Diagram-Based Proofs David Sabel Goethe-University Frankfurt am Main, Germany Research supported by the Deutsche Forschungsgemeinschaft (DFG) under grant SA 2908/3-1. Motivation reasoning

736 views • 72 slides
1 Attributes Types Attribute types: CDATA: Any string In general: <![CDATA<

1 Attributes Types Attribute types: CDATA: Any string In general: <![CDATA<

XPath and XSLT Based on slides by Dan Suciu University of Washington CS330 Lecture April 15, 2004 1 Todays Lecture Some remarks about XML and DTSs One slide on XML Schema (much more next lecture) XPath XSLT CS330 Lecture

673 views • 17 slides
8. XSL Transformations (XSLT) XSL = Extensible Stylesheet Language Task: Transform the XML

8. XSL Transformations (XSLT) XSL = Extensible Stylesheet Language Task: Transform the XML

8. XSL Transformations (XSLT) XSL = Extensible Stylesheet Language Task: Transform the XML document from one vocabulary to another (source tree result tree) The result syntax can be also non-XML (second conversion often needed,

827 views • 30 slides
M. Bagic Babac, M. Kunstic, D. Jevtic University of Zagreb, Croatia Faculty of Electrical

M. Bagic Babac, M. Kunstic, D. Jevtic University of Zagreb, Croatia Faculty of Electrical

M. Bagic Babac, M. Kunstic, D. Jevtic University of Zagreb, Croatia Faculty of Electrical Engineering and Computing Content Introduction SDL Markup Language SDL-ML Example Conclusion SAM 2010: Towards SDL Markup Language 2

577 views • 24 slides
Extensible Programming and Modeling Languages Ted Kaminski, Yogesh Mali, August Schwerdfeger and

Extensible Programming and Modeling Languages Ted Kaminski, Yogesh Mali, August Schwerdfeger and

Extensible Programming and Modeling Languages Ted Kaminski, Yogesh Mali, August Schwerdfeger and Eric Van Wyk University of Minnesota September 20, 2012, Lund, Sweden Page 1 Languages are not monolithic. But most language tools

458 views • 24 slides
PeCoH: HPC Skill Tree and Content Production Workflow K. Himstedt, N. Hbbe, S. Schrder, M.

PeCoH: HPC Skill Tree and Content Production Workflow K. Himstedt, N. Hbbe, S. Schrder, M.

PeCoH: HPC Skill Tree and Content Production Workflow K. Himstedt, N. Hbbe, S. Schrder, M. Kuhn, J. Kunkel, H. Stben, T. Ludwig, S. Olbrich, M. Riebisch Workshop on HPC-training, -education and -documentation RRZ Universitt Hamburg

529 views • 21 slides
XML and Web Data Data in HTML HyperText Markup Language Different data elements are

XML and Web Data Data in HTML HyperText Markup Language Different data elements are

XML and Web Data Data in HTML HyperText Markup Language Different data elements are set out using tags No schema? Based on the data itself, we can make a reasonable guess about the structure Self-describing CMPT

607 views • 27 slides
Program transformations 166/593 G. Castagna (CNRS) Cours de Programmation Avance 166 / 593

Program transformations 166/593 G. Castagna (CNRS) Cours de Programmation Avance 166 / 593

Program transformations 166/593 G. Castagna (CNRS) Cours de Programmation Avance 166 / 593 Outline 13 The fuss about purity 14 A Refresher Course on Operational Semantics 15 Closure conversion 16 Defunctionalization 17 Exception passing style

1.95k views • 172 slides
Querying the Web of Data with SPARQL and XSPARQL This tutorial presents partially joint work

Querying the Web of Data with SPARQL and XSPARQL This tutorial presents partially joint work

web: www.polleres.net twitter:@AxelPolleres Querying the Web of Data with SPARQL and XSPARQL This tutorial presents partially joint work with: Nuno Lopes (formerly NUI Galway , now IBM), Stefan , now Siemens AG), Daniele Dell'Aglio (Politecnico

1.05k views • 84 slides

More recommend