+
+ | Concept |
+ Roles |
+ CIA model |
+
+
+ |
+ Risk Source |
+ Risk |
+ Consequence |
+ Impact |
+ Confidentiality |
Integrity |
Availability |
@@ -4007,6 +5682,16 @@ Overview of Concepts and Roles
|
✓ |
+
+ | risk:CustomerSupportLimited |
+ |
+ ✓ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+
| risk:Damage |
|
@@ -4067,6 +5752,16 @@ Overview of Concepts and Roles
|
|
+
+ | risk:DelayedApplicationProcessing |
+ |
+ ✓ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+
| risk:DenialServiceAttack |
✓ |
@@ -4082,7 +5777,7 @@ Overview of Concepts and Roles
|
✓ |
✓ |
- |
+ ✓ |
|
|
|
@@ -4117,6 +5812,16 @@ Overview of Concepts and Roles
|
|
+
+ | risk:DisproportionateEnergyConsumption |
+ |
+ ✓ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+
| risk:DistributedDenialServiceAttack |
✓ |
@@ -4127,6 +5832,16 @@ Overview of Concepts and Roles
|
✓ |
+
+ | risk:Earthquake |
+ |
+ ✓ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+
| risk:EnvironmentalRisk |
|
@@ -4158,7 +5873,7 @@ Overview of Concepts and Roles
✓ |
- | risk:ErroneousSystemUse |
+ risk:ErroneousUse |
✓ |
✓ |
✓ |
@@ -4237,6 +5952,16 @@ Overview of Concepts and Roles
|
|
+
+ | risk:Floods |
+ |
+ ✓ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+
| risk:Fraud |
✓ |
@@ -4277,6 +6002,16 @@ Overview of Concepts and Roles
|
|
+
+ | risk:GroupRisk |
+ |
+ ✓ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+
| risk:Harassment |
|
@@ -4337,6 +6072,16 @@ Overview of Concepts and Roles
|
|
+
+ | risk:IdentityVerificationFailure |
+ |
+ ✓ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+
| risk:IllegalDataProcessing |
|
@@ -4357,6 +6102,66 @@ Overview of Concepts and Roles
|
|
+
+ | risk:InabilityToEnterIntoContract |
+ |
+ ✓ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+
+
+ | risk:InabilityToEstablishLegalClaims |
+ |
+ ✓ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+
+
+ | risk:InabilityToFulfillLegalObligations |
+ |
+ ✓ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+
+
+ | risk:InabilityToProcessPayments |
+ |
+ ✓ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+
+
+ | risk:InabilityToProtectVitalInterests |
+ |
+ ✓ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+
+
+ | risk:InabilityToProvideHealthCare |
+ |
+ ✓ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+
| risk:IndirectDiscrimination |
|
@@ -4478,13 +6283,43 @@ Overview of Concepts and Roles
|
- | risk:LegalRisk |
+ risk:LegalComplianceRisk |
+ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+ |
+
+
+ | risk:LegallyRelevantConsequence |
+ |
+ ✓ |
+ ✓ |
+ ✓ |
+ |
|
+ |
+
+
+ | risk:LegalRiskConcept |
+ ✓ |
+ ✓ |
✓ |
✓ |
|
|
|
+
+
+ | risk:LegalSupportLimited |
+ |
+ ✓ |
+ ✓ |
+ ✓ |
+ |
+ |
|
@@ -4557,6 +6392,16 @@ Overview of Concepts and Roles
|
|
+
+ | risk:LoyaltyProgramExclusion |
+ |
+ ✓ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+
| risk:MaliciousActivity |
✓ |
@@ -4677,6 +6522,16 @@ Overview of Concepts and Roles
|
|
+
+ | risk:OrganisationalRiskConcept |
+ ✓ |
+ ✓ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+
| risk:OutGroupHomogeneityBias |
✓ |
@@ -4697,6 +6552,26 @@ Overview of Concepts and Roles
|
|
+
+ | risk:PersonalisationDisabled |
+ |
+ ✓ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+
+
+ | risk:PersonalisationEnabled |
+ |
+ ✓ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+
| risk:PersonalSafetyEndangerment |
|
@@ -4737,6 +6612,16 @@ Overview of Concepts and Roles
|
|
+
+ | risk:PolicyRisk |
+ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+ |
+
| risk:Privacy |
|
@@ -4767,6 +6652,16 @@ Overview of Concepts and Roles
|
|
+
+ | risk:PublicServicesExclusion |
+ |
+ ✓ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+
| risk:RacialDiscrimination |
|
@@ -4858,7 +6753,7 @@ Overview of Concepts and Roles
|
- | risk:RightEroded |
+ risk:RightsDenied |
|
✓ |
✓ |
@@ -4868,7 +6763,7 @@ Overview of Concepts and Roles
|
- | risk:RightObstructed |
+ risk:RightsEroded |
|
✓ |
✓ |
@@ -4878,7 +6773,7 @@ Overview of Concepts and Roles
|
- | risk:RightsDenial |
+ risk:RightsExercisePrevented |
|
✓ |
✓ |
@@ -4888,7 +6783,7 @@ Overview of Concepts and Roles
|
- | risk:RightsExercisePrevention |
+ risk:RightsImpact |
|
✓ |
✓ |
@@ -4898,7 +6793,7 @@ Overview of Concepts and Roles
|
- | risk:RightsImpact |
+ risk:RightsLimited |
|
✓ |
✓ |
@@ -4908,7 +6803,7 @@ Overview of Concepts and Roles
|
- | risk:RightsLimitation |
+ risk:RightsObstructed |
|
✓ |
✓ |
@@ -4928,7 +6823,7 @@ Overview of Concepts and Roles
|
- | risk:RightsViolation |
+ risk:RightsViolated |
|
✓ |
✓ |
@@ -5007,6 +6902,126 @@ Overview of Concepts and Roles
|
|
+
+ | risk:ServiceAlternativeOffered |
+ |
+ ✓ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+
+
+ | risk:ServiceCostIncreased |
+ |
+ ✓ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+
+
+ | risk:ServiceDenied |
+ |
+ ✓ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+
+
+ | risk:ServiceLimited |
+ |
+ ✓ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+
+
+ | risk:ServiceNotProvided |
+ |
+ ✓ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+
+
+ | risk:ServicePartiallyProvided |
+ |
+ ✓ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+
+
+ | risk:ServiceProvided |
+ |
+ ✓ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+
+
+ | risk:ServiceProvisionDelayed |
+ |
+ ✓ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+
+
+ | risk:ServiceQualityReduced |
+ |
+ ✓ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+
+
+ | risk:ServiceRelatedConsequence |
+ |
+ ✓ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+
+
+ | risk:ServiceSecurityReduced |
+ |
+ ✓ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+
+
+ | risk:ServiceTermination |
+ |
+ ✓ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+
| risk:SexDiscrimination |
|
@@ -5098,8 +7113,8 @@ Overview of Concepts and Roles
|
- | risk:SocietalRisk |
- |
+ risk:SocietalRiskConcept |
+ ✓ |
✓ |
✓ |
✓ |
@@ -5157,6 +7172,16 @@ Overview of Concepts and Roles
|
✓ |
+
+ | risk:TechnicalRiskConcept |
+ ✓ |
+ ✓ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+
| risk:Terrorism |
|
@@ -5387,6 +7412,16 @@ Overview of Concepts and Roles
|
|
+
+ | risk:ViolatingObligation |
+ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+ |
+
| risk:ViolatingPolicy |
|
@@ -5397,6 +7432,16 @@ Overview of Concepts and Roles
|
|
+
+ | risk:ViolatingProhibition |
+ |
+ ✓ |
+ ✓ |
+ |
+ |
+ |
+ |
+
| risk:ViolatingStatutoryObligations |
|
@@ -5422,192 +7467,2009 @@ Overview of Concepts and Roles
-
-
- Risk Matrix
- Risk Matrix is a popularly used technique for qualitative risk analysis, through which a risk's likelihood and severity are used to obtain an overall risk level. To support its use, the RISK taxonomy provides concepts representing risk matrices of the format 3x3, 5x5, and 7x7. The concepts are expressed as combinations of Severity (Sx) and Likelihood (Lx) levels, and the resulting Risk Level (Lx) being used as its label. For example, the concept [=RM3x3S1L3=] represents a node in a 3x3 matrix with Severity and Likelihood level low (n=1) and Likelihood level high (n=3) with a resulting Risk Level of 'Moderate'. Similarly, [=RM7x7S4L7=] represents a node in a 7x7 risk matrix with Severity level moderate (n=4) and Likelihood level extremely high (n=7) with the resulting Risk Level of 'Very High Risk'.
- It is possible to change the risk levels for the risk matrix by replacing the supplied labels with a custom one. For example, to indicate that the concept [=RM3x3S1L3=] should be 'Low Risk' instead of 'Moderate'.
+
+
+
+ Rights Impacts
+ lorem ipsum
+
+
+
+ Risk Matrix
+ Risk Matrix is a popularly used technique for qualitative risk analysis, through which a risk's likelihood and severity are used to obtain an overall risk level. To support its use, the RISK taxonomy provides concepts representing risk matrices of the format 3x3, 5x5, and 7x7. The concepts are expressed as combinations of Severity (Sx) and Likelihood (Lx) levels, and the resulting Risk Level (Lx) being used as its label. For example, the concept [=RM3x3S1L3=] represents a node in a 3x3 matrix with Severity and Likelihood level low (n=1) and Likelihood level high (n=3) with a resulting Risk Level of 'Moderate'. Similarly, [=RM7x7S4L7=] represents a node in a 7x7 risk matrix with Severity level moderate (n=4) and Likelihood level extremely high (n=7) with the resulting Risk Level of 'Very High Risk'.
+ It is possible to change the risk levels for the risk matrix by replacing the supplied labels with a custom one. For example, to indicate that the concept [=RM3x3S1L3=] should be 'Low Risk' instead of 'Moderate'.
+
+
+ Risk Matrix 3x3
+
+
+ |
+ Low |
+ Moderate |
+ High |
+
+
+ | High |
+ [=RM7x7S3L5=] |
+ [=RM7x7S4L5=] |
+ [=RM7x7S5L5=] |
+
+
+ | Moderate |
+ [=RM7x7S3L4=] |
+ [=RM7x7S4L4=] |
+ [=RM7x7S5L4=] |
+
+
+ | Low |
+ [=RM7x7S3L3=] |
+ [=RM7x7S4L3=] |
+ [=RM7x7S5L3=] |
+
+
+
+
+
+ Risk Matrix 5x5
+
+
+ |
+ Very Low |
+ Low |
+ Moderate |
+ High |
+ Very High |
+
+
+ | Very High |
+ [=RM7x7S2L6=] |
+ [=RM7x7S3L6=] |
+ [=RM7x7S4L6=] |
+ [=RM7x7S5L6=] |
+ [=RM7x7S6L6=] |
+
+
+ | High |
+ [=RM7x7S2L5=] |
+ [=RM7x7S3L5=] |
+ [=RM7x7S4L5=] |
+ [=RM7x7S5L5=] |
+ [=RM7x7S6L5=] |
+
+
+ | Moderate |
+ [=RM7x7S2L4=] |
+ [=RM7x7S3L4=] |
+ [=RM7x7S4L4=] |
+ [=RM7x7S5L4=] |
+ [=RM7x7S6L4=] |
+
+
+ | Low |
+ [=RM7x7S2L3=] |
+ [=RM7x7S3L3=] |
+ [=RM7x7S4L3=] |
+ [=RM7x7S5L3=] |
+ [=RM7x7S6L3=] |
+
+
+ | Very Low |
+ [=RM7x7S2L2=] |
+ [=RM7x7S3L2=] |
+ [=RM7x7S4L2=] |
+ [=RM7x7S5L2=] |
+ [=RM7x7S6L2=] |
+
+
+
+
+
+ Risk Matrix 7x7
+
+
+ |
+ Extremely Low |
+ Very Low |
+ Low |
+ Moderate |
+ High |
+ Very High |
+ Extremely High |
+
+
+ | Extremely High |
+ [=RM7x7S1L7=] |
+ [=RM7x7S2L7=] |
+ [=RM7x7S3L7=] |
+ [=RM7x7S4L7=] |
+ [=RM7x7S5L7=] |
+ [=RM7x7S6L7=] |
+ [=RM7x7S7L7=] |
+
+
+ | Very High |
+ [=RM7x7S1L6=] |
+ [=RM7x7S2L6=] |
+ [=RM7x7S3L6=] |
+ [=RM7x7S4L6=] |
+ [=RM7x7S5L6=] |
+ [=RM7x7S6L6=] |
+ [=RM7x7S7L6=] |
+
+
+ | High |
+ [=RM7x7S1L5=] |
+ [=RM7x7S2L5=] |
+ [=RM7x7S3L5=] |
+ [=RM7x7S4L5=] |
+ [=RM7x7S5L5=] |
+ [=RM7x7S6L5=] |
+ [=RM7x7S7L5=] |
+
+
+ | Moderate |
+ [=RM7x7S1L4=] |
+ [=RM7x7S2L4=] |
+ [=RM7x7S3L4=] |
+ [=RM7x7S4L4=] |
+ [=RM7x7S5L4=] |
+ [=RM7x7S6L4=] |
+ [=RM7x7S7L4=] |
+
+
+ | Low |
+ [=RM7x7S1L3=] |
+ [=RM7x7S2L3=] |
+ [=RM7x7S3L3=] |
+ [=RM7x7S4L3=] |
+ [=RM7x7S5L3=] |
+ [=RM7x7S6L3=] |
+ [=RM7x7S7L3=] |
+
+
+ | Very Low |
+ [=RM7x7S1L2=] |
+ [=RM7x7S2L2=] |
+ [=RM7x7S3L2=] |
+ [=RM7x7S4L2=] |
+ [=RM7x7S5L2=] |
+ [=RM7x7S6L2=] |
+ [=RM7x7S7L2=] |
+
+
+ | Extremely Low |
+ [=RM7x7S1L1=] |
+ [=RM7x7S2L1=] |
+ [=RM7x7S3L1=] |
+ [=RM7x7S4L1=] |
+ [=RM7x7S5L1=] |
+ [=RM7x7S6L1=] |
+ [=RM7x7S7L1=] |
+
+
+
+
+
+
+
+
+Vocabulary Index
+
+ Classes
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ Availability Concept
+
+
+
+ | Term |
+ AvailabilityConcept |
+ Prefix |
+ risk |
+
+
+ | Label |
+ Availability Concept |
+
+
+ | IRI |
+ https://w3id.org/dpv/risk#AvailabilityConcept |
+
+
+ |
+
+
+ | Type |
+ rdfs:Class, skos:Concept |
+
+
+
+ | Broader/Parent types |
+ dpv:RiskConcept
+ |
+
+
+
+
+
+
+
+ |
+
+
+ | Definition |
+ Indicates a concept is relevant to 'Availability' in CIA InfoSec model |
+
+
+ | Usage Note |
+ This concept allows indicating the applicability of Impact dimension to concepts whether they are a risk source, risk, consequence, or impact |
+
+
+
+ |
+
+
+
+ |
+
+
+ | Date Created |
+ 2024-09-29 |
+
+
+
+ | Contributors |
+ Harshvardhan J. Pandit |
+
+ |
+
+
+ | See More: |
+ section CORE in RISK
+ |
+
+
+
+
+
+
+
+
+
+
+
+ Avoid Source
+
+
+
+ | Term |
+ AvoidSource |
+ Prefix |
+ risk |
+
+
+ | Label |
+ Avoid Source |
+
+
+ | IRI |
+ https://w3id.org/dpv/risk#AvoidSource |
+
+
+ |
+
+
+ | Type |
+ rdfs:Class, skos:Concept, risk:RiskControl |
+
+
+
+ | Broader/Parent types |
+ risk:SourceControl
+ → risk:RiskControl
+ → dpv:RiskMitigationMeasure
+ → dpv:TechnicalOrganisationalMeasure
+ |
+
+
+
+ | Object of relation |
+ dpv:hasTechnicalOrganisationalMeasure,
+ dpv:isMitigatedByMeasure,
+ risk:hasControl
+ |
+
+
+
+
+
+ |
+
+
+ | Definition |
+ Control that avoids the risk source |
+
+
+
+
+ |
+
+
+
+ |
-
- Risk Matrix 3x3
-
-
- |
- Low |
- Moderate |
- High |
+
+ | Date Created |
+ 2024-05-19 |
+
+
+
+ | Contributors |
+ Harshvardhan J. Pandit |
+ |
+
- | High |
- [=RM7x7S3L5=] |
- [=RM7x7S4L5=] |
- [=RM7x7S5L5=] |
+ See More: |
+ section RISK-CONTROLS in RISK
+ |
+
+
+
+
+
+
+
+
+
+
+ Benefit
+
+
- | Moderate |
- [=RM7x7S3L4=] |
- [=RM7x7S4L4=] |
- [=RM7x7S5L4=] |
+ Term |
+ Benefit |
+ Prefix |
+ risk |
- | Low |
- [=RM7x7S3L3=] |
- [=RM7x7S4L3=] |
- [=RM7x7S5L3=] |
+ Label |
+ Benefit |
-
-
+
+ | IRI |
+ https://w3id.org/dpv/risk#Benefit |
+
+
+ |
+
+
+ | Type |
+ rdfs:Class, skos:Concept, dpv:RiskConcept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk |
+
+
+
+ | Broader/Parent types |
+ risk:Compensation
+ → risk:Renumeration
+ → risk:FinancialImpact
+ → risk:OrganisationalRiskConcept
+ → dpv:RiskConcept
+ |
+
+
-
- Risk Matrix 5x5
-
-
- |
- Very Low |
- Low |
- Moderate |
- High |
- Very High |
+
+
+
+
+
|
+
+
+ | Definition |
+ Concept representing benefits - both material and immaterial |
+
+
+ | Usage Note |
+ Even though benefits is filed under organisational concepts, it can be applied to individuals (humans) and groups which are societal |
+
+
+
+ |
+
+
+
+ |
+
+
+ | Date Created |
+ 2022-03-23 |
+
+
+ | Date Modified |
+ 2024-08-16 |
+
+
+ | Contributors |
+ Harshvardhan J. Pandit, Julian Flake, Georg P. Krog, Fajar Ekaputra, Beatriz Esteves, Axel Polleres |
+ |
+
- | Very High |
- [=RM7x7S2L6=] |
- [=RM7x7S3L6=] |
- [=RM7x7S4L6=] |
- [=RM7x7S5L6=] |
- [=RM7x7S6L6=] |
+ See More: |
+ section RISK-TAXONOMY in RISK
+ |
+
+
+
+
+
+
+
+
+
+
+ Bias
+
+
- | High |
- [=RM7x7S2L5=] |
- [=RM7x7S3L5=] |
- [=RM7x7S4L5=] |
- [=RM7x7S5L5=] |
- [=RM7x7S6L5=] |
+ Term |
+ Bias |
+ Prefix |
+ risk |
- | Moderate |
- [=RM7x7S2L4=] |
- [=RM7x7S3L4=] |
- [=RM7x7S4L4=] |
- [=RM7x7S5L4=] |
- [=RM7x7S6L4=] |
+ Label |
+ Bias |
-
- | Low |
- [=RM7x7S2L3=] |
- [=RM7x7S3L3=] |
- [=RM7x7S4L3=] |
- [=RM7x7S5L3=] |
- [=RM7x7S6L3=] |
+
+ | IRI |
+ https://w3id.org/dpv/risk#Bias |
+
+
+ |
+
+
+ | Type |
+ rdfs:Class, skos:Concept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource, risk:RiskConcept |
+
+
+
+ | Broader/Parent types |
+ risk:TechnicalRiskConcept
+ → dpv:RiskConcept
+ |
+
+
+
+
+
+
+
+ |
+
+
+ | Definition |
+ Bias is defined as the systematic difference in treatment of certain objects, people, or groups in comparison to others |
+
+
+
+
+ |
+
+
+ | Source |
+ |
+
+
+ |
+
+
+ | Date Created |
+ 2024-09-13 |
+
+
+
+ | Contributors |
+ Daniel Doherty, Delaram Golpayegani, Harshvardhan J. Pandit |
+ |
+
- | Very Low |
- [=RM7x7S2L2=] |
- [=RM7x7S3L2=] |
- [=RM7x7S4L2=] |
- [=RM7x7S5L2=] |
- [=RM7x7S6L2=] |
+ See More: |
+ section RISK-TAXONOMY in AI
+ |
-
+
+
-
-
@@ -5615,11 +9477,169 @@ Classes
+
+
@@ -5627,21 +9647,251 @@ Classes
+
+
+
@@ -5649,7 +9899,76 @@ Classes
+
@@ -5657,7 +9976,76 @@ Classes
+
@@ -5667,7 +10055,85 @@ Classes
+
@@ -5675,7 +10141,85 @@ Classes
+
@@ -5683,44 +10227,43 @@ Classes
-
-
- 3 Likelihood Levels
+
+ Confidentiality Breach
| Term |
- 3LikelihoodLevels |
+ ConfidentialityBreach |
Prefix |
risk |
| Label |
- 3 Likelihood Levels |
+ Confidentiality Breach |
| IRI |
- https://w3id.org/dpv/risk#3LikelihoodLevels |
+ https://w3id.org/dpv/risk#ConfidentialityBreach |
|
| Type |
- rdfs:Class, skos:Concept, dpv:Likelihood |
+ rdfs:Class, skos:Concept, dpv:RiskConcept, risk:ConfidentialityConcept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource |
| Broader/Parent types |
- dpv:Likelihood
+ | risk:DataBreach
+ → risk:SecurityBreach
+ → risk:OperationalSecurityRisk
+ → risk:TechnicalRiskConcept
+ → dpv:RiskConcept
|
-
- | Object of relation |
- dpv:hasLikelihood
- |
-
+
@@ -5729,22 +10272,28 @@ 3 Likelihood Levels
| Definition |
- Scale with 3 Likelihood Levels from High to Low |
+ Concept representing Confidentiality Breach |
|
-
+
+ | Source |
+ ISO/IEC 27005:2018 |
+
|
| Date Created |
- 2022-08-18 |
+ 2022-08-17 |
-
+
+ | Date Modified |
+ 2024-08-16 |
+
| Contributors |
Harshvardhan J. Pandit |
@@ -5753,7 +10302,7 @@ 3 Likelihood Levels
| See More: |
- section RISK-LEVELS in RISK
+ | section RISK-TAXONOMY in RISK
|
@@ -5761,44 +10310,39 @@ 3 Likelihood Levels
-
-
- 3 Risk Levels
+
+ Confidentiality Concept
| Term |
- 3RiskLevels |
+ ConfidentialityConcept |
Prefix |
risk |
| Label |
- 3 Risk Levels |
+ Confidentiality Concept |
| IRI |
- https://w3id.org/dpv/risk#3RiskLevels |
+ https://w3id.org/dpv/risk#ConfidentialityConcept |
|
| Type |
- rdfs:Class, skos:Concept, dpv:RiskLevel |
+ rdfs:Class, skos:Concept |
| Broader/Parent types |
- dpv:RiskLevel
+ | dpv:RiskConcept
|
-
- | Object of relation |
- dpv:hasRiskLevel
- |
-
+
@@ -5807,9 +10351,12 @@ 3 Risk Levels
| Definition |
- Scale with 3 Risk Levels from High to Low |
+ Indicates a concept is relevant to 'Confidentiality' in CIA InfoSec model |
-
+
+ | Usage Note |
+ This concept allows indicating the applicability of Confidentiality dimension to concepts whether they are a risk source, risk, consequence, or impact |
+
|
@@ -5820,7 +10367,7 @@ 3 Risk Levels
| Date Created |
- 2022-08-18 |
+ 2024-09-29 |
@@ -5831,7 +10378,7 @@ 3 Risk Levels
| See More: |
- section RISK-LEVELS in RISK
+ | section CORE in RISK
|
@@ -5839,42 +10386,42 @@ 3 Risk Levels
-
-
- 3 Severity Levels
+
+ Confidentiality Incident
| Term |
- 3SeverityLevels |
+ ConfidentialityIncident |
Prefix |
risk |
| Label |
- 3 Severity Levels |
+ Confidentiality Incident |
| IRI |
- https://w3id.org/dpv/risk#3SeverityLevels |
+ https://w3id.org/dpv/risk#ConfidentialityIncident |
|
| Type |
- rdfs:Class, skos:Concept, dpv:Severity |
+ rdfs:Class, skos:Concept |
| Broader/Parent types |
- dpv:Severity
+ | risk:Incident
+ → dpv:RiskConcept
|
| Object of relation |
- dpv:hasSeverity
+ | risk:hasIncident
|
@@ -5885,7 +10432,7 @@ 3 Severity Levels
| Definition |
- Scale with 3 Severity Levels from High to Low |
+ Incident where the confidentiality of information or system has been affected |
@@ -5898,18 +10445,15 @@ 3 Severity Levels
| Date Created |
- 2022-08-18 |
+ 2024-05-19 |
-
- | Contributors |
- Harshvardhan J. Pandit |
-
+
|
| See More: |
- section RISK-LEVELS in RISK
+ | section INCIDENT in RISK
|
@@ -5918,43 +10462,45 @@ 3 Severity Levels
-
- 5 Likelihood Levels
+
+
+
+
+ Confirmation Bias
| Term |
- 5LikelihoodLevels |
+ ConfirmationBias |
Prefix |
risk |
| Label |
- 5 Likelihood Levels |
+ Confirmation Bias |
| IRI |
- https://w3id.org/dpv/risk#5LikelihoodLevels |
+ https://w3id.org/dpv/risk#ConfirmationBias |
|
| Type |
- rdfs:Class, skos:Concept, dpv:Likelihood |
+ rdfs:Class, skos:Concept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource, risk:RiskConcept |
| Broader/Parent types |
- dpv:Likelihood
+ | risk:CognitiveBias
+ → risk:Bias
+ → risk:TechnicalRiskConcept
+ → dpv:RiskConcept
|
-
- | Object of relation |
- dpv:hasLikelihood
- |
-
+
@@ -5963,31 +10509,34 @@ 5 Likelihood Levels
| Definition |
- Scale with 5 Likelihood Levels from Very High to Very Low |
+ Bias that occurs when hypotheses, regardless of their veracity, are more likely to be confirmed by the intentional or unintentional interpretation of information |
|
-
+
+ | Source |
+ |
+
|
| Date Created |
- 2022-08-18 |
+ 2024-09-13 |
| Contributors |
- Harshvardhan J. Pandit |
+ Daniel Doherty, Delaram Golpayegani, Harshvardhan J. Pandit |
|
| See More: |
- section RISK-LEVELS in RISK
+ | section RISK-TAXONOMY in RISK
|
@@ -5996,43 +10545,46 @@ 5 Likelihood Levels
-
- 5 Risk Levels
+
+
+
+
+ Confounding Variables Bias
| Term |
- 5RiskLevels |
+ ConfoundingVariablesBias |
Prefix |
risk |
| Label |
- 5 Risk Levels |
+ Confounding Variables Bias |
| IRI |
- https://w3id.org/dpv/risk#5RiskLevels |
+ https://w3id.org/dpv/risk#ConfoundingVariablesBias |
|
| Type |
- rdfs:Class, skos:Concept, dpv:RiskLevel |
+ rdfs:Class, skos:Concept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource, risk:RiskConcept |
| Broader/Parent types |
- dpv:RiskLevel
+ | risk:StatisticalBias
+ → risk:DataBias
+ → risk:Bias
+ → risk:TechnicalRiskConcept
+ → dpv:RiskConcept
|
-
- | Object of relation |
- dpv:hasRiskLevel
- |
-
+
@@ -6041,31 +10593,34 @@ 5 Risk Levels
| Definition |
- Scale with 5 Risk Levels from Very High to Very Low |
+ Bias that occurs as a confounding variable that influences both the dependent variable and independent variable causing a spurious association |
|
-
+
+ | Source |
+ |
+
|
| Date Created |
- 2022-08-18 |
+ 2024-09-13 |
| Contributors |
- Harshvardhan J. Pandit |
+ Daniel Doherty, Delaram Golpayegani, Harshvardhan J. Pandit |
|
| See More: |
- section RISK-LEVELS in RISK
+ | section RISK-TAXONOMY in RISK
|
@@ -6074,41 +10629,45 @@ 5 Risk Levels
-
- 5 Severity Levels
+
+ Consequence Control
| Term |
- 5SeverityLevels |
+ ConsequenceControl |
Prefix |
risk |
| Label |
- 5 Severity Levels |
+ Consequence Control |
| IRI |
- https://w3id.org/dpv/risk#5SeverityLevels |
+ https://w3id.org/dpv/risk#ConsequenceControl |
|
| Type |
- rdfs:Class, skos:Concept, dpv:Severity |
+ rdfs:Class, skos:Concept, risk:RiskControl |
| Broader/Parent types |
- dpv:Severity
+ | risk:RiskControl
+ → dpv:RiskMitigationMeasure
+ → dpv:TechnicalOrganisationalMeasure
|
| Object of relation |
- dpv:hasSeverity
+ | dpv:hasTechnicalOrganisationalMeasure,
+ dpv:isMitigatedByMeasure,
+ risk:hasControl
|
@@ -6119,7 +10678,7 @@ 5 Severity Levels
| Definition |
- Scale with 5 Severity Levels from Very High to Very Low |
+ Risk Mitigation Measure that controls the Consequences |
@@ -6132,7 +10691,7 @@ 5 Severity Levels
| Date Created |
- 2022-08-18 |
+ 2024-05-19 |
@@ -6143,7 +10702,7 @@ 5 Severity Levels
| See More: |
- section RISK-LEVELS in RISK
+ | section RISK-CONTROLS in RISK
|
@@ -6152,41 +10711,45 @@ 5 Severity Levels
-
- 7 Likelihood Levels
+
+ Containment Control
| Term |
- 7LikelihoodLevels |
+ ContainmentControl |
Prefix |
risk |
| Label |
- 7 Likelihood Levels |
+ Containment Control |
| IRI |
- https://w3id.org/dpv/risk#7LikelihoodLevels |
+ https://w3id.org/dpv/risk#ContainmentControl |
|
| Type |
- rdfs:Class, skos:Concept, dpv:Likelihood |
+ rdfs:Class, skos:Concept, risk:RiskControl |
| Broader/Parent types |
- dpv:Likelihood
+ | risk:RiskControl
+ → dpv:RiskMitigationMeasure
+ → dpv:TechnicalOrganisationalMeasure
|
| Object of relation |
- dpv:hasLikelihood
+ | dpv:hasTechnicalOrganisationalMeasure,
+ dpv:isMitigatedByMeasure,
+ risk:hasControl
|
@@ -6197,7 +10760,7 @@ 7 Likelihood Levels
| Definition |
- Scale with 7 Likelihood Levels from Extremely High to Extremely Low |
+ Control to contain event |
@@ -6210,18 +10773,15 @@ 7 Likelihood Levels
| Date Created |
- 2022-08-18 |
+ 2024-05-19 |
-
- | Contributors |
- Harshvardhan J. Pandit |
-
+
|
| See More: |
- section RISK-LEVELS in RISK
+ | section RISK-CONTROLS in RISK
|
@@ -6230,43 +10790,49 @@ 7 Likelihood Levels
-
- 7 Risk Levels
+
+
+
+ Copyright Violation
| Term |
- 7RiskLevels |
+ CopyrightViolation |
Prefix |
risk |
| Label |
- 7 Risk Levels |
+ Copyright Violation |
| IRI |
- https://w3id.org/dpv/risk#7RiskLevels |
+ https://w3id.org/dpv/risk#CopyrightViolation |
|
| Type |
- rdfs:Class, skos:Concept, dpv:RiskLevel |
+ rdfs:Class, skos:Concept, dpv:RiskConcept, risk:PotentialConsequence, risk:PotentialRisk |
| Broader/Parent types |
- dpv:RiskLevel
+ | risk:LegalComplianceRisk
+ → risk:LegalRiskConcept
+ → dpv:RiskConcept
+ |
+ | Broader/Parent types |
+ risk:ViolatingObligation
+ → risk:PolicyRisk
+ → risk:LegalRiskConcept
+ → dpv:RiskConcept
|
-
- | Object of relation |
- dpv:hasRiskLevel
- |
-
+
@@ -6275,22 +10841,28 @@ 7 Risk Levels
| Definition |
- Scale with 7 Risk Levels from Extremely High to Extremely Low |
+ Concept representing Copyright Violation |
|
-
+
+ | Source |
+ ENISA Reference Incident Classification Taxonomy 2018 |
+
|
| Date Created |
- 2022-08-18 |
+ 2022-08-17 |
-
+
+ | Date Modified |
+ 2024-08-16 |
+
| Contributors |
Harshvardhan J. Pandit |
@@ -6299,52 +10871,58 @@ 7 Risk Levels
| See More: |
- section RISK-LEVELS in RISK
+ | section RISK-TAXONOMY in RISK
|
+
+
-
- 7 Severity Levels
+
+
+
+
+ Coverage Bias
| Term |
- 7SeverityLevels |
+ CoverageBias |
Prefix |
risk |
| Label |
- 7 Severity Levels |
+ Coverage Bias |
| IRI |
- https://w3id.org/dpv/risk#7SeverityLevels |
+ https://w3id.org/dpv/risk#CoverageBias |
|
| Type |
- rdfs:Class, skos:Concept, dpv:Severity |
+ rdfs:Class, skos:Concept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource, risk:RiskConcept |
| Broader/Parent types |
- dpv:Severity
+ | risk:SelectionBias
+ → risk:StatisticalBias
+ → risk:DataBias
+ → risk:Bias
+ → risk:TechnicalRiskConcept
+ → dpv:RiskConcept
|
-
- | Object of relation |
- dpv:hasSeverity
- |
-
+
@@ -6353,31 +10931,34 @@ 7 Severity Levels
| Definition |
- Scale with 7 Severity Levels from Extremely High to Extremely Low |
+ Bias that occurs when a population represented in a dataset does not match the actual or real population that are being used |
|
-
+
+ | Source |
+ |
+
|
| Date Created |
- 2022-08-18 |
+ 2024-09-13 |
| Contributors |
- Harshvardhan J. Pandit |
+ Daniel Doherty, Delaram Golpayegani, Harshvardhan J. Pandit |
|
| See More: |
- section RISK-LEVELS in RISK
+ | section RISK-TAXONOMY in RISK
|
@@ -6385,23 +10966,23 @@ 7 Severity Levels
-
- Accidental Incident
+
+ Cross-Border Incident
| Term |
- AccidentalIncident |
+ CrossBorderIncident |
Prefix |
risk |
| Label |
- Accidental Incident |
+ Cross-Border Incident |
| IRI |
- https://w3id.org/dpv/risk#AccidentalIncident |
+ https://w3id.org/dpv/risk#CrossBorderIncident |
|
@@ -6431,7 +11012,7 @@ Accidental Incident
| Definition |
- Incident caused due to accidental actions arising from human or human-controlled situations |
+ Incident involving cross-border or multiple jurisdictions |
@@ -6464,36 +11045,37 @@ Accidental Incident
-
- Accidental Misuse
+
+ Cryptojacking
| Term |
- AccidentalMisuse |
+ Cryptojacking |
Prefix |
risk |
| Label |
- Accidental Misuse |
+ Cryptojacking |
| IRI |
- https://w3id.org/dpv/risk#AccidentalMisuse |
+ https://w3id.org/dpv/risk#Cryptojacking |
|
| Type |
- rdfs:Class, skos:Concept, dpv:RiskConcept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource |
+ rdfs:Class, skos:Concept, dpv:RiskConcept, risk:AvailabilityConcept, risk:PotentialRisk, risk:PotentialRiskSource |
| Broader/Parent types |
- risk:Misuse
- → risk:UserRisks
+ | risk:SecurityAttack
+ → risk:ExternalSecurityThreat
+ → risk:TechnicalRiskConcept
→ dpv:RiskConcept
|
@@ -6507,20 +11089,32 @@ Accidental Misuse
| Definition |
- Accidental Misuse |
+ Concept representing Cryptojacking |
|
-
+
+ | Source |
+ ENISA Threat Landscape 2021 |
+
|
-
-
-
+
+ | Date Created |
+ 2022-08-17 |
+
+
+ | Date Modified |
+ 2024-08-16 |
+
+
+ | Contributors |
+ Harshvardhan J. Pandit |
+
|
@@ -6537,40 +11131,36 @@ Accidental Misuse
-
- Age Discrimination
+
+ Customer Support Limited
| Term |
- AgeDiscrimination |
+ CustomerSupportLimited |
Prefix |
risk |
| Label |
- Age Discrimination |
+ Customer Support Limited |
| IRI |
- https://w3id.org/dpv/risk#AgeDiscrimination |
+ https://w3id.org/dpv/risk#CustomerSupportLimited |
|
| Type |
- rdfs:Class, skos:Concept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk, risk:RiskConcept |
+ rdfs:Class, skos:Concept, dpv:RiskConcept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk |
| Broader/Parent types |
- risk:Discrimination
- → risk:RiskConcept
- |
- | Broader/Parent types |
- risk:Discrimination
- → risk:SocietalRisk
+ | risk:ServiceRelatedConsequence
+ → risk:OrganisationalRiskConcept
→ dpv:RiskConcept
|
@@ -6584,7 +11174,7 @@ Age Discrimination
| Definition |
- Discrimination based on a person's age, often impacting older or younger individuals |
+ Concept representing customer support to be limited |
@@ -6597,7 +11187,7 @@ Age Discrimination
| Date Created |
- 2024-09-30 |
+ 2024-10-21 |
@@ -6617,36 +11207,36 @@ Age Discrimination
-
-
- Authorisation Failure
+
+ Damage
| Term |
- AuthorisationFailure |
+ Damage |
Prefix |
risk |
| Label |
- Authorisation Failure |
+ Damage |
| IRI |
- https://w3id.org/dpv/risk#AuthorisationFailure |
+ https://w3id.org/dpv/risk#Damage |
|
| Type |
- rdfs:Class, skos:Concept, dpv:RiskConcept, risk:ConfidentialityConcept, risk:IntegrityConcept, risk:PotentialRisk, risk:PotentialRiskSource |
+ rdfs:Class, skos:Concept, dpv:RiskConcept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk |
| Broader/Parent types |
- risk:OperationalSecurityRisk
+ | risk:LegallyRelevantConsequence
+ → risk:LegalRiskConcept
→ dpv:RiskConcept
|
@@ -6660,23 +11250,20 @@ Authorisation Failure
| Definition |
- Something that acts as or causes Authorisation Failure |
+ Concept representing Damage |
|
-
- | Source |
- ENISa Trust Services Security Incidents 2021 |
-
+
|
| Date Created |
- 2022-08-17 |
+ 2022-03-30 |
| Date Modified |
@@ -6702,38 +11289,37 @@ Authorisation Failure
-
-
- None
+
+ Data Aggregation Bias
| Term |
- AvailabilityBreach |
+ DataAggregationBias |
Prefix |
risk |
| Label |
- None |
+ Data Aggregation Bias |
| IRI |
- https://w3id.org/dpv/risk#AvailabilityBreach |
+ https://w3id.org/dpv/risk#DataAggregationBias |
|
| Type |
- rdfs:Class, skos:Concept, dpv:RiskConcept, risk:AvailabilityConcept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource |
+ rdfs:Class, skos:Concept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource, risk:RiskConcept |
| Broader/Parent types |
- risk:DataBreach
- → risk:SecurityBreach
- → risk:OperationalSecurityRisk
+ | risk:DataBias
+ → risk:Bias
+ → risk:TechnicalRiskConcept
→ dpv:RiskConcept
|
@@ -6745,19 +11331,31 @@ None
|
-
+
+ | Definition |
+ Bias that occurs when aggregating data covering different groups of objects has different statistical distributions that introduce bias into the data |
+
|
-
+
+ | Source |
+ |
+
|
-
+
+ | Date Created |
+ 2024-09-13 |
+
-
+
+ | Contributors |
+ Daniel Doherty, Delaram Golpayegani, Harshvardhan J. Pandit |
+
|
@@ -6770,35 +11368,41 @@ None
-
- Availability Concept
+
+
+
+
+
+ Data Bias
| Term |
- AvailabilityConcept |
+ DataBias |
Prefix |
risk |
| Label |
- Availability Concept |
+ Data Bias |
| IRI |
- https://w3id.org/dpv/risk#AvailabilityConcept |
+ https://w3id.org/dpv/risk#DataBias |
|
| Type |
- rdfs:Class, skos:Concept |
+ rdfs:Class, skos:Concept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource, risk:RiskConcept |
| Broader/Parent types |
- dpv:RiskConcept
+ | risk:Bias
+ → risk:TechnicalRiskConcept
+ → dpv:RiskConcept
|
@@ -6811,34 +11415,34 @@ Availability Concept
| Definition |
- Indicates a concept is relevant to 'Availability' in CIA InfoSec model |
+ Bias that occurs when data properties that if unaddressed lead to systems that perform better or worse for different groups |
-
- | Usage Note |
- This concept allows indicating the applicability of Impact dimension to concepts whether they are a risk source, risk, consequence, or impact |
-
+
|
-
+
+ | Source |
+ |
+
|
| Date Created |
- 2024-09-29 |
+ 2024-09-13 |
| Contributors |
- Harshvardhan J. Pandit |
+ Daniel Doherty, Delaram Golpayegani, Harshvardhan J. Pandit |
|
| See More: |
- section CORE in RISK
+ | section RISK-TAXONOMY in RISK
|
@@ -6846,44 +11450,49 @@ Availability Concept
-
- Availability Incident
+
+
+
+
+
+
+
+
+ Data Breach
| Term |
- AvailabilityIncident |
+ DataBreach |
Prefix |
risk |
| Label |
- Availability Incident |
+ Data Breach |
| IRI |
- https://w3id.org/dpv/risk#AvailabilityIncident |
+ https://w3id.org/dpv/risk#DataBreach |
|
| Type |
- rdfs:Class, skos:Concept |
+ rdfs:Class, skos:Concept, dpv:RiskConcept, risk:AvailabilityConcept, risk:ConfidentialityConcept, risk:IntegrityConcept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource |
| Broader/Parent types |
- risk:Incident
+ | risk:SecurityBreach
+ → risk:OperationalSecurityRisk
+ → risk:TechnicalRiskConcept
→ dpv:RiskConcept
|
-
- | Object of relation |
- risk:hasIncident
- |
-
+
@@ -6892,28 +11501,40 @@ Availability Incident
| Definition |
- Incident where the availability of information or system has been affected |
+ Concept representing Data Breach |
+ |
+ Examples |
+ dex:E0069 :: Using DPV and RISK extension to represent incidents
dex:E0071 :: Using risk controls to express how tech/org measures address the risk |
|
-
+
+ | Source |
+ ISO/IEC 27005:2018 |
+
|
| Date Created |
- 2024-05-19 |
+ 2022-08-17 |
-
-
+
+ | Date Modified |
+ 2024-08-16 |
+
+
+ | Contributors |
+ Harshvardhan J. Pandit |
+
|
| See More: |
- section INCIDENT in RISK
+ | section RISK-TAXONOMY in DEX
|
@@ -6922,48 +11543,45 @@ Availability Incident
-
- Avoid Source
+
+
+
+
+
+ Data Corruption
| Term |
- AvoidSource |
+ DataCorruption |
Prefix |
risk |
| Label |
- Avoid Source |
+ Data Corruption |
| IRI |
- https://w3id.org/dpv/risk#AvoidSource |
+ https://w3id.org/dpv/risk#DataCorruption |
|
| Type |
- rdfs:Class, skos:Concept, risk:RiskControl |
+ rdfs:Class, skos:Concept, dpv:RiskConcept, risk:IntegrityConcept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource |
| Broader/Parent types |
- risk:SourceControl
- → risk:RiskControl
- → dpv:RiskMitigationMeasure
- → dpv:TechnicalOrganisationalMeasure
+ | risk:OperationalSecurityRisk
+ → risk:TechnicalRiskConcept
+ → dpv:RiskConcept
|
-
- | Object of relation |
- dpv:hasTechnicalOrganisationalMeasure,
- dpv:isMitigatedByMeasure,
- risk:hasControl
- |
-
+
@@ -6972,22 +11590,31 @@ Avoid Source
| Definition |
- Control that avoids the risk source |
+ Concept representing Corruption of Data |
-
+
+ | Usage Note |
+ This concept was called "Corruption Data" in DPV 2.0 |
+
|
-
+
+ | Source |
+ ISO/IEC 27005:2018 |
+
|
| Date Created |
- 2024-05-19 |
+ 2022-08-17 |
-
+
+ | Date Modified |
+ 2024-08-16 |
+
| Contributors |
Harshvardhan J. Pandit |
@@ -6996,7 +11623,7 @@ Avoid Source
| See More: |
- section RISK-CONTROLS in RISK
+ | section RISK-TAXONOMY in RISK
|
@@ -7008,37 +11635,37 @@ Avoid Source
-
- Benefit
+
+ Data Processing Bias
| Term |
- Benefit |
+ DataProcessingBias |
Prefix |
risk |
| Label |
- Benefit |
+ Data Processing Bias |
| IRI |
- https://w3id.org/dpv/risk#Benefit |
+ https://w3id.org/dpv/risk#DataProcessingBias |
|
| Type |
- rdfs:Class, skos:Concept, dpv:RiskConcept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk |
+ rdfs:Class, skos:Concept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource, risk:RiskConcept |
| Broader/Parent types |
- risk:Compensation
- → risk:Renumeration
- → risk:FinancialImpact
+ | risk:DataBias
+ → risk:Bias
+ → risk:TechnicalRiskConcept
→ dpv:RiskConcept
|
@@ -7052,28 +11679,28 @@ Benefit
| Definition |
- Something that acts as or causes benefits |
+ Bias that occurs due to pre-processing (or post-processing) of data, even though the original data would not have led to any bias |
|
-
+
+ | Source |
+ |
+
|
| Date Created |
- 2022-03-23 |
+ 2024-09-13 |
-
- | Date Modified |
- 2024-08-16 |
-
+
| Contributors |
- Harshvardhan J. Pandit, Julian Flake, Georg P. Krog, Fajar Ekaputra, Beatriz Esteves, Axel Polleres |
+ Daniel Doherty, Delaram Golpayegani, Harshvardhan J. Pandit |
|
@@ -7091,35 +11718,37 @@ Benefit
-
- Bias
+
+ Delayed Application Processing
| Term |
- Bias |
+ DelayedApplicationProcessing |
Prefix |
risk |
| Label |
- Bias |
+ Delayed Application Processing |
| IRI |
- https://w3id.org/dpv/risk#Bias |
+ https://w3id.org/dpv/risk#DelayedApplicationProcessing |
|
| Type |
- rdfs:Class, skos:Concept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource, risk:RiskConcept |
+ rdfs:Class, skos:Concept, dpv:RiskConcept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk |
| Broader/Parent types |
- risk:RiskConcept
+ | risk:ServiceRelatedConsequence
+ → risk:OrganisationalRiskConcept
+ → dpv:RiskConcept
|
@@ -7132,34 +11761,28 @@ Bias
| Definition |
- Bias is defined as the systematic difference in treatment of certain objects, people, or groups in comparison to others |
+ Concept representing delayed processing of applications |
|
-
- | Source |
- |
-
+
|
| Date Created |
- 2024-09-13 |
+ 2024-10-21 |
-
- | Contributors |
- Daniel Doherty, Delaram Golpayegani, Harshvardhan J. Pandit |
-
+
|
| See More: |
- section RISK-TAXONOMY in AI
+ | section RISK-TAXONOMY in RISK
|
@@ -7167,46 +11790,44 @@ Bias
-
-
-
-
-
-
- Blackmail
+
+ Deliberate Incident
| Term |
- Blackmail |
+ DeliberateIncident |
Prefix |
risk |
| Label |
- Blackmail |
+ Deliberate Incident |
| IRI |
- https://w3id.org/dpv/risk#Blackmail |
+ https://w3id.org/dpv/risk#DeliberateIncident |
|
| Type |
- rdfs:Class, skos:Concept, dpv:RiskConcept, risk:ConfidentialityConcept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource |
+ rdfs:Class, skos:Concept |
| Broader/Parent types |
- risk:MaliciousActivity
- → risk:ExternalSecurityThreat
+ | risk:Incident
→ dpv:RiskConcept
|
-
+
+ | Object of relation |
+ risk:hasIncident
+ |
+
@@ -7215,37 +11836,28 @@ Blackmail
| Definition |
- Something that acts as or causes Blackmail |
+ Incident caused due to deliberate actions of a human |
|
-
- | Source |
- ISO/IEC 27005:2018 |
-
+
|
| Date Created |
- 2022-08-17 |
+ 2024-05-19 |
-
- | Date Modified |
- 2024-08-16 |
-
-
- | Contributors |
- Harshvardhan J. Pandit |
-
+
+
|
| See More: |
- section RISK-TAXONOMY in RISK
+ | section INCIDENT in RISK
|
@@ -7257,37 +11869,37 @@ Blackmail
-
-
- Brute Force Authorisations
+
+ Denial of Service Attack (DoS)
| Term |
- BruteForceAuthorisations |
+ DenialServiceAttack |
Prefix |
risk |
| Label |
- Brute Force Authorisations |
+ Denial of Service Attack (DoS) |
| IRI |
- https://w3id.org/dpv/risk#BruteForceAuthorisations |
+ https://w3id.org/dpv/risk#DenialServiceAttack |
|
| Type |
- rdfs:Class, skos:Concept, dpv:RiskConcept, risk:ConfidentialityConcept, risk:IntegrityConcept, risk:PotentialRisk, risk:PotentialRiskSource |
+ rdfs:Class, skos:Concept, dpv:RiskConcept, risk:AvailabilityConcept, risk:PotentialRisk, risk:PotentialRiskSource |
| Broader/Parent types |
risk:SecurityAttack
→ risk:ExternalSecurityThreat
+ → risk:TechnicalRiskConcept
→ dpv:RiskConcept
|
@@ -7301,7 +11913,7 @@ Brute Force Authorisations
| Definition |
- Something that acts as or causes Brute Force Authorisations i.e. bypassing authorisations through brute forcing techniques |
+ Concept representing Denial of Service Attack (DoS) |
@@ -7310,7 +11922,7 @@ Brute Force Authorisations
| Source |
- ENISA Reference Incident Classification Taxonomy 2018 |
+ ISO/IEC 27005:2018 |
|
@@ -7340,48 +11952,47 @@ Brute Force Authorisations
-
-
-
-
- Caste Discrimination
+
+ Detection Control
| Term |
- CasteDiscrimination |
+ DetectionControl |
Prefix |
risk |
| Label |
- Caste Discrimination |
+ Detection Control |
| IRI |
- https://w3id.org/dpv/risk#CasteDiscrimination |
+ https://w3id.org/dpv/risk#DetectionControl |
|
| Type |
- rdfs:Class, skos:Concept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk, risk:RiskConcept |
+ rdfs:Class, skos:Concept, risk:RiskControl |
| Broader/Parent types |
- risk:Discrimination
- → risk:RiskConcept
- |
- | Broader/Parent types |
- risk:Discrimination
- → risk:SocietalRisk
- → dpv:RiskConcept
+ | risk:RiskControl
+ → dpv:RiskMitigationMeasure
+ → dpv:TechnicalOrganisationalMeasure
|
-
+
+ | Object of relation |
+ dpv:hasTechnicalOrganisationalMeasure,
+ dpv:isMitigatedByMeasure,
+ risk:hasControl
+ |
+
@@ -7390,7 +12001,7 @@ Caste Discrimination
| Definition |
- Discrimination based on a person's caste, a form of social stratification found in some cultures |
+ Control to detect event |
@@ -7403,7 +12014,7 @@ Caste Discrimination
| Date Created |
- 2024-09-30 |
+ 2024-05-19 |
@@ -7411,7 +12022,7 @@ Caste Discrimination
| See More: |
- section RISK-TAXONOMY in RISK
+ | section RISK-CONTROLS in RISK
|
@@ -7423,49 +12034,41 @@ Caste Discrimination
-
-
- Change Consequence
+
+ Detriment
| Term |
- ChangeConsequence |
+ Detriment |
Prefix |
risk |
| Label |
- Change Consequence |
+ Detriment |
| IRI |
- https://w3id.org/dpv/risk#ChangeConsequence |
+ https://w3id.org/dpv/risk#Detriment |
|
| Type |
- rdfs:Class, skos:Concept, risk:RiskControl |
+ rdfs:Class, skos:Concept, dpv:RiskConcept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk |
| Broader/Parent types |
- risk:ConsequenceControl
- → risk:RiskControl
- → dpv:RiskMitigationMeasure
- → dpv:TechnicalOrganisationalMeasure
+ | risk:LegallyRelevantConsequence
+ → risk:LegalRiskConcept
+ → dpv:RiskConcept
|
-
- | Object of relation |
- dpv:hasTechnicalOrganisationalMeasure,
- dpv:isMitigatedByMeasure,
- risk:hasControl
- |
-
+
@@ -7474,7 +12077,7 @@ Change Consequence
| Definition |
- Control that changes Consequence |
+ Concept representing Detriment |
@@ -7487,18 +12090,21 @@ Change Consequence
| Date Created |
- 2024-05-19 |
+ 2022-03-23 |
-
+
+ | Date Modified |
+ 2024-08-16 |
+
| Contributors |
- Harshvardhan J. Pandit |
+ Harshvardhan J. Pandit, Julian Flake, Georg P. Krog, Fajar Ekaputra, Beatriz Esteves |
|
| See More: |
- section RISK-CONTROLS in RISK
+ | section RISK-TAXONOMY in RISK
|
@@ -7507,48 +12113,44 @@ Change Consequence
-
- Change Impact
+
+
+
+
+ Direct Discrimination
| Term |
- ChangeImpact |
+ DirectDiscrimination |
Prefix |
risk |
| Label |
- Change Impact |
+ Direct Discrimination |
| IRI |
- https://w3id.org/dpv/risk#ChangeImpact |
+ https://w3id.org/dpv/risk#DirectDiscrimination |
|
| Type |
- rdfs:Class, skos:Concept, risk:RiskControl |
+ rdfs:Class, skos:Concept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk, risk:RiskConcept |
| Broader/Parent types |
- risk:ImpactControl
- → risk:RiskControl
- → dpv:RiskMitigationMeasure
- → dpv:TechnicalOrganisationalMeasure
+ | risk:Discrimination
+ → risk:SocietalRiskConcept
+ → dpv:RiskConcept
|
-
- | Object of relation |
- dpv:hasTechnicalOrganisationalMeasure,
- dpv:isMitigatedByMeasure,
- risk:hasControl
- |
-
+
@@ -7557,7 +12159,7 @@ Change Impact
| Definition |
- Control that changes Impact |
+ Occurs when a person is treated less favorably than another in a comparable situation based on a protected characteristic (e.g., race, sex, disability) |
@@ -7570,18 +12172,15 @@ Change Impact
| Date Created |
- 2024-05-19 |
+ 2024-09-30 |
-
- | Contributors |
- Harshvardhan J. Pandit |
-
+
|
| See More: |
- section RISK-CONTROLS in RISK
+ | section RISK-TAXONOMY in RISK
|
@@ -7593,37 +12192,36 @@ Change Impact
-
-
- Coercion
+
+ Disability Discrimination
| Term |
- Coercion |
+ DisabilityDiscrimination |
Prefix |
risk |
| Label |
- Coercion |
+ Disability Discrimination |
| IRI |
- https://w3id.org/dpv/risk#Coercion |
+ https://w3id.org/dpv/risk#DisabilityDiscrimination |
|
| Type |
- rdfs:Class, skos:Concept, dpv:RiskConcept, risk:ConfidentialityConcept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource |
+ rdfs:Class, skos:Concept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk, risk:RiskConcept |
| Broader/Parent types |
- risk:MaliciousActivity
- → risk:ExternalSecurityThreat
+ | risk:Discrimination
+ → risk:SocietalRiskConcept
→ dpv:RiskConcept
|
@@ -7637,32 +12235,23 @@ Coercion
| Definition |
- Something that acts as or causes Coercion |
+ Discrimination against individuals based on physical or mental disabilities |
|
-
- | Source |
- ENISA Threat Taxonomy 2016 |
-
+
|
| Date Created |
- 2022-08-17 |
+ 2024-09-30 |
-
- | Date Modified |
- 2024-08-16 |
-
-
- | Contributors |
- Harshvardhan J. Pandit |
-
+
+
|
@@ -7679,36 +12268,36 @@ Coercion
-
- Cognitive Bias
+
+ Discrimination
| Term |
- CognitiveBias |
+ Discrimination |
Prefix |
risk |
| Label |
- Cognitive Bias |
+ Discrimination |
| IRI |
- https://w3id.org/dpv/risk#CognitiveBias |
+ https://w3id.org/dpv/risk#Discrimination |
|
| Type |
- rdfs:Class, skos:Concept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource, risk:RiskConcept |
+ rdfs:Class, skos:Concept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk, risk:RiskConcept |
| Broader/Parent types |
- risk:Bias
- → risk:RiskConcept
+ | risk:SocietalRiskConcept
+ → dpv:RiskConcept
|
@@ -7721,34 +12310,31 @@ Cognitive Bias
| Definition |
- Bias that occurs when humans are processing and interpreting information |
+ Discrimination is the treatment of a person or particular group of people differently, in a way that is worse than the way people are usually treate |
|
-
- | Source |
- |
-
+
|
| Date Created |
- 2024-09-13 |
+ 2024-09-30 |
| Contributors |
- Daniel Doherty, Delaram Golpayegani, Harshvardhan J. Pandit |
+ Georg P. Krog |
|
| See More: |
- section RISK-TAXONOMY in AI
+ | section RISK-TAXONOMY in RISK
|
@@ -7760,23 +12346,23 @@ Cognitive Bias
-
- Compensation
+
+ Disproportionate Energy Consumption
| Term |
- Compensation |
+ DisproportionateEnergyConsumption |
Prefix |
risk |
| Label |
- Compensation |
+ Disproportionate Energy Consumption |
| IRI |
- https://w3id.org/dpv/risk#Compensation |
+ https://w3id.org/dpv/risk#DisproportionateEnergyConsumption |
|
@@ -7788,9 +12374,7 @@ Compensation
| Broader/Parent types |
- risk:Renumeration
- → risk:FinancialImpact
- → dpv:RiskConcept
+ | dpv:RiskConcept
|
@@ -7803,7 +12387,7 @@ Compensation
| Definition |
- Something that acts as or provides compensation - which can be monetary and financial or in other forms |
+ The occurence or potential occurence of disproportionate energy consumption when considering the value obtained from undertaking the activity and the amount of energy being utilised |
@@ -7816,16 +12400,10 @@ Compensation
| Date Created |
- 2024-04-14 |
+ 2024-10-21 |
-
- | Date Modified |
- 2024-08-16 |
-
-
- | Contributors |
- Georg P. Krog, Harshvardhan J. Pandit |
-
+
+
|
@@ -7842,36 +12420,38 @@ Compensation
-
-
- Component Failure
+
+ Distributed Denial of Service Attack (DDoS)
| Term |
- ComponentFailure |
+ DistributedDenialServiceAttack |
Prefix |
risk |
| Label |
- Component Failure |
+ Distributed Denial of Service Attack (DDoS) |
| IRI |
- https://w3id.org/dpv/risk#ComponentFailure |
+ https://w3id.org/dpv/risk#DistributedDenialServiceAttack |
|
| Type |
- rdfs:Class, skos:Concept, dpv:RiskConcept, risk:AvailabilityConcept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource |
+ rdfs:Class, skos:Concept, dpv:RiskConcept, risk:AvailabilityConcept, risk:PotentialRisk, risk:PotentialRiskSource |
| Broader/Parent types |
- risk:OperationalSecurityRisk
+ | risk:DenialServiceAttack
+ → risk:SecurityAttack
+ → risk:ExternalSecurityThreat
+ → risk:TechnicalRiskConcept
→ dpv:RiskConcept
|
@@ -7885,23 +12465,32 @@ Component Failure
| Definition |
- Something that acts as or causes Component Failure |
+ Concept representing Distributed Denial of Service Attack (DDoS) |
-
- | Usage Note |
- Here component refers to both physical and virtual components. The failure of a component may or may not also cause a failure in other related components or the systems they are part of |
-
+
|
-
+
+ | Source |
+ ISO/IEC 27005:2018 |
+
|
-
-
-
+
+ | Date Created |
+ 2022-08-17 |
+
+
+ | Date Modified |
+ 2024-08-16 |
+
+
+ | Contributors |
+ Harshvardhan J. Pandit |
+
|
@@ -7918,37 +12507,35 @@ Component Failure
-
-
- Component Malfunction
+
+ Earthquake
| Term |
- ComponentMalfunction |
+ Earthquake |
Prefix |
risk |
| Label |
- Component Malfunction |
+ Earthquake |
| IRI |
- https://w3id.org/dpv/risk#ComponentMalfunction |
+ https://w3id.org/dpv/risk#Earthquake |
|
| Type |
- rdfs:Class, skos:Concept, dpv:RiskConcept, risk:AvailabilityConcept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource |
+ rdfs:Class, skos:Concept, dpv:RiskConcept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk |
| Broader/Parent types |
- risk:OperationalSecurityRisk
- → dpv:RiskConcept
+ | dpv:RiskConcept
|
@@ -7961,12 +12548,9 @@ Component Malfunction
| Definition |
- Something that acts as or causes Component Malfunction |
+ The occurence or potential occurence of earthquakes |
-
- | Usage Note |
- Here component refers to both physical and virtual components. The malfunction of a component may or may not also cause a malfunction in other related components or the systems they are part of |
-
+
|
@@ -7975,7 +12559,10 @@ Component Malfunction
|
-
+
+ | Date Created |
+ 2024-10-21 |
+
|
@@ -7990,47 +12577,44 @@ Component Malfunction
-
-
-
-
-
-
-
-
- Compromise Account
+
+ Environmental Incident
| Term |
- CompromiseAccount |
+ EnvironmentalIncident |
Prefix |
risk |
| Label |
- Compromise Account |
+ Environmental Incident |
| IRI |
- https://w3id.org/dpv/risk#CompromiseAccount |
+ https://w3id.org/dpv/risk#EnvironmentalIncident |
|
| Type |
- rdfs:Class, skos:Concept, dpv:RiskConcept, risk:AvailabilityConcept, risk:ConfidentialityConcept, risk:IntegrityConcept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource |
+ rdfs:Class, skos:Concept |
| Broader/Parent types |
- risk:ExternalSecurityThreat
+ | risk:Incident
→ dpv:RiskConcept
|
-
+
+ | Object of relation |
+ risk:hasIncident
+ |
+
@@ -8039,37 +12623,28 @@ Compromise Account
| Definition |
- Something that acts as or causes a compromised account that is then used by the compromiser |
+ Incident caused due to environmental factors outside human controls |
|
-
- | Source |
- ENISA Reference Incident Classification Taxonomy 2018 |
-
+
|
| Date Created |
- 2022-08-17 |
+ 2024-05-19 |
-
- | Date Modified |
- 2024-08-16 |
-
-
- | Contributors |
- Harshvardhan J. Pandit |
-
+
+
|
| See More: |
- section RISK-TAXONOMY in RISK
+ | section INCIDENT in RISK
|
@@ -8081,36 +12656,35 @@ Compromise Account
-
-
- Compromise Account Credentials
+
+ Environmental Risk
| Term |
- CompromiseAccountCredentials |
+ EnvironmentalRisk |
Prefix |
risk |
| Label |
- Compromise Account Credentials |
+ Environmental Risk |
| IRI |
- https://w3id.org/dpv/risk#CompromiseAccountCredentials |
+ https://w3id.org/dpv/risk#EnvironmentalRisk |
|
| Type |
- rdfs:Class, skos:Concept, dpv:RiskConcept, risk:ConfidentialityConcept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource |
+ rdfs:Class, skos:Concept, dpv:RiskConcept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk |
| Broader/Parent types |
- risk:ExternalSecurityThreat
+ | risk:SocietalRiskConcept
→ dpv:RiskConcept
|
@@ -8124,32 +12698,23 @@ Compromise Account Credentials
| Definition |
- Something that acts as or causes Account Credentials to be compromised |
+ Risks and issues that have their origin in environment or can affect the environment at large |
|
-
- | Source |
- ENISA Reference Incident Classification Taxonomy 2018 |
-
+
|
| Date Created |
- 2022-08-17 |
+ 2024-10-21 |
-
- | Date Modified |
- 2024-08-16 |
-
-
- | Contributors |
- Harshvardhan J. Pandit |
-
+
+
|
@@ -8167,37 +12732,36 @@ Compromise Account Credentials
-
- Confidentiality Breach
+
+ Equipment Failure
| Term |
- ConfidentialityBreach |
+ EquipmentFailure |
Prefix |
risk |
| Label |
- Confidentiality Breach |
+ Equipment Failure |
| IRI |
- https://w3id.org/dpv/risk#ConfidentialityBreach |
+ https://w3id.org/dpv/risk#EquipmentFailure |
|
| Type |
- rdfs:Class, skos:Concept, dpv:RiskConcept, risk:ConfidentialityConcept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource |
+ rdfs:Class, skos:Concept, dpv:RiskConcept, risk:AvailabilityConcept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource |
| Broader/Parent types |
- risk:DataBreach
- → risk:SecurityBreach
- → risk:OperationalSecurityRisk
+ | risk:OperationalSecurityRisk
+ → risk:TechnicalRiskConcept
→ dpv:RiskConcept
|
@@ -8211,9 +12775,12 @@ Confidentiality Breach
| Definition |
- Something that acts as or causes Confidentiality Breach |
+ Concept representing Equipment Failure |
-
+
+ | Usage Note |
+ Here equipment refers to physical equipment |
+
|
@@ -8249,35 +12816,42 @@ Confidentiality Breach
-
- Confidentiality Concept
+
+
+
+
+
+
+ Equipment Malfunction
| Term |
- ConfidentialityConcept |
+ EquipmentMalfunction |
Prefix |
risk |
| Label |
- Confidentiality Concept |
+ Equipment Malfunction |
| IRI |
- https://w3id.org/dpv/risk#ConfidentialityConcept |
+ https://w3id.org/dpv/risk#EquipmentMalfunction |
|
| Type |
- rdfs:Class, skos:Concept |
+ rdfs:Class, skos:Concept, dpv:RiskConcept, risk:AvailabilityConcept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource |
| Broader/Parent types |
- dpv:RiskConcept
+ | risk:OperationalSecurityRisk
+ → risk:TechnicalRiskConcept
+ → dpv:RiskConcept
|
@@ -8290,25 +12864,31 @@ Confidentiality Concept
| Definition |
- Indicates a concept is relevant to 'Confidentiality' in CIA InfoSec model |
+ Concept representing Equipment Malfunction |
| Usage Note |
- This concept allows indicating the applicability of Confidentiality dimension to concepts whether they are a risk source, risk, consequence, or impact |
+ Here equipment refers to physical equipment |
|
-
+
+ | Source |
+ ISO/IEC 27005:2018 |
+
|
| Date Created |
- 2024-09-29 |
+ 2022-08-17 |
-
+
+ | Date Modified |
+ 2024-08-16 |
+
| Contributors |
Harshvardhan J. Pandit |
@@ -8317,7 +12897,7 @@ Confidentiality Concept
| See More: |
- section CORE in RISK
+ | section RISK-TAXONOMY in RISK
|
@@ -8325,44 +12905,45 @@ Confidentiality Concept
-
- Confidentiality Incident
+
+
+
+
+
+ Erroneous Use
| Term |
- ConfidentialityIncident |
+ ErroneousUse |
Prefix |
risk |
| Label |
- Confidentiality Incident |
+ Erroneous Use |
| IRI |
- https://w3id.org/dpv/risk#ConfidentialityIncident |
+ https://w3id.org/dpv/risk#ErroneousUse |
|
| Type |
- rdfs:Class, skos:Concept |
+ rdfs:Class, skos:Concept, dpv:RiskConcept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource |
| Broader/Parent types |
- risk:Incident
+ | risk:UserRisks
+ → risk:OrganisationalRiskConcept
→ dpv:RiskConcept
|
-
- | Object of relation |
- risk:hasIncident
- |
-
+
@@ -8371,28 +12952,37 @@ Confidentiality Incident
| Definition |
- Incident where the confidentiality of information or system has been affected |
+ Concept representing erroneous use (of something) |
|
-
+
+ | Source |
+ ISO/IEC 27005:2018 |
+
|
| Date Created |
- 2024-05-19 |
+ 2022-08-17 |
-
-
+
+ | Date Modified |
+ 2024-08-16 |
+
+
+ | Contributors |
+ Harshvardhan J. Pandit |
+
|
| See More: |
- section INCIDENT in RISK
+ | section RISK-TAXONOMY in RISK
|
@@ -8404,37 +12994,38 @@ Confidentiality Incident
-
- Confirmation Bias
+
+ Ethnic Discrimination
| Term |
- ConfirmationBias |
+ EthnicDiscrimination |
Prefix |
risk |
| Label |
- Confirmation Bias |
+ Ethnic Discrimination |
| IRI |
- https://w3id.org/dpv/risk#ConfirmationBias |
+ https://w3id.org/dpv/risk#EthnicDiscrimination |
|
| Type |
- rdfs:Class, skos:Concept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource, risk:RiskConcept |
+ rdfs:Class, skos:Concept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk, risk:RiskConcept |
| Broader/Parent types |
- risk:CognitiveBias
- → risk:Bias
- → risk:RiskConcept
+ | risk:Racism
+ → risk:Discrimination
+ → risk:SocietalRiskConcept
+ → dpv:RiskConcept
|
@@ -8447,29 +13038,23 @@ Confirmation Bias
| Definition |
- Bias that occurs when hypotheses, regardless of their veracity, are more likely to be confirmed by the intentional or unintentional interpretation of information |
+ Discrimination against individuals based on their ethnicity or cultural heritage |
|
-
- | Source |
- |
-
+
|
| Date Created |
- 2024-09-13 |
+ 2024-09-30 |
-
- | Contributors |
- Daniel Doherty, Delaram Golpayegani, Harshvardhan J. Pandit |
-
+
|
@@ -8486,38 +13071,37 @@ Confirmation Bias
-
- Confounding Variables Bias
+
+ Excellence Discrimination
| Term |
- ConfoundingVariablesBias |
+ ExcellenceDiscrimination |
Prefix |
risk |
| Label |
- Confounding Variables Bias |
+ Excellence Discrimination |
| IRI |
- https://w3id.org/dpv/risk#ConfoundingVariablesBias |
+ https://w3id.org/dpv/risk#ExcellenceDiscrimination |
|
| Type |
- rdfs:Class, skos:Concept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource, risk:RiskConcept |
+ rdfs:Class, skos:Concept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk, risk:RiskConcept |
| Broader/Parent types |
- risk:StatisticalBias
- → risk:DataBias
- → risk:Bias
- → risk:RiskConcept
+ | risk:Discrimination
+ → risk:SocietalRiskConcept
+ → dpv:RiskConcept
|
@@ -8530,29 +13114,23 @@ Confounding Variables Bias
| Definition |
- Bias that occurs as a confounding variable that influences both the dependent variable and independent variable causing a spurious association |
+ Favoritism towards individuals deemed more competent or superior, often at the expense of others |
|
-
- | Source |
- |
-
+
|
| Date Created |
- 2024-09-13 |
+ 2024-09-30 |
-
- | Contributors |
- Daniel Doherty, Delaram Golpayegani, Harshvardhan J. Pandit |
-
+
|
@@ -8566,47 +13144,46 @@ Confounding Variables Bias
-
- Consequence Control
+
+
+
+
+
+
+ Exposure to Harmful Speech
| Term |
- ConsequenceControl |
+ ExposureToHarmfulSpeech |
Prefix |
risk |
| Label |
- Consequence Control |
+ Exposure to Harmful Speech |
| IRI |
- https://w3id.org/dpv/risk#ConsequenceControl |
+ https://w3id.org/dpv/risk#ExposureToHarmfulSpeech |
|
| Type |
- rdfs:Class, skos:Concept, risk:RiskControl |
+ rdfs:Class, skos:Concept, dpv:RiskConcept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk |
| Broader/Parent types |
- risk:RiskControl
- → dpv:RiskMitigationMeasure
- → dpv:TechnicalOrganisationalMeasure
+ | risk:IndividualRisk
+ → risk:SocietalRiskConcept
+ → dpv:RiskConcept
|
-
- | Object of relation |
- dpv:hasTechnicalOrganisationalMeasure,
- dpv:isMitigatedByMeasure,
- risk:hasControl
- |
-
+
@@ -8615,22 +13192,31 @@ Consequence Control
| Definition |
- Risk Mitigation Measure that controls the Consequences |
+ Concept representing Harmful Speech |
-
+
+ | Usage Note |
+ This concept was called "HarmfulSpeech" in DPV 2.0 |
+
|
-
+
+ | Source |
+ ENISA Reference Incident Classification Taxonomy 2018 |
+
|
| Date Created |
- 2024-05-19 |
+ 2022-08-17 |
-
+
+ | Date Modified |
+ 2024-08-16 |
+
| Contributors |
Harshvardhan J. Pandit |
@@ -8639,7 +13225,7 @@ Consequence Control
| See More: |
- section RISK-CONTROLS in RISK
+ | section RISK-TAXONOMY in RISK
|
@@ -8648,47 +13234,41 @@ Consequence Control
-
- Containment Control
+
+
+ External Security Threat
| Term |
- ContainmentControl |
+ ExternalSecurityThreat |
Prefix |
risk |
| Label |
- Containment Control |
+ External Security Threat |
| IRI |
- https://w3id.org/dpv/risk#ContainmentControl |
+ https://w3id.org/dpv/risk#ExternalSecurityThreat |
|
| Type |
- rdfs:Class, skos:Concept, risk:RiskControl |
+ rdfs:Class, skos:Concept, dpv:RiskConcept, risk:PotentialRiskSource |
| Broader/Parent types |
- risk:RiskControl
- → dpv:RiskMitigationMeasure
- → dpv:TechnicalOrganisationalMeasure
+ | risk:TechnicalRiskConcept
+ → dpv:RiskConcept
|
-
- | Object of relation |
- dpv:hasTechnicalOrganisationalMeasure,
- dpv:isMitigatedByMeasure,
- risk:hasControl
- |
-
+
@@ -8697,7 +13277,7 @@ Containment Control
| Definition |
- Control to contain event |
+ Concepts associated with security threats that are likely to originate externally |
@@ -8708,17 +13288,14 @@ Containment Control
|
-
- | Date Created |
- 2024-05-19 |
-
+
|
| See More: |
- section RISK-CONTROLS in RISK
+ | section RISK-TAXONOMY in RISK
|
@@ -8729,35 +13306,40 @@ Containment Control
-
- Copyright Violation
+
+
+
+ Extorsion
| Term |
- CopyrightViolation |
+ Extorsion |
Prefix |
risk |
| Label |
- Copyright Violation |
+ Extorsion |
| IRI |
- https://w3id.org/dpv/risk#CopyrightViolation |
+ https://w3id.org/dpv/risk#Extorsion |
|
| Type |
- rdfs:Class, skos:Concept, dpv:RiskConcept, risk:PotentialConsequence, risk:PotentialRisk |
+ rdfs:Class, skos:Concept, dpv:RiskConcept, risk:ConfidentialityConcept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource |
| Broader/Parent types |
- risk:ViolatingObligation
+ | risk:MaliciousActivity
+ → risk:ExternalSecurityThreat
+ → risk:TechnicalRiskConcept
+ → dpv:RiskConcept
|
@@ -8770,7 +13352,7 @@ Copyright Violation
| Definition |
- Something that acts as or causes Copyright Violation |
+ Concept representing Extorsion |
@@ -8779,7 +13361,7 @@ Copyright Violation
| Source |
- ENISA Reference Incident Classification Taxonomy 2018 |
+ ENISA Threat Taxonomy 2016 |
|
@@ -8806,51 +13388,47 @@ Copyright Violation
-
-
-
-
-
-
- Coverage Bias
+
+ Extremely High Likelihood
| Term |
- CoverageBias |
+ ExtremelyHighLikelihood |
Prefix |
risk |
| Label |
- Coverage Bias |
+ Extremely High Likelihood |
| IRI |
- https://w3id.org/dpv/risk#CoverageBias |
+ https://w3id.org/dpv/risk#ExtremelyHighLikelihood |
|
| Type |
- rdfs:Class, skos:Concept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource, risk:RiskConcept |
+ rdfs:Class, skos:Concept, dpv:Likelihood |
| Broader/Parent types |
- risk:SelectionBias
- → risk:StatisticalBias
- → risk:DataBias
- → risk:Bias
- → risk:RiskConcept
+ | risk:7LikelihoodLevels
+ → dpv:Likelihood
|
-
+
+ | Object of relation |
+ dpv:hasLikelihood
+ |
+
@@ -8859,34 +13437,34 @@ Coverage Bias
| Definition |
- Bias that occurs when a population represented in a dataset does not match the actual or real population that are being used |
+ Level where Likelihood is Extremely High |
-
+
+ | Usage Note |
+ The suggested quantitative value for this concept is 0.99 on a scale of 0 to 1 |
+
|
-
- | Source |
- |
-
+
|
| Date Created |
- 2024-09-13 |
+ 2022-08-18 |
| Contributors |
- Daniel Doherty, Delaram Golpayegani, Harshvardhan J. Pandit |
+ Harshvardhan J. Pandit |
|
| See More: |
- section RISK-TAXONOMY in RISK
+ | section RISK-LEVELS in RISK
|
@@ -8894,42 +13472,43 @@ Coverage Bias
-
- Cross-Border Incident
+
+
+ Extremely High Risk
| Term |
- CrossBorderIncident |
+ ExtremelyHighRisk |
Prefix |
risk |
| Label |
- Cross-Border Incident |
+ Extremely High Risk |
| IRI |
- https://w3id.org/dpv/risk#CrossBorderIncident |
+ https://w3id.org/dpv/risk#ExtremelyHighRisk |
|
| Type |
- rdfs:Class, skos:Concept |
+ rdfs:Class, skos:Concept, dpv:RiskLevel |
| Broader/Parent types |
- risk:Incident
- → dpv:RiskConcept
+ | risk:7RiskLevels
+ → dpv:RiskLevel
|
| Object of relation |
- risk:hasIncident
+ | dpv:hasRiskLevel
|
@@ -8940,9 +13519,12 @@ Cross-Border Incident
| Definition |
- Incident involving cross-border or multiple jurisdictions |
+ Level where Risk is Extremely High |
-
+
+ | Usage Note |
+ The suggested quantitative value for this concept is 0.99 on a scale of 0 to 1 |
+
|
@@ -8953,15 +13535,18 @@ Cross-Border Incident
| Date Created |
- 2024-05-19 |
+ 2022-08-18 |
-
+
+ | Contributors |
+ Harshvardhan J. Pandit |
+
|
| See More: |
- section INCIDENT in RISK
+ | section RISK-LEVELS in RISK
|
@@ -8970,44 +13555,44 @@ Cross-Border Incident
-
-
-
-
- Cryptojacking
+
+ Extremely High Severity
| Term |
- Cryptojacking |
+ ExtremelyHighSeverity |
Prefix |
risk |
| Label |
- Cryptojacking |
+ Extremely High Severity |
| IRI |
- https://w3id.org/dpv/risk#Cryptojacking |
+ https://w3id.org/dpv/risk#ExtremelyHighSeverity |
|
| Type |
- rdfs:Class, skos:Concept, dpv:RiskConcept, risk:AvailabilityConcept, risk:PotentialRisk, risk:PotentialRiskSource |
+ rdfs:Class, skos:Concept, dpv:Severity |
| Broader/Parent types |
- risk:SecurityAttack
- → risk:ExternalSecurityThreat
- → dpv:RiskConcept
+ | risk:7SeverityLevels
+ → dpv:Severity
|
-
+
+ | Object of relation |
+ dpv:hasSeverity
+ |
+
@@ -9016,28 +13601,25 @@ Cryptojacking
| Definition |
- Something that acts as or causes Cryptojacking |
+ Level where Severity is Extremely High |
-
+
+ | Usage Note |
+ The suggested quantitative value for this concept is 0.99 on a scale of 0 to 1 |
+
|
-
- | Source |
- ENISA Threat Landscape 2021 |
-
+
|
| Date Created |
- 2022-08-17 |
+ 2022-08-18 |
-
- | Date Modified |
- 2024-08-16 |
-
+
| Contributors |
Harshvardhan J. Pandit |
@@ -9046,7 +13628,7 @@ Cryptojacking
| See More: |
- section RISK-TAXONOMY in RISK
+ | section RISK-LEVELS in RISK
|
@@ -9055,43 +13637,44 @@ Cryptojacking
-
-
-
-
- Damage
+
+ Extremely Low Likelihood
| Term |
- Damage |
+ ExtremelyLowLikelihood |
Prefix |
risk |
| Label |
- Damage |
+ Extremely Low Likelihood |
| IRI |
- https://w3id.org/dpv/risk#Damage |
+ https://w3id.org/dpv/risk#ExtremelyLowLikelihood |
|
| Type |
- rdfs:Class, skos:Concept, dpv:RiskConcept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk |
+ rdfs:Class, skos:Concept, dpv:Likelihood |
| Broader/Parent types |
- risk:LegalRisk
- → dpv:RiskConcept
+ | risk:7LikelihoodLevels
+ → dpv:Likelihood
|
-
+
+ | Object of relation |
+ dpv:hasLikelihood
+ |
+
@@ -9100,9 +13683,12 @@ Damage
| Definition |
- Something that acts as or causes Damage |
+ Level where Likelihood is Extremely Low |
-
+
+ | Usage Note |
+ The suggested quantitative value for this concept is 0.01 on a scale of 0 to 1 |
+
|
@@ -9113,12 +13699,9 @@ Damage
| Date Created |
- 2022-03-30 |
+ 2022-08-18 |
-
- | Date Modified |
- 2024-08-16 |
-
+
| Contributors |
Harshvardhan J. Pandit |
@@ -9127,7 +13710,7 @@ Damage
| See More: |
- section RISK-TAXONOMY in RISK
+ | section RISK-LEVELS in RISK
|
@@ -9136,44 +13719,44 @@ Damage
-
-
-
-
- Data Aggregation Bias
+
+ Extremely Low Risk
| Term |
- DataAggregationBias |
+ ExtremelyLowRisk |
Prefix |
risk |
| Label |
- Data Aggregation Bias |
+ Extremely Low Risk |
| IRI |
- https://w3id.org/dpv/risk#DataAggregationBias |
+ https://w3id.org/dpv/risk#ExtremelyLowRisk |
|
| Type |
- rdfs:Class, skos:Concept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource, risk:RiskConcept |
+ rdfs:Class, skos:Concept, dpv:RiskLevel |
| Broader/Parent types |
- risk:DataBias
- → risk:Bias
- → risk:RiskConcept
+ | risk:7RiskLevels
+ → dpv:RiskLevel
|
-
+
+ | Object of relation |
+ dpv:hasRiskLevel
+ |
+
@@ -9182,34 +13765,34 @@ Data Aggregation Bias
| Definition |
- Bias that occurs when aggregating data covering different groups of objects has different statistical distributions that introduce bias into the data |
+ Level where Risk is Extremely Low |
-
+
+ | Usage Note |
+ The suggested quantitative value for this concept is 0.01 on a scale of 0 to 1 |
+
|
-
- | Source |
- |
-
+
|
| Date Created |
- 2024-09-13 |
+ 2022-08-18 |
| Contributors |
- Daniel Doherty, Delaram Golpayegani, Harshvardhan J. Pandit |
+ Harshvardhan J. Pandit |
|
| See More: |
- section RISK-TAXONOMY in RISK
+ | section RISK-LEVELS in RISK
|
@@ -9218,43 +13801,44 @@ Data Aggregation Bias
-
-
-
-
- Data Bias
+
+ Extremely Low Severity
| Term |
- DataBias |
+ ExtremelyLowSeverity |
Prefix |
risk |
| Label |
- Data Bias |
+ Extremely Low Severity |
| IRI |
- https://w3id.org/dpv/risk#DataBias |
+ https://w3id.org/dpv/risk#ExtremelyLowSeverity |
|
| Type |
- rdfs:Class, skos:Concept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource, risk:RiskConcept |
+ rdfs:Class, skos:Concept, dpv:Severity |
| Broader/Parent types |
- risk:Bias
- → risk:RiskConcept
+ | risk:7SeverityLevels
+ → dpv:Severity
|
-
+
+ | Object of relation |
+ dpv:hasSeverity
+ |
+
@@ -9263,34 +13847,34 @@ Data Bias
| Definition |
- Bias that occurs when data properties that if unaddressed lead to systems that perform better or worse for different groups |
+ Level where Severity is Extremely Low |
-
+
+ | Usage Note |
+ The suggested quantitative value for this concept is 0.01 on a scale of 0 to 1 |
+
|
-
- | Source |
- |
-
+
|
| Date Created |
- 2024-09-13 |
+ 2022-08-18 |
| Contributors |
- Daniel Doherty, Delaram Golpayegani, Harshvardhan J. Pandit |
+ Harshvardhan J. Pandit |
|
| See More: |
- section RISK-TAXONOMY in RISK
+ | section RISK-LEVELS in RISK
|
@@ -9302,39 +13886,35 @@ Data Bias
-
-
-
-
- Data Breach
+
+ Financial Impact
| Term |
- DataBreach |
+ FinancialImpact |
Prefix |
risk |
| Label |
- Data Breach |
+ Financial Impact |
| IRI |
- https://w3id.org/dpv/risk#DataBreach |
+ https://w3id.org/dpv/risk#FinancialImpact |
|
| Type |
- rdfs:Class, skos:Concept, dpv:RiskConcept, risk:AvailabilityConcept, risk:ConfidentialityConcept, risk:IntegrityConcept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource |
+ rdfs:Class, skos:Concept, dpv:RiskConcept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk |
| Broader/Parent types |
- risk:SecurityBreach
- → risk:OperationalSecurityRisk
+ | risk:OrganisationalRiskConcept
→ dpv:RiskConcept
|
@@ -9348,40 +13928,28 @@ Data Breach
| Definition |
- Something that acts as or causes Data Breach |
+ Things that cause or have the potential to impact financial resources |
- |
- Examples |
- dex:E0069 :: Using DPV and RISK extension to represent incidents
dex:E0071 :: Using risk controls to express how tech/org measures address the risk |
|
-
- | Source |
- ISO/IEC 27005:2018 |
-
+
|
| Date Created |
- 2022-08-17 |
+ 2024-10-21 |
-
- | Date Modified |
- 2024-08-16 |
-
-
- | Contributors |
- Harshvardhan J. Pandit |
-
+
+
|
| See More: |
- section RISK-TAXONOMY in DEX
+ | section RISK-TAXONOMY in RISK
|
@@ -9393,36 +13961,36 @@ Data Breach
-
-
- Data Corruption
+
+ Financial Loss
| Term |
- DataCorruption |
+ FinancialLoss |
Prefix |
risk |
| Label |
- Data Corruption |
+ Financial Loss |
| IRI |
- https://w3id.org/dpv/risk#DataCorruption |
+ https://w3id.org/dpv/risk#FinancialLoss |
|
| Type |
- rdfs:Class, skos:Concept, dpv:RiskConcept, risk:IntegrityConcept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource |
+ rdfs:Class, skos:Concept, dpv:RiskConcept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk |
| Broader/Parent types |
- risk:OperationalSecurityRisk
+ | risk:FinancialImpact
+ → risk:OrganisationalRiskConcept
→ dpv:RiskConcept
|
@@ -9436,12 +14004,9 @@ Data Corruption
| Definition |
- Something that acts as or causes Corruption of Data |
+ Concept representing Financial Loss which may be actual loss of existing financial assets or hypothetical loss of financial opportunity |
-
- | Usage Note |
- This concept was called "Corruption Data" in DPV 2.0 |
-
+
|
@@ -9481,37 +14046,35 @@ Data Corruption
-
- Data Processing Bias
+
+ Floods
| Term |
- DataProcessingBias |
+ Floods |
Prefix |
risk |
| Label |
- Data Processing Bias |
+ Floods |
| IRI |
- https://w3id.org/dpv/risk#DataProcessingBias |
+ https://w3id.org/dpv/risk#Floods |
|
| Type |
- rdfs:Class, skos:Concept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource, risk:RiskConcept |
+ rdfs:Class, skos:Concept, dpv:RiskConcept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk |
| Broader/Parent types |
- risk:DataBias
- → risk:Bias
- → risk:RiskConcept
+ | dpv:RiskConcept
|
@@ -9524,29 +14087,23 @@ Data Processing Bias
| Definition |
- Bias that occurs due to pre-processing (or post-processing) of data, even though the original data would not have led to any bias |
+ The occurence or potential occurence of floods |
|
-
- | Source |
- |
-
+
|
| Date Created |
- 2024-09-13 |
+ 2024-10-21 |
-
- | Contributors |
- Daniel Doherty, Delaram Golpayegani, Harshvardhan J. Pandit |
-
+
|
@@ -9559,44 +14116,47 @@ Data Processing Bias
-
- Deliberate Incident
+
+
+
+
+
+
+ Fraud
| Term |
- DeliberateIncident |
+ Fraud |
Prefix |
risk |
| Label |
- Deliberate Incident |
+ Fraud |
| IRI |
- https://w3id.org/dpv/risk#DeliberateIncident |
+ https://w3id.org/dpv/risk#Fraud |
|
| Type |
- rdfs:Class, skos:Concept |
+ rdfs:Class, skos:Concept, dpv:RiskConcept, risk:ConfidentialityConcept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource |
| Broader/Parent types |
- risk:Incident
+ | risk:MaliciousActivity
+ → risk:ExternalSecurityThreat
+ → risk:TechnicalRiskConcept
→ dpv:RiskConcept
|
-
- | Object of relation |
- risk:hasIncident
- |
-
+
@@ -9605,28 +14165,37 @@ Deliberate Incident
| Definition |
- Incident caused due to deliberate actions of a human |
+ Concept representing Fraud |
|
-
+
+ | Source |
+ ISO/IEC 27005:2018 |
+
|
| Date Created |
- 2024-05-19 |
+ 2022-08-17 |
-
-
+
+ | Date Modified |
+ 2024-08-16 |
+
+
+ | Contributors |
+ Harshvardhan J. Pandit |
+
|
| See More: |
- section INCIDENT in RISK
+ | section RISK-TAXONOMY in RISK
|
@@ -9638,36 +14207,37 @@ Deliberate Incident
-
- Denial of Service Attack (DoS)
+
+ Gender Discrimination
| Term |
- DenialServiceAttack |
+ GenderDiscrimination |
Prefix |
risk |
| Label |
- Denial of Service Attack (DoS) |
+ Gender Discrimination |
| IRI |
- https://w3id.org/dpv/risk#DenialServiceAttack |
+ https://w3id.org/dpv/risk#GenderDiscrimination |
|
| Type |
- rdfs:Class, skos:Concept, dpv:RiskConcept, risk:AvailabilityConcept, risk:PotentialRisk, risk:PotentialRiskSource |
+ rdfs:Class, skos:Concept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk, risk:RiskConcept |
| Broader/Parent types |
- risk:SecurityAttack
- → risk:ExternalSecurityThreat
+ | risk:Sexism
+ → risk:Discrimination
+ → risk:SocietalRiskConcept
→ dpv:RiskConcept
|
@@ -9681,32 +14251,23 @@ Denial of Service Attack (DoS)
| Definition |
- Something that acts as or causes Denial of Service Attack (DoS) |
+ Discrimination based on a person's gender identity or gender expression |
|
-
- | Source |
- ISO/IEC 27005:2018 |
-
+
|
| Date Created |
- 2022-08-17 |
+ 2024-09-30 |
-
- | Date Modified |
- 2024-08-16 |
-
-
- | Contributors |
- Harshvardhan J. Pandit |
-
+
+
|
@@ -9720,47 +14281,44 @@ Denial of Service Attack (DoS)
-
- Detection Control
+
+
+
+
+ Geographic Discrimination
| Term |
- DetectionControl |
+ GeographicDiscrimination |
Prefix |
risk |
| Label |
- Detection Control |
+ Geographic Discrimination |
| IRI |
- https://w3id.org/dpv/risk#DetectionControl |
+ https://w3id.org/dpv/risk#GeographicDiscrimination |
|
| Type |
- rdfs:Class, skos:Concept, risk:RiskControl |
+ rdfs:Class, skos:Concept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk, risk:RiskConcept |
| Broader/Parent types |
- risk:RiskControl
- → dpv:RiskMitigationMeasure
- → dpv:TechnicalOrganisationalMeasure
+ | risk:Discrimination
+ → risk:SocietalRiskConcept
+ → dpv:RiskConcept
|
-
- | Object of relation |
- dpv:hasTechnicalOrganisationalMeasure,
- dpv:isMitigatedByMeasure,
- risk:hasControl
- |
-
+
@@ -9769,7 +14327,7 @@ Detection Control
| Definition |
- Control to detect event |
+ Discrimination based on a person's geographical origin or residence |
@@ -9782,7 +14340,7 @@ Detection Control
| Date Created |
- 2024-05-19 |
+ 2024-09-30 |
@@ -9790,7 +14348,7 @@ Detection Control
| See More: |
- section RISK-CONTROLS in RISK
+ | section RISK-TAXONOMY in RISK
|
@@ -9801,35 +14359,38 @@ Detection Control
-
- Detriment
+
+
+ Group Attribution Bias
| Term |
- Detriment |
+ GroupAttributionBias |
Prefix |
risk |
| Label |
- Detriment |
+ Group Attribution Bias |
| IRI |
- https://w3id.org/dpv/risk#Detriment |
+ https://w3id.org/dpv/risk#GroupAttributionBias |
|
| Type |
- rdfs:Class, skos:Concept, dpv:RiskConcept, risk:PotentialConsequence, risk:PotentialRisk |
+ rdfs:Class, skos:Concept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource, risk:RiskConcept |
| Broader/Parent types |
- risk:LegalRisk
+ | risk:CognitiveBias
+ → risk:Bias
+ → risk:TechnicalRiskConcept
→ dpv:RiskConcept
|
@@ -9843,28 +14404,28 @@ Detriment
| Definition |
- Something that acts as or causes Detriment |
+ Bias that occurs when a human assumes that what is true for an individual or object is also true for everyone, or all objects, in that group |
|
-
+
+ | Source |
+ |
+
|
| Date Created |
- 2022-03-23 |
+ 2024-09-13 |
-
- | Date Modified |
- 2024-08-16 |
-
+
| Contributors |
- Harshvardhan J. Pandit, Julian Flake, Georg P. Krog, Fajar Ekaputra, Beatriz Esteves |
+ Daniel Doherty, Delaram Golpayegani, Harshvardhan J. Pandit |
|
@@ -9882,40 +14443,35 @@ Detriment
-
- Direct Discrimination
+
+ Societal Risk
| Term |
- DirectDiscrimination |
+ GroupRisk |
Prefix |
risk |
| Label |
- Direct Discrimination |
+ Societal Risk |
| IRI |
- https://w3id.org/dpv/risk#DirectDiscrimination |
+ https://w3id.org/dpv/risk#GroupRisk |
|
| Type |
- rdfs:Class, skos:Concept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk, risk:RiskConcept |
+ rdfs:Class, skos:Concept, dpv:RiskConcept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk |
| Broader/Parent types |
- risk:Discrimination
- → risk:RiskConcept
- |
- | Broader/Parent types |
- risk:Discrimination
- → risk:SocietalRisk
+ | risk:SocietalRiskConcept
→ dpv:RiskConcept
|
@@ -9929,7 +14485,7 @@ Direct Discrimination
| Definition |
- Occurs when a person is treated less favorably than another in a comparable situation based on a protected characteristic (e.g., race, sex, disability) |
+ Risks and issues that affect or have the potential to affect groups in society |
@@ -9940,10 +14496,7 @@ Direct Discrimination
|
-
- | Date Created |
- 2024-09-30 |
-
+
|
@@ -9959,48 +14512,48 @@ Direct Discrimination
-
-
-
-
- Disability Discrimination
+
+ Halt Source
| Term |
- DisabilityDiscrimination |
+ HaltSource |
Prefix |
risk |
| Label |
- Disability Discrimination |
+ Halt Source |
| IRI |
- https://w3id.org/dpv/risk#DisabilityDiscrimination |
+ https://w3id.org/dpv/risk#HaltSource |
|
| Type |
- rdfs:Class, skos:Concept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk, risk:RiskConcept |
+ rdfs:Class, skos:Concept, risk:RiskControl |
| Broader/Parent types |
- risk:Discrimination
- → risk:RiskConcept
- |
- | Broader/Parent types |
- risk:Discrimination
- → risk:SocietalRisk
- → dpv:RiskConcept
+ | risk:SourceControl
+ → risk:RiskControl
+ → dpv:RiskMitigationMeasure
+ → dpv:TechnicalOrganisationalMeasure
|
-
+
+ | Object of relation |
+ dpv:hasTechnicalOrganisationalMeasure,
+ dpv:isMitigatedByMeasure,
+ risk:hasControl
+ |
+
@@ -10009,7 +14562,7 @@ Disability Discrimination
| Definition |
- Discrimination against individuals based on physical or mental disabilities |
+ Control that halts the risk source or prevents it from materialising |
@@ -10022,15 +14575,18 @@ Disability Discrimination
| Date Created |
- 2024-09-30 |
+ 2024-05-19 |
-
+
+ | Contributors |
+ Harshvardhan J. Pandit |
+
|
| See More: |
- section RISK-TAXONOMY in RISK
+ | section RISK-CONTROLS in RISK
|
@@ -10042,39 +14598,37 @@ Disability Discrimination
-
-
- Discrimination
+
+ Harassment
| Term |
- Discrimination |
+ Harassment |
Prefix |
risk |
| Label |
- Discrimination |
+ Harassment |
| IRI |
- https://w3id.org/dpv/risk#Discrimination |
+ https://w3id.org/dpv/risk#Harassment |
|
| Type |
- rdfs:Class, skos:Concept, dpv:RiskConcept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk, risk:RiskConcept |
+ rdfs:Class, skos:Concept, dpv:RiskConcept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk |
| Broader/Parent types |
- risk:RiskConcept
- |
- | Broader/Parent types |
- risk:SocietalRisk
+ | risk:Harm
+ → risk:IndividualRisk
+ → risk:SocietalRiskConcept
→ dpv:RiskConcept
|
@@ -10086,10 +14640,7 @@ Discrimination
|
-
- | Definition |
- [rdflib.term.Literal('Something that acts as or causes Discrimination', lang='en'), rdflib.term.Literal('Discrimination is the treatment of a person or particular group of people differently, in a way that is worse than the way people are usually treate', lang='en')] |
-
+
@@ -10099,18 +14650,9 @@ Discrimination
|
-
- | Date Created |
- 2024-09-30 |
-
-
- | Date Modified |
- 2024-08-16 |
-
-
- | Contributors |
- Georg P. Krog |
-
+
+
+
|
@@ -10127,37 +14669,36 @@ Discrimination
-
- Distributed Denial of Service Attack (DDoS)
+
+ Harm
| Term |
- DistributedDenialServiceAttack |
+ Harm |
Prefix |
risk |
| Label |
- Distributed Denial of Service Attack (DDoS) |
+ Harm |
| IRI |
- https://w3id.org/dpv/risk#DistributedDenialServiceAttack |
+ https://w3id.org/dpv/risk#Harm |
|
| Type |
- rdfs:Class, skos:Concept, dpv:RiskConcept, risk:AvailabilityConcept, risk:PotentialRisk, risk:PotentialRiskSource |
+ rdfs:Class, skos:Concept, dpv:RiskConcept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk |
| Broader/Parent types |
- risk:DenialServiceAttack
- → risk:SecurityAttack
- → risk:ExternalSecurityThreat
+ | risk:IndividualRisk
+ → risk:SocietalRiskConcept
→ dpv:RiskConcept
|
@@ -10171,23 +14712,23 @@ Distributed Denial of Service Attack (DDoS)
| Definition |
- Something that acts as or causes Distributed Denial of Service Attack (DDoS) |
+ Concept representing Harm to humans |
-
+
+ | Usage Note |
+ This concept refers to the general abstract notion of harm |
+
|
-
- | Source |
- ISO/IEC 27005:2018 |
-
+
|
| Date Created |
- 2022-08-17 |
+ 2022-08-13 |
| Date Modified |
@@ -10209,42 +14750,61 @@ Distributed Denial of Service Attack (DDoS)
-
- Environmental Incident
+
+
+
+
+
+
+
+
+
+
+
+
+ High Likelihood
| Term |
- EnvironmentalIncident |
+ HighLikelihood |
Prefix |
risk |
| Label |
- Environmental Incident |
+ High Likelihood |
| IRI |
- https://w3id.org/dpv/risk#EnvironmentalIncident |
+ https://w3id.org/dpv/risk#HighLikelihood |
|
| Type |
- rdfs:Class, skos:Concept |
+ rdfs:Class, skos:Concept, dpv:Likelihood |
| Broader/Parent types |
- risk:Incident
- → dpv:RiskConcept
+ | risk:3LikelihoodLevels
+ → dpv:Likelihood
+ |
+ | Broader/Parent types |
+ risk:5LikelihoodLevels
+ → dpv:Likelihood
+ |
+ | Broader/Parent types |
+ risk:7LikelihoodLevels
+ → dpv:Likelihood
|
| Object of relation |
- risk:hasIncident
+ | dpv:hasLikelihood
|
@@ -10255,9 +14815,12 @@ Environmental Incident
| Definition |
- Incident caused due to environmental factors outside human controls |
+ Level where Likelihood is High |
-
+
+ | Usage Note |
+ The suggested quantitative value for this concept is 0.75 on a scale of 0 to 1 |
+
|
@@ -10268,15 +14831,18 @@ Environmental Incident
| Date Created |
- 2024-05-19 |
+ 2022-08-18 |
-
+
+ | Contributors |
+ Harshvardhan J. Pandit |
+
|
| See More: |
- section INCIDENT in RISK
+ | section RISK-LEVELS in RISK
|
@@ -10285,42 +14851,52 @@ Environmental Incident
-
-
-
-
- Environmental Risk
+
+ High Risk
| Term |
- EnvironmentalRisk |
+ HighRisk |
Prefix |
risk |
| Label |
- Environmental Risk |
+ High Risk |
| IRI |
- https://w3id.org/dpv/risk#EnvironmentalRisk |
+ https://w3id.org/dpv/risk#HighRisk |
|
| Type |
- rdfs:Class, skos:Concept, dpv:RiskConcept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk |
+ rdfs:Class, skos:Concept, dpv:RiskLevel |
| Broader/Parent types |
- dpv:RiskConcept
+ | risk:3RiskLevels
+ → dpv:RiskLevel
+ |
+ | Broader/Parent types |
+ risk:5RiskLevels
+ → dpv:RiskLevel
+ |
+ | Broader/Parent types |
+ risk:7RiskLevels
+ → dpv:RiskLevel
|
-
+
+ | Object of relation |
+ dpv:hasRiskLevel
+ |
+
@@ -10329,9 +14905,12 @@ Environmental Risk
| Definition |
- Risks and issues that have their origin in environment or can affect the environment at large |
+ Level where Risk is High |
-
+
+ | Usage Note |
+ The suggested quantitative value for this concept is 0.75 on a scale of 0 to 1 |
+
|
@@ -10340,14 +14919,20 @@ Environmental Risk
|
-
+
+ | Date Created |
+ 2022-08-18 |
+
-
+
+ | Contributors |
+ Harshvardhan J. Pandit |
+
|
| See More: |
- section RISK-TAXONOMY in RISK
+ | section RISK-LEVELS in RISK
|
@@ -10356,44 +14941,52 @@ Environmental Risk
-
-
-
-
-
- Equipment Failure
+
+ High Severity
| Term |
- EquipmentFailure |
+ HighSeverity |
Prefix |
risk |
| Label |
- Equipment Failure |
+ High Severity |
| IRI |
- https://w3id.org/dpv/risk#EquipmentFailure |
+ https://w3id.org/dpv/risk#HighSeverity |
|
| Type |
- rdfs:Class, skos:Concept, dpv:RiskConcept, risk:AvailabilityConcept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource |
+ rdfs:Class, skos:Concept, dpv:Severity |
| Broader/Parent types |
- risk:OperationalSecurityRisk
- → dpv:RiskConcept
+ | risk:3SeverityLevels
+ → dpv:Severity
+ |
+ | Broader/Parent types |
+ risk:5SeverityLevels
+ → dpv:Severity
+ |
+ | Broader/Parent types |
+ risk:7SeverityLevels
+ → dpv:Severity
|
-
+
+ | Object of relation |
+ dpv:hasSeverity
+ |
+
@@ -10402,31 +14995,25 @@ Equipment Failure
| Definition |
- Something that acts as or causes Equipment Failure |
+ Level where Severity is High |
| Usage Note |
- Here equipment refers to physical equipment |
+ The suggested quantitative value for this concept is 0.75 on a scale of 0 to 1 |
|
-
- | Source |
- ISO/IEC 27005:2018 |
-
+
|
| Date Created |
- 2022-08-17 |
+ 2022-08-18 |
-
- | Date Modified |
- 2024-08-16 |
-
+
| Contributors |
Harshvardhan J. Pandit |
@@ -10435,7 +15022,7 @@ Equipment Failure
| See More: |
- section RISK-TAXONOMY in RISK
+ | section RISK-LEVELS in RISK
|
@@ -10447,36 +15034,37 @@ Equipment Failure
-
-
- Equipment Malfunction
+
+ Homophobia
| Term |
- EquipmentMalfunction |
+ Homophobia |
Prefix |
risk |
| Label |
- Equipment Malfunction |
+ Homophobia |
| IRI |
- https://w3id.org/dpv/risk#EquipmentMalfunction |
+ https://w3id.org/dpv/risk#Homophobia |
|
| Type |
- rdfs:Class, skos:Concept, dpv:RiskConcept, risk:AvailabilityConcept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource |
+ rdfs:Class, skos:Concept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk, risk:RiskConcept |
| Broader/Parent types |
- risk:OperationalSecurityRisk
+ | risk:SexualOrientationDiscrimination
+ → risk:Discrimination
+ → risk:SocietalRiskConcept
→ dpv:RiskConcept
|
@@ -10490,35 +15078,23 @@ Equipment Malfunction
| Definition |
- Something that acts as or causes Equipment Malfunction |
+ Hostility or prejudice against individuals who are or are perceived to be homosexual |
-
- | Usage Note |
- Here equipment refers to physical equipment |
-
+
|
-
- | Source |
- ISO/IEC 27005:2018 |
-
+
|
| Date Created |
- 2022-08-17 |
+ 2024-09-30 |
-
- | Date Modified |
- 2024-08-16 |
-
-
- | Contributors |
- Harshvardhan J. Pandit |
-
+
+
|
@@ -10535,23 +15111,23 @@ Equipment Malfunction
-
- Erroneous System Use
+
+ Human Errors
| Term |
- ErroneousSystemUse |
+ HumanErrors |
Prefix |
risk |
| Label |
- Erroneous System Use |
+ Human Errors |
| IRI |
- https://w3id.org/dpv/risk#ErroneousSystemUse |
+ https://w3id.org/dpv/risk#HumanErrors |
|
@@ -10564,6 +15140,7 @@ Erroneous System Use
| Broader/Parent types |
risk:UserRisks
+ → risk:OrganisationalRiskConcept
→ dpv:RiskConcept
|
@@ -10577,7 +15154,7 @@ Erroneous System Use
| Definition |
- Something that acts as or causes Erroneous System Use |
+ Concept representing activities that are errors caused by humans without intention and which was not caused by following rules or policies or instructions that were not from the person |
@@ -10586,7 +15163,7 @@ Erroneous System Use
| Source |
- ISO/IEC 27005:2018 |
+ ENISA Reference Incident Classification Taxonomy 2018 |
|
@@ -10616,50 +15193,47 @@ Erroneous System Use
-
-
-
-
- Ethnic Discrimination
+
+ Identification Control
| Term |
- EthnicDiscrimination |
+ IdentificationControl |
Prefix |
risk |
| Label |
- Ethnic Discrimination |
+ Identification Control |
| IRI |
- https://w3id.org/dpv/risk#EthnicDiscrimination |
+ https://w3id.org/dpv/risk#IdentificationControl |
|
| Type |
- rdfs:Class, skos:Concept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk, risk:RiskConcept |
+ rdfs:Class, skos:Concept, risk:RiskControl |
| Broader/Parent types |
- risk:Racism
- → risk:Discrimination
- → risk:RiskConcept
- |
- | Broader/Parent types |
- risk:Racism
- → risk:Discrimination
- → risk:SocietalRisk
- → dpv:RiskConcept
+ | risk:RiskControl
+ → dpv:RiskMitigationMeasure
+ → dpv:TechnicalOrganisationalMeasure
|
-
+
+ | Object of relation |
+ dpv:hasTechnicalOrganisationalMeasure,
+ dpv:isMitigatedByMeasure,
+ risk:hasControl
+ |
+
@@ -10668,7 +15242,7 @@ Ethnic Discrimination
| Definition |
- Discrimination against individuals based on their ethnicity or cultural heritage |
+ Control to identify characteristics of event |
@@ -10681,7 +15255,7 @@ Ethnic Discrimination
| Date Created |
- 2024-09-30 |
+ 2024-05-19 |
@@ -10689,7 +15263,7 @@ Ethnic Discrimination
| See More: |
- section RISK-TAXONOMY in RISK
+ | section RISK-CONTROLS in RISK
|
@@ -10701,40 +15275,38 @@ Ethnic Discrimination
-
- Excellence Discrimination
+
+
+ Identity Fraud
| Term |
- ExcellenceDiscrimination |
+ IdentityFraud |
Prefix |
risk |
| Label |
- Excellence Discrimination |
+ Identity Fraud |
| IRI |
- https://w3id.org/dpv/risk#ExcellenceDiscrimination |
+ https://w3id.org/dpv/risk#IdentityFraud |
|
| Type |
- rdfs:Class, skos:Concept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk, risk:RiskConcept |
+ rdfs:Class, skos:Concept, dpv:RiskConcept, risk:ConfidentialityConcept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource |
| Broader/Parent types |
- risk:Discrimination
- → risk:RiskConcept
- |
- | Broader/Parent types |
- risk:Discrimination
- → risk:SocietalRisk
+ | risk:MaliciousActivity
+ → risk:ExternalSecurityThreat
+ → risk:TechnicalRiskConcept
→ dpv:RiskConcept
|
@@ -10748,23 +15320,32 @@ Excellence Discrimination
| Definition |
- Favoritism towards individuals deemed more competent or superior, often at the expense of others |
+ Concept representing Identity Fraud |
|
-
+
+ | Source |
+ ENISA Threat Taxonomy 2016 |
+
|
| Date Created |
- 2024-09-30 |
+ 2022-08-17 |
-
-
+
+ | Date Modified |
+ 2024-08-16 |
+
+
+ | Contributors |
+ Harshvardhan J. Pandit |
+
|
@@ -10782,36 +15363,37 @@ Excellence Discrimination
-
-
- Exposure to Harmful Speech
+
+ Identity Theft
| Term |
- ExposureToHarmfulSpeech |
+ IdentityTheft |
Prefix |
risk |
| Label |
- Exposure to Harmful Speech |
+ Identity Theft |
| IRI |
- https://w3id.org/dpv/risk#ExposureToHarmfulSpeech |
+ https://w3id.org/dpv/risk#IdentityTheft |
|
| Type |
- rdfs:Class, skos:Concept, dpv:RiskConcept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk |
+ rdfs:Class, skos:Concept, dpv:RiskConcept, risk:ConfidentialityConcept, risk:PotentialConsequence, risk:PotentialRisk, risk:PotentialRiskSource |
| Broader/Parent types |
- risk:SocietalRisk
+ | risk:MaliciousActivity
+ → risk:ExternalSecurityThreat
+ → risk:TechnicalRiskConcept
→ dpv:RiskConcept
|
@@ -10825,19 +15407,16 @@ Exposure to Harmful Speech
| Definition |
- Something that acts as or causes Harmful Speech |
+ Concept representing Identity Theft |
-
- | Usage Note |
- This concept was called "HarmfulSpeech" in DPV 2.0 |
-
+
|
| Source |
- ENISA Reference Incident Classification Taxonomy 2018 |
+ ENISA Threat Taxonomy 2016 |
|
@@ -10868,35 +15447,39 @@ Exposure to Harmful Speech
-
- External Security Threat
+
+
+
+ Identity Verification Failure
| Term |
- ExternalSecurityThreat |
+ IdentityVerificationFailure |
Prefix |
risk |
| Label |
- External Security Threat |
+ Identity Verification Failure |
| IRI |
- https://w3id.org/dpv/risk#ExternalSecurityThreat |
+ https://w3id.org/dpv/risk#IdentityVerificationFailure |
|
| Type |
- rdfs:Class, skos:Concept, dpv:RiskConcept, risk:PotentialRiskSource |
+ rdfs:Class, skos:Concept, dpv:RiskConcept, risk:PotentialConsequence, risk:PotentialImpact, risk:PotentialRisk |
| Broader/Parent types |
- dpv:RiskConcept
+ | risk:ServiceRelatedConsequence
+ → risk:OrganisationalRiskConcept
+ → dpv:RiskConcept
|
@@ -10909,7 +15492,7 @@ External Security Threat
| Definition |
- Concepts associated with security threats that are likely to originate externally |
+ Concept representing failure to verify identity |
@@ -10920,7 +15503,10 @@ External Security Threat
|
-
+
+ | Date Created |
+ 2024-10-21 |
+
|
@@ -10938,38 +15524,36 @@ External Security Threat
-
-
-
- Extorsion
+
+ Illegal Data Processing