@base <http://semantics.aero/service-security-mechanism>.

@prefix rdf: <http://www.w3.org/1999/02/22-rdf-syntax-ns#>.
@prefix rdfs: <http://www.w3.org/2000/01/rdf-schema#>.
@prefix owl: <http://www.w3.org/2002/07/owl#>.
@prefix dc: <http://purl.org/dc/elements/1.1/>.
@prefix skos: <http://www.w3.org/2004/02/skos/core#>.
@prefix ssm: <http://semantics.aero/service-security-mechanism#>.

<http://semantics.aero/service-security-mechanism> rdf:type owl:Ontology;
	dc:title "Service Security Mechanism";
	dc:version "1.0.0";
	dc:description "A classification of processes (or a device incorporating such processes) that are used by or within a service to prevent unauthorized or accidental access, change, destruction, or loss of data";
	dc:creator "Mark Kaplun (FAA)";
	dc:publisher "FAA";
	dc:issued "2023-02-24";
	dc:format "RDF".

ssm:service-security-mechanism a skos:Concept;
              skos:prefLabel "service security mechanism";
              skos:definition " A process (or a device incorporating such a process) that is used by or within a service to prevent unauthorized or accidental access, change, destruction, or loss.";
              skos:narrower ssm:access-control;
              skos:narrower ssm:audit;
              skos:narrower ssm:availability;
              skos:narrower ssm:data-confidentiality;
              skos:narrower ssm:data-integrity;
              skos:narrower ssm:data-origin-authentication;
              skos:narrower ssm:non-repudiation.

ssm:access-control a skos:Concept;
              skos:prefLabel "access control";
              skos:definition "A security mechanism that protects a service against unauthorized access or usage.";
              skos:narrower ssm:authentication;
              skos:narrower ssm:authorization.

ssm:audit a skos:Concept;
              skos:prefLabel "audit";
              skos:definition "A security mechanism that records information needed to establish accountability for system events and for the actions of entities that cause them.".

ssm:authentication a skos:Concept;
              skos:prefLabel "authentication";
              skos:definition "A security mechanism that verifies an identity claimed by or for an entity.".

ssm:authorization a skos:Concept;
              skos:prefLabel "authorization";
              skos:definition "A security mechanism that ensures that entities are allowed particular actions based on permissions assigned.".

ssm:availability a skos:Concept;
              skos:prefLabel "availability";
              skos:definition "A security mechanism that addresses the security concerns raised by denial-of-service attacks.".

ssm:data-confidentiality a skos:Concept;
              skos:prefLabel "data confidentiality";
              skos:definition "A security mechanism that protects data against unauthorized disclosure.".

ssm:data-integrity a skos:Concept;
              skos:prefLabel "data integrity";
              skos:definition "A security mechanism that protects against unauthorized changes to data, including both intentional change or destruction and accidental change or loss, by ensuring that changes to data are detectable.".
             
ssm:data-origin-authentication a skos:Concept;
              skos:prefLabel "data origin authentication";
              skos:definition " A security mechanism that verifies the identity of an entity claimed to be the original source of received data.".          

ssm:non-repudiation a skos:Concept;
              skos:prefLabel "non-repudiation";
              skos:definition "A security mechanism that protects against false denial of involvement in a communication.".