A Framework for Multi-Agent System Engineering using Ontology Domain Modelling for Security Architecture Risk Assessment in E-Commerce Security Services

One of the main objectives of a truly user-friendly information security architecture is to focus on advanced security assessment procedures technologies enabling cost-effective interchange across e-commerce security services and more natural interfaces to security services. The recently launched Information Security project at Mexican Oil Institute is rightly in that direction and the work addresses basically, security assessment technologies and its use in the key sector of e-business and electronic commerce. In particular, we are developing SAMARA (secure architecture multi-agent systems risk assessment) platform in order to adding a flexible quality of services security requirements (QoSSR) to all stages of the information security cycle, including security assessment management systems (SAMS) content generation and maintenance, automated translation and interpretation and enhancing the natural interactivity and usability of the security services with unconstrained security policy input. On the knowledge engineering side, the SAMARA ontologies provide a consensual representation of the secure electronic commerce field in three typical domains (CRM - customer relationship management, e-mail transactions, e-business transactions) allowing the exchanges independently of the security policy of the end user, the security services, or the content provider. This work concentrates on architectural issues, while the used security assessment procedures processing approaches has been developed in other author's papers.