The Dependent CORAS Language

The CORAS language as defined so far in this book offers no support for the explicit documentation of assumptions. This may be unfortunate since the validity of the diagrams we make during a risk analysis, and therefore the very validity of the risk analysis results, may depend on assumptions. This chapter presents dependent CORAS, which is a language extension to support the documentation of and reasoning about risk analysis assumptions. The reasoning about assumptions and dependencies is supported by four deduction rules.