Information Technology Reference
In-Depth Information
Ta b l e 1 .
SERENITY S&D Patterns in Natural Language
Pattern Name
Natural Language Description
SP1. Proof of Fulfillment for
Ensuring Non-Repudiation
To prevent repudiation, the executor needs to provide evidence of
performing the action to the benefitor, in addition to performing the
action.
SP4. Artefact Generation as
an Audit Trail
To prevent repudiation of some actions upon a shared resource, a
group of agents needs to keep a common audit trail.
DP2.1.
Collaboration
in
To cope with an activity where a tight coordination among agents is
crucial, a failure on a risky sub-activity may compromise the team
goal. However, one team member might have a capability to mitigate
the risk of the risky sub-activity therefore that team member must
mitigate the risk for the team success.
Small
Groups
for
Risky
Activities
DP6. Reinforcing Overlap-
ping Responsibilities for Ro-
bustness
A critical task must be completed successfully most of the time.
Therefore, several team members are responsible to perform the
task.
PP1. Sign an Agreement to
Address Lack of Trust on the
Use of Private Data
Sometime a customer does not trust an organization accessing its
data. Therefore a representative agent of the organization needs to
ask for customer consent before accessing customer's data.
Supervisor, Alice
) that wants to achieve goals (
ensure traffic safety in its sector,
form team sectors
). Actors are equipped with certain abilities (e.g.,
resolve traffic
conflict
), have beliefs, etc. They are further specialized into
roles
(e.g.,
Supervisor,
Executive Controller, and Team sector
) as abstract actors in an organization that are
played by
agents
(e.g.,
Bob, Alice, Dan
), which are concrete actors.
Actors (e.g.,
executive controllers
) intend to achieve/satisfy their business goals
(
manage traffic in the sector
) by relying on their capabilities and those of other actors
(e.g.,
resolve traffic conflict
). The term Business Object refers to a
goal
,a
task
,ora
resource
.
Goal
represents a state-of-affair that an actor intends to achieve (
manage
traffic in sector
).
Ta s k
is a course of actions performed by an actor to achieve a desired
goal (
give airway commands
).
Resource
refers to physical or informational entities
required to achieve goals (
flight progress strips
) or to perform tasks (
air situation
display
). However, the fulfillment of these business objects is affected by uncertain
events
. Events that can cause a goal failure are risks (
overload traffic
), while events
that can help in the fulfillment of a goal are treated as opportunities (
deployment new
system for air conflict prediction
).
In addition to capturing the strategic rationale of an actor, SI* captures strategic inter-
dependencies among actors in an organization. Inter-dependencies can be either
dele-
gation
and
trust
relationships among actors. Delegations also come in two flavours: 1)
execution of business objects and 2) permission/entitlement on business objects.
Del-
egation
refers to the transfer of responsibilities (
Delegation on Execution
) or rights
(
Delegation on Permission
). In Fig. 1,
team sector
delegates the execution of
man-
age inbound traffic
to another actor -
planning controller
.
Trust
refers to the belief
and expectation of an actor that another actor (trustee) will fulfill its commitments (will
execute all assigned business objects) and will respect its permissions. For an example,
Alice trusts Bob to fulfill
managing traffic in Sector SU1
.
