Abstract:
This paper presents NIS2Onto, an OWL ontology designed to model and manage the complexities of the NIS 2 Directive, aimed at bolstering cybersecurity across essential sectors in the European Union.
NIS2Onto offers the ontology that translates the Directive’s legal and technical requirements into an ontological format, facilitating improved compliance management and enhanced understanding among cybersecurity professionals, legal experts, and organisational stakeholders.
Through the ontological representation of the NIS 2 entities, relationships, and obligations, NIS2Onto enables automated compliance verification, streamlined risk assessments, and effective policy implementation. Our evaluation employs both metrical and qualitative analysis through a real case study in order to witness the robustness and practical applicability of NIS2Onto.
The ontology not only supports the accurate interpretation of complex legal texts but also aids in the systematic enforcement of cybersecurity measures. Furthermore, NIS2Onto’s extensibility allows for integration with other regulatory frameworks, fostering a comprehensive and unified approach to cybersecurity governance.