English

Rethinking Cybersecurity Ontology Classification and Evaluation: Towards a Credibility-Centered Framework

Cryptography and Security 2025-12-02 v1

Abstract

This paper analyzes the proliferation of cybersecurity ontologies, arguing that this surge cannot be explained solely by technical shortcomings related to quality, but also by a credibility deficit - a lack of trust, endorsement, and adoption by users. This conclusion is based on our first contribution, which is a state-of-the-art review and categorization of cybersecurity ontologies using the Framework for Ontologies Classification framework. To address this gap, we propose a revised framework for assessing credibility, introducing indicators such as institutional support, academic recognition, day-to-day practitioner validation, and industrial adoption. Based on these new credibility indicators, we construct a classification scheme designed to guide the selection of ontologies that are relevant to specific security needs. We then apply this framework to a concrete use case: the Franco-Luxembourgish research project ANCILE, which illustrates how a credibility-aware evaluation can reshape ontology selection for operational contexts.

Keywords

Cite

@article{arxiv.2512.01651,
  title  = {Rethinking Cybersecurity Ontology Classification and Evaluation: Towards a Credibility-Centered Framework},
  author = {Antoine Leblanc and Jacques Robin and Nourhène Ben Rabah and Zequan Huang and Bénédicte Le Grand},
  journal= {arXiv preprint arXiv:2512.01651},
  year   = {2025}
}
R2 v1 2026-07-01T08:03:42.821Z