Knowledge-Augmented Security Risk Identification for OT Container Deployments

Yannick Landeck , Tomas Bueno Momčilović , Dian Balta , Martin Wimmer and Christian Knierim

24th International Semantic Web Conference: Companion Volume (ISWC-C 2025),

November 2025 · Nara, Japan

abstract

Container deployments in operational technology (OT) environments pose unique security challenges, especially when privileged configurations are used. Traditional risk identification methods often fall short in addressing the complexity, dynamic nature, and interdisciplinary collaboration required in these settings. We propose a knowledge augmentation approach that combines semantic modelling, automated reasoning, and tool support to enhance security risk identification. Our approach is demonstrated through an industrial case study, highlighting its practical application. We also examine how large language models (LLMs) can support the instantiation and integration of the approach, improving usability and scalability.

subject terms: peng, Security Risk Assessment, Container Security, Knowledge Augmentation, Operational Technology

url: https://ceur-ws.org/Vol-4085/paper3.pdf

URL BibTeX Back

Name	Purpose	Lifetime	Type	Provider
_pk_id	Used to store a few details about the user such as the unique visitor ID.	13 months	HTML	Matomo
_pk_ref	Used to store the attribution information, the referrer initially used to visit the website.	6 months	HTML	Matomo
_pk_ses	Short lived cookie used to temporarily store data for the visit.	30 minutes	HTML	Matomo
_pk_cvar	Short lived cookie used to temporarily store data for the visit.	30 minutes	HTML	Matomo
_pk_hsr	Short lived cookie used to temporarily store data for the visit.	30 minutes	HTML	Matomo