Академический Документы
Профессиональный Документы
Культура Документы
ABSTRACT
SCADA systems are urged to face more and more complex critical
1. INTRODUCTION
Enterprise architecture models are frameworks that allow
situation and thereby, need to continuously evolve towards
representing the information system (IS) of companies in (or on a
integrated decision making capability driven by fancy reaction
set of) schemas called views. Those models have undergone major
strategy. The current research stream in that field, aims,
improvements during the first decade of the 21st century and some
accordingly, to foster the smartness of the field equipment and
significant frameworks have been developed since, such as
actuators, which predominately exist under the concept of agents.
ArchiMate [1] or the Zachman framework [2]. These models are
Those agents are governed by policies that while dictating the
traditionally structured in layers that correspond to different levels
agent behavior, depending on the agent roles and the context of
of the organizations IS. The business layer, for instance, models
evolution, also confer to the latter the latitude to react based on
the concept that exists at the business layer such as the processes,
their own perception of the evolving environment. This agent
the actors, their business roles, and so forth and which are
ability is referring to as the agent smartness and is strongly
supported or represented by IT application layers. At this
determined by, and depending on, the trust perceived by the agent
application layer the concepts of the IS that are modeled are the
of its environment. Actual work related to agents tends to consider
applications, the databases, or for instance, the application data.
that agents evolve and are organized in systems. There exist some
The advantages of these enterprise architecture models are that
models for representing how these agents are organized at a high
they allow improving the connections between the concepts from
level, models for representing how they are spread in the
each layer and, thereby, allow a better integration and an
networks, models to represent how they communicate to each
enhanced support for the decision making processes. Up to now,
other, and so forth. However, as far as we know, no model exists
agents represented at the business layers [3][4] have been
that integrates all of the above models. Therefore, we do believe
considered human actors playing business roles. However, rising
that such an integrated model could have many advantages like
security requirements for the management of heterogeneous and
e.g. to know the impact from the action from one layer to another,
distributed architecture calls for a rethinking of distribution of the
to decide which action on a component has the most important
security procedures in both: human and software autonomous
impact on a set of other components, to identify the most critical
entities. Although having been handled by human employees for
component for an infrastructure, to align the agent system with the
years, the management of complex systems, nowadays, needs to
corporate objective and to tailor it accordingly. Therefore, we
be shared with intelligent software items, often perceived being
have decided to frame an innovative version of ArchiMate for
more adapted to act in critical situations. This statement is
the multi-agent purpose with the objective to enrich the agent
enforced by the characteristic ability of the agent to act
society collaborations and, more particularly, the description of
autonomously in open, distributed and heterogeneous
the agent behavior endorsed in the policy component and using a
environments, in connection or not with an upper authority.
reputation based trust model to improve the reliability, termed
Acknowledging this situation, we are forced to admit that
ARMAN. Our work has been illustrated in the frame of a critical
software agents are no longer to be considered only as basic
infrastructure in the field of electrical power distribution which is
software components deployed to support business activities, but
a highly sensitive research topic. .1
that they are part of the business actors as well, that they plays
Categories and Subject Descriptors some kind of business role, and they perform business tasks
H.2.7: Security, Integrity, and Protection accordingly. Since then, acquiring an innovative enterprise
architecture framework to represent the behaviors of such agents
General Terms appears fully justified and required by the practitioners, especially
Management, Performance, Design, Reliability, Experimentation, the ones engaged in the management of those critical
Security, Languages, Theory, Verification. infrastructures.
In this paper, we propose to explore ArchiMate and to redraw its
structure in order to fit with agent software actors specificities
Keywords and domain constraints. The main focus concerns the design and
ArchiMate, metamodel, reputation, SCADA, multi-agents the consideration of the policies that are centric concepts related
system, trust, electricity distribution, critical infrastructure. to the activation of agents behaviours. The paper is structured as
follows, after having sighted the related works concerning the
enterprise architecture models in Section II; we review the
reputation base trust that is exploited in the modelling of the agent
Enterprise Engineering Team is a collaboration between CRP smartness in Section II. We model the concept of policy that
Henri Tudor, Radboud University Nijmegen and the University of represents the engine of the agent modelling framework in Section
Applied Science Arnhem-Nijmegen (http://www.ee-team.eu)
IV and in Section V, we explains layer by layer the entire we have redefined the Core of the metamodel (Figure 1) to figure
Reputation based Agents System Metamodel and illustrates its out the concept of Policy that hosts the behaviour and the trust
different components. In Section VI, we present a case study that decision mechanism. The Core represents the handling of Passive
illustrates the exploitation of the enhanced ArchiMate and we Structure by Active Structures during the realization of
perform real-time simulations in Section VII. Finally, Section VII Behaviours. For the Active Structures and the Behaviour, the
concludes the paper. Core differentiates external concepts that represent how the
As we have notice that agent systems are organized in a way architecture is being seen by the external concepts (as a Service
close to the enterprises system, our proposal analyses how an provider attainable by an Interface) and the internal concept
enterprise architecture model may be slightly reworked and which is composed of Structure Elements (Roles, Components)
adapted for MAS. Therefore, we exploit ArchiMate which has and linked to a Policy Execution concept. Passive Structures
the following advantages to be supported by the Open Group 2. It contain Object (Data Object, Organizational Object, Artefacts,)
has a large community and proposes a uniform structure to model that represents information of the architecture.
enterprise architecture. Another advantage of ArchiMate is that Secondly, the concept of Policy has been defined in accordance
it uses referenced existing modelling languages like UML. With with our specialization of the ArchiMate metamodel. The
this aspect we think that it is relevant to provide a lean and simple proposed representation is composed of three concepts defining
structure compliant with the new version of UML to model any the Policy
MAS. As a conclusion of our state of the art, we acknowledge the
many other models or frameworks that provide solutions to MAS 2.2 Policy modelling
models and which are compliant or not with other modelling The organizational and the application policies may, afterwards,
languages. As far as we know no existing approach provides a be modelled as follows:
multiple layer view or an integrated view of these layers.
2.2.1 Organizational Policy.
2. METAMODEL FOR REPUTATION In the Organizational Layer, Organizational Policy can be
represented as an UML Use Case [14] where concepts of Roles
BASED TRUST represent the Actors of the Use Case and the Collaboration
The proposed reputation-based trust management scheme is used
concepts show the connections between them. Concepts of
to predict the future behaviour of a component in order to
Products, Value and Organizational Service provide the Goal
establish trust among agents and hence to improve security in the
of the Use Case. Pre and Post conditions are modelling the
system. The goal of using an architecture using a trust Policy
context of the Use Case and are symbolized in the metamodel as
within a metamodel core is to improve the agent assignment
the Event concept (Precondition) and the Organizational Object
according to his policy. The trust Policy component depicted in
(Pre/Post condition).
the Figure 1 signifies the lower value that is necessary for agent to
be assign to a role. Moreover according to his role fulfilment, a 2.2.2 Application Policy.
reputation score is used to assess this level of trust. Indeed we Application Policy from the Application Layer is defined in
consider reputation as a measure that is derived from direct Section III as the realisation of behaviour by the Application
and/or indirect knowledge of earlier interactions if any, and is domain in a configuration of the Data domain. UML provides
used to access the level of trust an agent puts into another as in support to model the behaviour performed by the Application
[18]. This trust policy is linked with the behavioural policy. domain as Sequence Diagram. Configuration of the Data domain
Indeed these Behaviour and Trust Policy are combined into can be expressed as Preconditions of the Sequence Diagram and
Policy. The rest of the metamodel component is explained in the symbolized by the execution of a test-method on the lifeline of the
next section. diagram (Figure 2).