Revisiting the Concept of Risk Analysis within the Context of Geospatial Database Design: A Collaborative Framework
The aim of this research is to design a collaborative
framework that integrates risk analysis activities into the geospatial
database design (GDD) process. Risk analysis is rarely undertaken
iteratively as part of the present GDD methods in conformance to
requirement engineering (RE) guidelines and risk standards.
Accordingly, when risk analysis is performed during the GDD, some
foreseeable risks may be overlooked and not reach the output
specifications especially when user intentions are not systematically
collected. This may lead to ill-defined requirements and ultimately in
higher risks of geospatial data misuse. The adopted approach consists
of 1) reviewing risk analysis process within the scope of RE and
GDD, 2) analyzing the challenges of risk analysis within the context
of GDD, and 3) presenting the components of a risk-based
collaborative framework that improves the collection of the
intended/forbidden usages of the data and helps geo-IT experts to
discover implicit requirements and risks.
[1] Bédard, Y., 2011, Data Quality + Risk Management + Legal Liability =
Evolving Professional Practices, FIG Working Week 2011, May 16-22,
Marrakech, Morroco.
[2] Grira, J., Y. Bédard, T. Sboui, 2012, A Collaborative User-Centered
Approach to Fine-Tune Geospatial Database Design, S. Castano et
al.(Eds.):ER Workshops 2012, LNCS 7518,Springer-Verlag Berlin
Heidelberg, pp. 272-283.
[3] Rowe, G.,G. Wright. The Delphi technique: Past, present, and future
prospects ÔÇö Introduction to the special issue. Technological Forecasting
& Social Change 78 (2011) 1487-1490.
[4] B. W. Boehm. Software Risk Management: Principles and Practices.
IEEE Software, 8(1):32-41, 1991.
[5] V.A. Ba├▒uls, M. Turoff, Scenario construction via Delphi and crossimpact
analysis, Technol. Forecast. Soc. Chang. 78 (2011) 1579-1602.
[6] J. Landeta, J. Barrutia, A. Lertxundi, Hybrid Delphi: a methodology to
facilitate contribution from experts in professional contexts, Technol.
Forecast. Soc.Chang. 78 (2011) 1629-1641.
[7] M. Nowack, J. Endrikat, E. Guenther, Review of Delphi-based scenario
studies: quality and design considerations, Technol. Forecast. Soc.
Chang. 78 (2011)1603-1615.
[8] Devillers, R., Y. Bédard, M. Gervais, F. Pinet, M. Schneider, L. Bejaoui,
M.-A. Levesque, M. Salehi, A. Zargar, 2007, How to improve
Geospatial Data Usability: From Metadata to Quality-Aware GIS
Community, Spatial Data Usability, A AGILE Pre-Conference
Workshop, May 8th, Aalborg, Denmark.
[9] Levesque, M.-A., Y. Bédard, M. Gervais, R. Devillers, 2007, Towards
managing the risks of data misuse for spatial datacubes, Proceedings of
the 5th International Symposium on Spatial Data Quality, June 13-15,
Enschede, Netherlands.
[10] ISO/IEC Guide 51: 1999, Safety Aspects - Guidelines for their inclusion
in standards.
[11] ISO Guide 73:2009: Risk Management - Vocabulary.
[12] Grira, J., Bédard, Y., Roche, S.: Spatial Data Uncertainty in the VGI
World: going from Consumer to Producer. Geomatica, Jour. of the Can.
Inst. of Geomatics 64(1), 61-71 (2009)
[13] Sboui, T., M. Salehi, Y. Bédard, 2010, A systematic approach for
managing the risk related to semantic interoperability between geospatial
datacubes, International Journal of Agricultural and Environmental
Information Systems, Vol. 1, No. 2, pp. 20-41
[14] Bédard, Y., 2011, Professional Practices with Regards to Geospatial
Data Quality, Risk Management and Legal Liability, May 27th,
Technical University of Athens, Geomatics Dept., Greece.
[15] Levesque, M.-A., Y. Bédard, M. Gervais, R. Devillers, 2007, Towards
managing the risks of data misuse for spatial datacubes, Proceedings of
the 5th International Symposium on Spatial Data Quality, June 13-15,
Enschede, Netherlands.
[16] ISO 31000:2009, Risk Management.
[17] PMI. A guide to the project management body of knowledge(PMBOK
guide). 4th ed. Project ManagementInstitute; 2009.
[18] Greene, J., A. Stellman, Head First PMP. 2nd ed. O-Reilly. 2009
[19] E. Yu. Modelling Strategic Relationships for Process Engineering. PhD
thesis,University of Toronto, Department of Computer Science, 1995.
[20] A. Dardenne, A. van Lamsweerde, and S. Fickas. Goal-Directed
RequirementsAcquisition. Science of Computer Programming, 20:3-50,
1993.
[21] Sharp, H., Finkelstein, A., Galal, G.: Stakeholder identification in the
requirements engineering process. In: Proc. of the 10th Int. Work. on
Data. & Expert Syst. App. (1999)
[22] Aoyama, M.: Persona-and-scenario based requirements engineering for
software embedded in digital consumer products. In: Proc. of the IEEE
Int. Req. Eng. Conf., pp. 85-94 (2005)
[23] Maiden, N., Robertson, S.: Integrating creativity into requirements
processes: experiences with an air traffic management system. In: Proc.
of the IEEE Int. Req. Eng. Conf. (2005)
[24] Jackson, D.: Software Abstractions: Logic, Language, and Analysis.
MIT Press (2006)
[25] Wasson, K.S.: A case study in systematic improvement of language for
requirements. In: Proc. of the IEEE Int. Req. Eng. Conf. (RE), pp. 6-15
(2006)
[26] Robinson, W.N., Pawlowski, S.D., Volkov, V.: Requirements interaction
management. ACM Computing Surveys 35(2), 132-190 (2003)
[27] Feather, M.S.: Towards a unified approach to the representation of, and
reasoning with, probabilistic risk information about software and its
system interface. In: Int. Sym. on Soft. Reliab. Eng., pp. 391-402 (2004)
[28] Ryan, K.: The role of natural language in requirements engineering. In:
Proceedings of the IEEE International Symposium on Requirements
Engineering, San Diego, CA, pp. 240-242. IEEE Computer Society
Press, Los Alamitos (1993)
[29] Van, T., Lamsweerde, V.A., Massonet, P., Ponsard, C.: Goal-oriented
requirements animation. In: Proc. of the IEEE Int. Req. Eng. Conf (RE),
pp. 218-228 (2004)
[30] ISO 3864-2:2004 - Graphical symbols - Safety colours and safety signs:
Design principles for product safety labels
[31] Bédard, Y., J. Chandler, R. Devillers, M. Gervais, 2009, System Design
Methods and Geospatial Data Quality, Association of American
GeographersProfessional Ethics-Session on Geographic Information
Ethics and GIScience, March 22-27, Las Vegas, USA.
[32] Gervais M., Y. Bédard, R. Jeansoulin& B. Cervelle, 2007, Qualité des
données géographiques. Obligations juridiques potentielles et modèle du
producteur raisonnable, Revue Internationale de Géomatique, Vol. 17,
No. 1, pp. 33-62
[33] Public Protection and Ethical Dissemination of Geospatial Data - Social
and Legal Aspects. Examples of geospatial data misuse:
http://dataquality.scg.ulaval.ca/
[34] Agumya, A., Hunter, G.J., 1999. A Risk-Based Approach to Assessing
the ÔÇÿFitness for Use- of Spatial Data, URISA Journal, Vol. 11, No. 1, pp.
33-44.
[35] Nalon, F. R., Braga, J. L., Borges, K. A. D. V., & Andrade, M. V. A.
(2011). Applying the Model Driven Architecture Approach for
Geographic Database Design using a UML Profile and ISO
Standards. Journal of Information and Data Management, 2(2), 171.
[36] Fonseca, F. T., Egenhofer, M. J., Agouris, P., & Câmara, G. (2002).
Using ontologies for integrated geographic information
systems. Transactions in GIS,6(3), 231-257.
[37] Sboui, T., & Bédard, Y. (2012). Universal Geospatial Ontology for the
Semantic Interoperability of Data: What are the Risks and
How. Universal Ontology of Geographic Space: Semantic Enrichment
for Spatial Data, 1.
[1] Bédard, Y., 2011, Data Quality + Risk Management + Legal Liability =
Evolving Professional Practices, FIG Working Week 2011, May 16-22,
Marrakech, Morroco.
[2] Grira, J., Y. Bédard, T. Sboui, 2012, A Collaborative User-Centered
Approach to Fine-Tune Geospatial Database Design, S. Castano et
al.(Eds.):ER Workshops 2012, LNCS 7518,Springer-Verlag Berlin
Heidelberg, pp. 272-283.
[3] Rowe, G.,G. Wright. The Delphi technique: Past, present, and future
prospects ÔÇö Introduction to the special issue. Technological Forecasting
& Social Change 78 (2011) 1487-1490.
[4] B. W. Boehm. Software Risk Management: Principles and Practices.
IEEE Software, 8(1):32-41, 1991.
[5] V.A. Ba├▒uls, M. Turoff, Scenario construction via Delphi and crossimpact
analysis, Technol. Forecast. Soc. Chang. 78 (2011) 1579-1602.
[6] J. Landeta, J. Barrutia, A. Lertxundi, Hybrid Delphi: a methodology to
facilitate contribution from experts in professional contexts, Technol.
Forecast. Soc.Chang. 78 (2011) 1629-1641.
[7] M. Nowack, J. Endrikat, E. Guenther, Review of Delphi-based scenario
studies: quality and design considerations, Technol. Forecast. Soc.
Chang. 78 (2011)1603-1615.
[8] Devillers, R., Y. Bédard, M. Gervais, F. Pinet, M. Schneider, L. Bejaoui,
M.-A. Levesque, M. Salehi, A. Zargar, 2007, How to improve
Geospatial Data Usability: From Metadata to Quality-Aware GIS
Community, Spatial Data Usability, A AGILE Pre-Conference
Workshop, May 8th, Aalborg, Denmark.
[9] Levesque, M.-A., Y. Bédard, M. Gervais, R. Devillers, 2007, Towards
managing the risks of data misuse for spatial datacubes, Proceedings of
the 5th International Symposium on Spatial Data Quality, June 13-15,
Enschede, Netherlands.
[10] ISO/IEC Guide 51: 1999, Safety Aspects - Guidelines for their inclusion
in standards.
[11] ISO Guide 73:2009: Risk Management - Vocabulary.
[12] Grira, J., Bédard, Y., Roche, S.: Spatial Data Uncertainty in the VGI
World: going from Consumer to Producer. Geomatica, Jour. of the Can.
Inst. of Geomatics 64(1), 61-71 (2009)
[13] Sboui, T., M. Salehi, Y. Bédard, 2010, A systematic approach for
managing the risk related to semantic interoperability between geospatial
datacubes, International Journal of Agricultural and Environmental
Information Systems, Vol. 1, No. 2, pp. 20-41
[14] Bédard, Y., 2011, Professional Practices with Regards to Geospatial
Data Quality, Risk Management and Legal Liability, May 27th,
Technical University of Athens, Geomatics Dept., Greece.
[15] Levesque, M.-A., Y. Bédard, M. Gervais, R. Devillers, 2007, Towards
managing the risks of data misuse for spatial datacubes, Proceedings of
the 5th International Symposium on Spatial Data Quality, June 13-15,
Enschede, Netherlands.
[16] ISO 31000:2009, Risk Management.
[17] PMI. A guide to the project management body of knowledge(PMBOK
guide). 4th ed. Project ManagementInstitute; 2009.
[18] Greene, J., A. Stellman, Head First PMP. 2nd ed. O-Reilly. 2009
[19] E. Yu. Modelling Strategic Relationships for Process Engineering. PhD
thesis,University of Toronto, Department of Computer Science, 1995.
[20] A. Dardenne, A. van Lamsweerde, and S. Fickas. Goal-Directed
RequirementsAcquisition. Science of Computer Programming, 20:3-50,
1993.
[21] Sharp, H., Finkelstein, A., Galal, G.: Stakeholder identification in the
requirements engineering process. In: Proc. of the 10th Int. Work. on
Data. & Expert Syst. App. (1999)
[22] Aoyama, M.: Persona-and-scenario based requirements engineering for
software embedded in digital consumer products. In: Proc. of the IEEE
Int. Req. Eng. Conf., pp. 85-94 (2005)
[23] Maiden, N., Robertson, S.: Integrating creativity into requirements
processes: experiences with an air traffic management system. In: Proc.
of the IEEE Int. Req. Eng. Conf. (2005)
[24] Jackson, D.: Software Abstractions: Logic, Language, and Analysis.
MIT Press (2006)
[25] Wasson, K.S.: A case study in systematic improvement of language for
requirements. In: Proc. of the IEEE Int. Req. Eng. Conf. (RE), pp. 6-15
(2006)
[26] Robinson, W.N., Pawlowski, S.D., Volkov, V.: Requirements interaction
management. ACM Computing Surveys 35(2), 132-190 (2003)
[27] Feather, M.S.: Towards a unified approach to the representation of, and
reasoning with, probabilistic risk information about software and its
system interface. In: Int. Sym. on Soft. Reliab. Eng., pp. 391-402 (2004)
[28] Ryan, K.: The role of natural language in requirements engineering. In:
Proceedings of the IEEE International Symposium on Requirements
Engineering, San Diego, CA, pp. 240-242. IEEE Computer Society
Press, Los Alamitos (1993)
[29] Van, T., Lamsweerde, V.A., Massonet, P., Ponsard, C.: Goal-oriented
requirements animation. In: Proc. of the IEEE Int. Req. Eng. Conf (RE),
pp. 218-228 (2004)
[30] ISO 3864-2:2004 - Graphical symbols - Safety colours and safety signs:
Design principles for product safety labels
[31] Bédard, Y., J. Chandler, R. Devillers, M. Gervais, 2009, System Design
Methods and Geospatial Data Quality, Association of American
GeographersProfessional Ethics-Session on Geographic Information
Ethics and GIScience, March 22-27, Las Vegas, USA.
[32] Gervais M., Y. Bédard, R. Jeansoulin& B. Cervelle, 2007, Qualité des
données géographiques. Obligations juridiques potentielles et modèle du
producteur raisonnable, Revue Internationale de Géomatique, Vol. 17,
No. 1, pp. 33-62
[33] Public Protection and Ethical Dissemination of Geospatial Data - Social
and Legal Aspects. Examples of geospatial data misuse:
http://dataquality.scg.ulaval.ca/
[34] Agumya, A., Hunter, G.J., 1999. A Risk-Based Approach to Assessing
the ÔÇÿFitness for Use- of Spatial Data, URISA Journal, Vol. 11, No. 1, pp.
33-44.
[35] Nalon, F. R., Braga, J. L., Borges, K. A. D. V., & Andrade, M. V. A.
(2011). Applying the Model Driven Architecture Approach for
Geographic Database Design using a UML Profile and ISO
Standards. Journal of Information and Data Management, 2(2), 171.
[36] Fonseca, F. T., Egenhofer, M. J., Agouris, P., & Câmara, G. (2002).
Using ontologies for integrated geographic information
systems. Transactions in GIS,6(3), 231-257.
[37] Sboui, T., & Bédard, Y. (2012). Universal Geospatial Ontology for the
Semantic Interoperability of Data: What are the Risks and
How. Universal Ontology of Geographic Space: Semantic Enrichment
for Spatial Data, 1.
@article{"International Journal of Business, Human and Social Sciences:56752", author = "J. Grira and Y. Bédard and S. Roche", title = "Revisiting the Concept of Risk Analysis within the Context of Geospatial Database Design: A Collaborative Framework", abstract = "The aim of this research is to design a collaborative
framework that integrates risk analysis activities into the geospatial
database design (GDD) process. Risk analysis is rarely undertaken
iteratively as part of the present GDD methods in conformance to
requirement engineering (RE) guidelines and risk standards.
Accordingly, when risk analysis is performed during the GDD, some
foreseeable risks may be overlooked and not reach the output
specifications especially when user intentions are not systematically
collected. This may lead to ill-defined requirements and ultimately in
higher risks of geospatial data misuse. The adopted approach consists
of 1) reviewing risk analysis process within the scope of RE and
GDD, 2) analyzing the challenges of risk analysis within the context
of GDD, and 3) presenting the components of a risk-based
collaborative framework that improves the collection of the
intended/forbidden usages of the data and helps geo-IT experts to
discover implicit requirements and risks.", keywords = "Collaborative risk analysis, intention of use,
Geospatial database design, Geospatial data misuse.", volume = "7", number = "3", pages = "712-7", }
