Class: Risk

The composite measure of an event's probability of occurring and

the magnitude or degree of the consequences of that event. When

considering negative impact, risk is a function of (1) the

negative impact or magnitude of harm and (2) the likelihood of

occurrence (Adapted from ISO 31000:2018; OMB Circular A-130:2016).

 classDiagram
    class Risk
    click Risk href "../Risk/"
      NamedThing <|-- Risk
        click NamedThing href "../NamedThing/"


      Risk <|-- ResidualRisk
        click ResidualRisk href "../ResidualRisk/"


      Risk : affects_system





        Risk --> "0..1" AiSystem : affects_system
        click AiSystem href "../AiSystem/"



      Risk : description

      Risk : id

      Risk : impact_sign





        Risk --> "0..1" ImpactSignEnum : impact_sign
        click ImpactSignEnum href "../ImpactSignEnum/"



      Risk : is_residual

      Risk : lifecycle_stage





        Risk --> "*" AiLifecycleStageEnum : lifecycle_stage
        click AiLifecycleStageEnum href "../AiLifecycleStageEnum/"



      Risk : likelihood

      Risk : magnitude

      Risk : name

      Risk : related_impacts





        Risk --> "*" Impact : related_impacts
        click Impact href "../Impact/"



      Risk : risk_response





        Risk --> "0..1" RiskResponseEnum : risk_response
        click RiskResponseEnum href "../RiskResponseEnum/"



      Risk : see_also

      Risk : title

      Risk : trustworthiness_characteristic





        Risk --> "*" TrustworthinessCharacteristicEnum : trustworthiness_characteristic
        click TrustworthinessCharacteristicEnum href "../TrustworthinessCharacteristicEnum/"

Inheritance

NamedThing
- Risk
  - ResidualRisk

Slots

Name	Cardinality and Range	Description	Inheritance
likelihood	0..1 Float	Estimated probability of the event occurring (0	direct
magnitude	0..1 String	Magnitude or degree of consequences if the event occurs (free	direct
impact_sign	0..1 ImpactSignEnum	Whether the impact is positive, negative, or both	direct
is_residual	0..1 Boolean	Whether this risk represents risk remaining after risk treatment	direct
risk_response	0..1 RiskResponseEnum	The chosen risk treatment option	direct
lifecycle_stage	* AiLifecycleStageEnum	The AI lifecycle stage(s) the element applies to	direct
trustworthiness_characteristic	* TrustworthinessCharacteristicEnum	Trustworthiness characteristic(s) the element pertains to	direct
related_impacts	* Impact	The impacts that contribute to this risk	direct
affects_system	0..1 AiSystem	The AI system this risk pertains to	direct
id	1 Uriorcurie	A unique identifier for an element	NamedThing
name	0..1 String	A short human-readable name	NamedThing
title	0..1 String	A human-readable title	NamedThing
description	0..1 String	A human-readable description	NamedThing
see_also	* Uriorcurie	Related references	NamedThing

In Subsets

RiskAndHarm

Identifier and Mapping Information

Schema Source

from schema: https://w3id.org/lmodel/nist-ai-rmf

Mappings

Mapping Type	Mapped Value
self	nist_ai_rmf:Risk
native	nist_ai_rmf:Risk
exact	iso27001:Risk
related	iso29100:PrivacyRisk

LinkML Source

Direct

name: Risk
description: 'The composite measure of an event''s probability of occurring and

  the magnitude or degree of the consequences of that event. When

  considering negative impact, risk is a function of (1) the

  negative impact or magnitude of harm and (2) the likelihood of

  occurrence (Adapted from ISO 31000:2018; OMB Circular A-130:2016).'
in_subset:
- risk_and_harm
from_schema: https://w3id.org/lmodel/nist-ai-rmf
exact_mappings:
- iso27001:Risk
related_mappings:
- iso29100:PrivacyRisk
is_a: NamedThing
slots:
- likelihood
- magnitude
- impact_sign
- is_residual
- risk_response
- lifecycle_stage
- trustworthiness_characteristic
attributes:
  related_impacts:
    name: related_impacts
    description: The impacts that contribute to this risk.
    from_schema: https://w3id.org/lmodel/nist-ai-rmf-core
    rank: 1000
    domain_of:
    - Risk
    range: Impact
    multivalued: true
    inlined: true
    inlined_as_list: true
  affects_system:
    name: affects_system
    description: The AI system this risk pertains to.
    from_schema: https://w3id.org/lmodel/nist-ai-rmf-core
    rank: 1000
    domain_of:
    - Risk
    range: AiSystem

Induced

name: Risk
description: 'The composite measure of an event''s probability of occurring and

  the magnitude or degree of the consequences of that event. When

  considering negative impact, risk is a function of (1) the

  negative impact or magnitude of harm and (2) the likelihood of

  occurrence (Adapted from ISO 31000:2018; OMB Circular A-130:2016).'
in_subset:
- risk_and_harm
from_schema: https://w3id.org/lmodel/nist-ai-rmf
exact_mappings:
- iso27001:Risk
related_mappings:
- iso29100:PrivacyRisk
is_a: NamedThing
attributes:
  related_impacts:
    name: related_impacts
    description: The impacts that contribute to this risk.
    from_schema: https://w3id.org/lmodel/nist-ai-rmf-core
    rank: 1000
    owner: Risk
    domain_of:
    - Risk
    range: Impact
    multivalued: true
    inlined: true
    inlined_as_list: true
  affects_system:
    name: affects_system
    description: The AI system this risk pertains to.
    from_schema: https://w3id.org/lmodel/nist-ai-rmf-core
    rank: 1000
    owner: Risk
    domain_of:
    - Risk
    range: AiSystem
  likelihood:
    name: likelihood
    description: 'Estimated probability of the event occurring (0.0 to 1.0). The

      AI RMF leaves quantification approaches to the implementer.'
    in_subset:
    - risk_and_harm
    from_schema: https://w3id.org/lmodel/nist-ai-rmf
    close_mappings:
    - iso27001:LikelihoodRating
    rank: 1000
    owner: Risk
    domain_of:
    - Risk
    - Impact
    range: float
    minimum_value: 0.0
    maximum_value: 1.0
  magnitude:
    name: magnitude
    description: 'Magnitude or degree of consequences if the event occurs (free

      text or qualitative scale).'
    in_subset:
    - risk_and_harm
    from_schema: https://w3id.org/lmodel/nist-ai-rmf
    close_mappings:
    - iso27001:ImpactRating
    rank: 1000
    owner: Risk
    domain_of:
    - Risk
    - Impact
    - Harm
    range: string
  impact_sign:
    name: impact_sign
    description: Whether the impact is positive, negative, or both.
    in_subset:
    - risk_and_harm
    from_schema: https://w3id.org/lmodel/nist-ai-rmf
    rank: 1000
    owner: Risk
    domain_of:
    - Risk
    - Impact
    range: ImpactSignEnum
  is_residual:
    name: is_residual
    description: 'Whether this risk represents risk remaining after risk treatment

      (residual risk per ISO Guide 73).'
    in_subset:
    - risk_and_harm
    from_schema: https://w3id.org/lmodel/nist-ai-rmf
    rank: 1000
    owner: Risk
    domain_of:
    - Risk
    range: boolean
  risk_response:
    name: risk_response
    description: The chosen risk treatment option.
    in_subset:
    - risk_and_harm
    from_schema: https://w3id.org/lmodel/nist-ai-rmf
    exact_mappings:
    - iso27001:RiskTreatmentOption
    rank: 1000
    owner: Risk
    domain_of:
    - Risk
    range: RiskResponseEnum
  lifecycle_stage:
    name: lifecycle_stage
    description: The AI lifecycle stage(s) the element applies to.
    in_subset:
    - lifecycle
    from_schema: https://w3id.org/lmodel/nist-ai-rmf
    rank: 1000
    owner: Risk
    domain_of:
    - AiSystem
    - AiActor
    - AiActorTask
    - Risk
    - Subcategory
    - GaiRisk
    range: AiLifecycleStageEnum
    multivalued: true
  trustworthiness_characteristic:
    name: trustworthiness_characteristic
    description: Trustworthiness characteristic(s) the element pertains to.
    in_subset:
    - trustworthiness
    from_schema: https://w3id.org/lmodel/nist-ai-rmf
    rank: 1000
    owner: Risk
    domain_of:
    - Risk
    - Subcategory
    - GaiRisk
    range: TrustworthinessCharacteristicEnum
    multivalued: true
  id:
    name: id
    description: A unique identifier for an element.
    in_subset:
    - core
    from_schema: https://w3id.org/lmodel/nist-ai-rmf
    rank: 1000
    slot_uri: schema:identifier
    identifier: true
    owner: Risk
    domain_of:
    - NamedThing
    range: uriorcurie
    required: true
  name:
    name: name
    description: A short human-readable name.
    in_subset:
    - core
    from_schema: https://w3id.org/lmodel/nist-ai-rmf
    rank: 1000
    slot_uri: rdfs:label
    owner: Risk
    domain_of:
    - NamedThing
    range: string
  title:
    name: title
    description: A human-readable title.
    in_subset:
    - core
    from_schema: https://w3id.org/lmodel/nist-ai-rmf
    rank: 1000
    slot_uri: dcterms:title
    owner: Risk
    domain_of:
    - NamedThing
    - PlaybookEntry
    range: string
  description:
    name: description
    description: A human-readable description.
    in_subset:
    - core
    from_schema: https://w3id.org/lmodel/nist-ai-rmf
    rank: 1000
    slot_uri: dcterms:description
    owner: Risk
    domain_of:
    - NamedThing
    - PlaybookEntry
    range: string
  see_also:
    name: see_also
    description: Related references.
    in_subset:
    - core
    from_schema: https://w3id.org/lmodel/nist-ai-rmf
    rank: 1000
    slot_uri: rdfs:seeAlso
    owner: Risk
    domain_of:
    - NamedThing
    range: uriorcurie
    multivalued: true