.polarion/tracker/fields/workitem-link-role-enum.xml
TARA-Specific Link Roles
These 5 link roles are unique to the TARA cybersecurity solution and implement the dual-track traceability model.| Role ID | Forward Label | Reverse Label | From Type | To Type | Description |
|---|---|---|---|---|---|
hasThreatScenario | has Threat Scenario | is Threat Scenario in | taraRecord | threatScenario | Links a TARA record to its threat scenario from the shared catalog. Risksheet Level 4 hierarchy column. |
hasStakeholder | has Stakeholder | is Stakeholder in | taraRecord | stakeholder | Links a TARA record to the affected stakeholder from the shared catalog. Risksheet Level 1 hierarchy column. |
hasCybersecurityGoal | has Cybersecurity Goal | is Cybersecurity Goal in | taraRecord | cybersecurityGoal | Links a TARA record to its derived cybersecurity goal. Required when treatment choice is Reducing or Avoiding. |
derivesRequirement | derives from Goal | derives Requirement | sysReq | cybersecurityGoal | Links a cybersecurity requirement to the goal it was derived from. Completes the Goal Track traceability chain. |
mitigates | Mitigates | is Mitigated by | riskControl | taraRecord | Links a risk control to the TARA record it addresses. Primary Risksheet task link role. |
Dual-Track Traceability Diagram
Standard Polarion Link Roles
These 12 link roles are standard Polarion or Nextedy roles used across the solution.Requirements and Design
| Role ID | Forward Label | Reverse Label | From Type | To Type | Description |
|---|---|---|---|---|---|
refines | Refines | is Refined by | sysReq | sysReq | Requirements decomposition within the same type. Used for hierarchical requirement breakdown. |
implements | Implements | is Implemented by | task, sysReq | sysReq, riskControl | Implementation traceability. Two rules: task -> sysReq/riskControl and sysReq -> riskControl. |
allocatedTo | is Allocated to | has Allocated | function, processStep | systemElement | Functional allocation to system elements in architecture analysis. |
Verification and Validation
| Role ID | Forward Label | Reverse Label | From Type | To Type | Description |
|---|---|---|---|---|---|
verifies | Verifies | is Verified by | testCase | sysReq | Formal verification link. Test cases verify requirements. Used in RTM coverage dashboards via nxLinkCoverage macro. |
validates | Validates | is Validated by | (unrestricted) | (unrestricted) | Validation under real-world conditions. No type constraints, allowing flexible cross-type usage. |
Defect and Change Management
| Role ID | Forward Label | Reverse Label | From Type | To Type | Description |
|---|---|---|---|---|---|
detectedBy | is Detected by | Detects | defect | testCase | Records which test case discovered a defect. Supports test effectiveness metrics. |
tracks | Tracks | is Tracked by | changeRequest | sysReq, task, defect | Change impact analysis. Broad target types allow full scope tracking. |
followsUp | Follows up | is Followed up by | task | defect, task, changeRequest | Follow-up action chains. task -> task rule enables sequential remediation workflows. |
Hierarchy and Lineage
| Role ID | Forward Label | Reverse Label | Constraint | Description |
|---|---|---|---|---|
parent | has parent | is parent of | sameType=true | Hierarchical parent-child within the same type. Used for system element trees, requirement hierarchies. |
branched_from | is Branched from | has Branch | (unrestricted) | Variant management. Work item branched from another for project reuse. |
derived_from | is Derived from | has Derived | (unrestricted) | Lineage tracking across project variants or standards. |
address | Address | is Addressed by | (unrestricted) | Use case coverage. Links use steps to user needs. |
Risksheet Column Bindings
The following link roles are directly consumed by RisksheetitemLink and taskLink columns:
| Risksheet Column | Link Role | Column Type | Query Factory |
|---|---|---|---|
stakeholder | hasStakeholder | itemLink | stakeholderQuery (type:stakeholder) |
threatScenario | hasThreatScenario | itemLink | threatScenarioQuery (type:threatScenario) |
cybersecurityGoal | hasCybersecurityGoal | itemLink | cybersecurityGoalQuery (type:cybersecurityGoal) |
task (Control ID) | mitigates | taskLink | — (configured as task type in global settings) |
Lucene Query Patterns
Link roles can be queried using thelinkedWorkItems.role Lucene field:
Link Role Type Rules Summary
| Role ID | Constrained Types | Bidirectional |
|---|---|---|
hasThreatScenario | taraRecord -> threatScenario | No |
hasStakeholder | taraRecord -> stakeholder | No |
hasCybersecurityGoal | taraRecord -> cybersecurityGoal | No |
derivesRequirement | sysReq -> cybersecurityGoal | No |
mitigates | riskControl -> taraRecord | No |
refines | sysReq -> sysReq | No |
implements | task/sysReq -> sysReq/riskControl | No |
allocatedTo | function/processStep -> systemElement | No |
verifies | testCase -> sysReq | No |
validates | (unrestricted) | No |
detectedBy | defect -> testCase | No |
tracks | changeRequest -> sysReq/task/defect | No |
followsUp | task -> defect/task/changeRequest | No |
parent | same type only | No |
branched_from | (unrestricted) | No |
derived_from | (unrestricted) | No |
address | (unrestricted) | No |
Related Pages
- TARA Record (taraRecord) — central hub of all TARA link roles
- Cybersecurity Goal (cybersecurityGoal) — target of Goal Track links
- Risk Control (riskControl) — source of Control Track
mitigateslink - Traceability Chain — concept page on dual-track traceability
- RTM Domain Model — RTM model configuration reference