Artikel in Tagungsband INPROC-2010-41

Schumm, David; Turetken, Oktay; Kokash, Natallia; Elgammal, Amal; Leymann, Frank; van den Heuvel, Willem-Jan: Business Process Compliance through Reusable Units of Compliant Processes.
In: Daniel, Florian (Hrsg); Facca, Federico Michele (Hrsg): Proceedings of the 1st Workshop on Engineering SOA and the Web (ESW'10).
Universität Stuttgart, Fakultät Informatik, Elektrotechnik und Informationstechnik.
Lecture Notes in Computer Science; 6385, S. 325-337, englisch.
Vienna: Springer, 27. Oktober 2010.
Artikel in Tagungsband (Workshop-Beitrag).
CR-Klassif.H.4.1 (Office Automation)
KeywordsCompliance; Business Process Management; Process Fragment; Formal Modeling; Process Verification

Compliance management is essential for ensuring that organizational business processes and supporting information systems are in accordance with a set of prescribed requirements originating from laws, regulations, and various legislative or technical documents such as Sarbanes-Oxley Act or ISO 17799. As the violation of such requirements may lead to significant punishment for an organization, compliance management should be supported at the very early stages of business process development. In this paper, we present an integrated approach to compliance management that helps process designers to adhere to compliance requirements relevant for their processes. Firstly, we introduce a conceptual model for specifying compliance requirements originating from various compliance sources. Secondly, we propose a framework for augmenting business processes with reusable fragments to ensure process compliance to certain requirements by design. Furthermore, we discuss the formalization of compliance requirements using mathematical logics and integrate the framework for process reuse with automated software verification tools.
Abteilung(en)Universität Stuttgart, Institut für Architektur von Anwendungssystemen
Eingabedatum26. Mai 2010
   Publ. Institut   Publ. Informatik