Abstract
Today’s enterprises demand a high degree of compliance of business processes to meet regulations, such as Sarbanes-Oxley and Basel I-III. To ensure continuous guaranteed compliance, compliance management should be considered during all phases of the business process lifecycle; from the analysis and design to deployment, monitoring and evaluation. This paper introduces an integrated business process compliance management framework that incorporates design-time verification and runtime monitoring approaches. The nutshell of the approach is the Compliance
Request Language (CRL), which is a high-level pattern-based language for the abstract specification of compliance requirements. From CRL expressions, formal compliance rules can be automatically generated, thereby eliminating the need for business and compliance experts to learn and use complex low-level formal languages. Formalized compliance rules enable automated approaches to be used for the static verification and dynamic monitoring of business processes. An integrated prototypical tool-suite is developed as a proof-of-concept to help validating the
applicability of the approaches, and validated by experiment with two real-life case studies.
Original language | English |
---|---|
Title of host publication | Proceedings of the 24th International Business Information Management Association Conference, 6-7 November 2014, Milan, Italy |
Editors | K.S. Soliman |
Publisher | International Business Information Management Association (IBIMA) |
Pages | 764-781 |
ISBN (Print) | 978-0-9860419-3-8 |
Publication status | Published - 2014 |
Event | conference; 24th International Business Information Management Association Conference; 2014-11-06; 2014-11-07 - Duration: 6 Nov 2014 → 7 Nov 2014 |
Conference
Conference | conference; 24th International Business Information Management Association Conference; 2014-11-06; 2014-11-07 |
---|---|
Period | 6/11/14 → 7/11/14 |
Other | 24th International Business Information Management Association Conference |