Auditing Workflow Executions against Dataflow Policies

Accorsi, Rafael; Wonnemann, Claus

doi:10.1007/978-3-642-12814-1_18

Cited by 15 publications

(9 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The major share of research in this area has focussed on the specification and verification of RBAC policies [48][49][50], among others on consistency and satisfiability of constraint sets [51,52], as well as on engineering and enforcement by design [53]. Log files have been used for mining roles in this area [54,55], while an a posteriori compliance control has only been considered recently [56][57][58]. The approach reported in this paper informs this stream of research.…”

Section: Related Workmentioning

confidence: 81%

Process compliance analysis based on behavioural profiles

Weidlich

Polyvyanyy

Desai

et al. 2011

Information Systems

104

View full text Add to dashboard Cite

a b s t r a c tProcess compliance measurement is getting increasing attention in companies due to stricter legal requirements and market pressure for operational excellence. In order to judge on compliance of the business processing, the degree of behavioural deviation of a case, i.e., an observed execution sequence, is quantified with respect to a process model (referred to as fitness, or recall). Recently, different compliance measures have been proposed. Still, nearly all of them are grounded on state-based techniques and the trace equivalence criterion, in particular. As a consequence, these approaches have to deal with the state explosion problem. In this paper, we argue that a behavioural abstraction may be leveraged to measure the compliance of a process log -a collection of cases. To this end, we utilise causal behavioural profiles that capture the behavioural characteristics of process models and cases, and can be computed efficiently. We propose different compliance measures based on these profiles, discuss the impact of noise in process logs on our measures, and show how diagnostic information on non-compliance is derived. As a validation, we report on findings of applying our approach in a case study with an international service provider.

show abstract

Section: Related Workmentioning

confidence: 81%

Process compliance analysis based on behavioural profiles

Weidlich

Polyvyanyy

Desai

et al. 2011

Information Systems

104

View full text Add to dashboard Cite

show abstract

“…Accorsi et al [1,2] present an approach for detecting illegal data flow execution in business processes. These works propose a forensic analysis tool called RecIF that constructs a graph of data flow among subjects (propagation graph) in a process.…”

Section: Anomaly Detection In Process Logsmentioning

confidence: 99%

Algorithms for anomaly detection of traces in logs of process aware information systems

Bezerra

Wainer

2013

Information Systems

102

View full text Add to dashboard Cite

a b s t r a c tThis paper discusses four algorithms for detecting anomalies in logs of process aware systems. One of the algorithms only marks as potential anomalies traces that are infrequent in the log. The other three algorithms: threshold, iterative and sampling are based on mining a process model from the log, or a subset of it. The algorithms were evaluated on a set of 1500 artificial logs, with different profiles on the number of anomalous traces and the number of times each anomalous traces was present in the log. The sampling algorithm proved to be the most effective solution. We also applied the algorithm to a real log, and compared the resulting detected anomalous traces with the ones detected by a different procedure that relies on manual choices.

show abstract

“…With regard to the business layer, techniques have been developed to analyze the structural properties of business processes [1,23], but little, if any, work has focused on obtaining evidence on isolation properties. Accorsi and Wonnemann [2] have described a forensic approach for log analysis based on propagation graphs that model how data items spread in a system. Sun, et al [20] have developed a technique for reasoning about data flows and business processes, but they do not relate it to security.…”

Section: Related Workmentioning

confidence: 99%

Forensic Leak Detection for Business Process Models

Accorsi

Wonnemann

2011

Advances in Digital Forensics VII

Self Cite

View full text Add to dashboard Cite

This paper presents a formal forensic technique based on information flow analysis to detect data and information leaks in business process models. The approach can be uniformly applied to the analysis of process specifications and the log files generated during process execution. The Petri net dialect IFnet is used to provide a common basis for the formalization of isolation properties, the representation of business process specifications and their analysis. The utility of the approach is illustrated using an eHealth case study.

show abstract

Auditing Workflow Executions against Dataflow Policies

Cited by 15 publications

References 11 publications

Process compliance analysis based on behavioural profiles

Process compliance analysis based on behavioural profiles

Algorithms for anomaly detection of traces in logs of process aware information systems

Forensic Leak Detection for Business Process Models

Contact Info

Product

Resources

About