Complexity is dead, long live complexity! How software can help service providers manage security and compliance

Thalmann, Stefan; Bachlechner, Daniel; Demetz, Lukas; Manhart, Markus

doi:10.1016/j.cose.2014.05.012

Cited by 5 publications

(3 citation statements)

References 47 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…If a solution is still not found the case will be analyzed by experts who will likely resolve the issue and then update the knowledge base with additional troubleshooting steps [30]. Such IT support is inefficient and expensive to execute [10]. For example each service desk tier will re-evaluate the device status to achieve a "clean" starting point before administering additional troubleshooting steps.…”

Section: A Example 1: Automated Operational Supportmentioning

confidence: 98%

“…Also in the public administration cross-organizational business processes are very common for example to administer digital government services [4], [5], [6], [7], [8] and to exchange complex data [9]. However, the increasingly widespread distribution of business processes also creates new challenges such as [10] cloud auditing, management of service heterogeneity, coordination of involved parties, management of client-vendor relationships, localizing and migrating data, and coping with a significant lack of security awareness [11], [12]. One of most evident challenges is distributed process tracing and validation which directly affects cross-organizational security management [13], [14], [15].…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Providing online operational support for distributed, security sensitive electronic business processes

Talamo

Povilionis

Arcieri

et al. 2015

2015 International Carnahan Conference on Security Technology (ICCST)

View full text Add to dashboard Cite

Online process mining techniques are increasingly used to provide operational support. In this work we describe tools to support distributed business processes which handle sensitive data and require a high level of security together with real-time validation. The techniques presented here have been specifically developed for real-time compliance checking of distributed processes in choreographies of heterogeneous entities. Challenges include the fast aggregation, analysis and validation of process logs that are collected from the distributed participants. The autonomy of the participating entities has to be respected and no sensitive data pertaining to the content of the individual transactions must be accessed for process support and validation purposes. A validation authority for process monitoring and validation is set up. Together with software agents dispatched to the participating entities the validation authority collects events in a central log and then analyzes these events using a particular representation of the process in form of a validation tree to detect and resolve anomalies. We describe the application of these technologies in a distributed business process with more than 400,000 daily process executions. The business process is supported by a help desk managing and responding to incidents and anomalies. We observe a reduction of 90% of the calls to the help desk and an average reduction of 15% in call length. Further the help desk was enabled to act pro-actively, calling participants to the process even before they became aware of anomalies that affected their organization

show abstract

Section: A Example 1: Automated Operational Supportmentioning

confidence: 98%

Section: Introductionmentioning

confidence: 99%

Providing online operational support for distributed, security sensitive electronic business processes

Talamo

Povilionis

Arcieri

et al. 2015

2015 International Carnahan Conference on Security Technology (ICCST)

View full text Add to dashboard Cite

show abstract

“…In support of a thorough software, the author proposed [ 13 ] a robust architecture for security and compliance challenges. Furthermore, by establishing software requirements based on a study of work patterns of service providers acting in complex IT outsourcing agreements and proposing a software architecture that meets these requirements, this study contributes to filling the gap in software support.…”

Section: Introductionmentioning

confidence: 99%

Challenges and practices identification in complex outsourcing relationships: A systematic literature review

Khan

et al. 2022

PLoS ONE

View full text Add to dashboard Cite

Complex IT outsourcing relationships aptitude several benefits such as increased cost likelihood and lowered costs, higher scalability and flexibility upon demand. However, by virtue of its complexity, the complex outsourcing typically necessitates the interactions among various stakeholders from diverse regions and cultures, making it significantly more challenging to manage than traditional outsourcing. Furthermore, when compared to other types of outsourcing, complex outsourcing is extremely difficult because it necessitates a variety of control and coordination mechanisms for project management, which proportionally increases the risk of project failure. In order to overcome the failure of projects in complex outsourcing relationships, there is a need of robust systematic research to identify the key challenges and practices in this area. Therefore, this research implements systematic literature review as a research method and works as a pioneer attempt to accomplish the aforementioned objectives. Upon furnishing the SLR results, the authors identified 11 major challenges with 67 practices in hand from a total of 85 papers. Based on these findings, the authors intend to construct a comprehensive framework in the future by incorporating robust methodologies such as AHP and fuzzy logic, among others.

show abstract

Software Compliance Requirements, Factors, and Policies: A Systematic Literature Review

Mubarkoot

Altmann

Rasti−Barzoki

et al. 2023

Computers & Security

View full text Add to dashboard Cite

Complexity is dead, long live complexity! How software can help service providers manage security and compliance

Cited by 5 publications

References 47 publications

Providing online operational support for distributed, security sensitive electronic business processes

Providing online operational support for distributed, security sensitive electronic business processes

Challenges and practices identification in complex outsourcing relationships: A systematic literature review

Software Compliance Requirements, Factors, and Policies: A Systematic Literature Review

Contact Info

Product

Resources

About