Compliance in e-Government Service Engineering: State-of-the-Art

Turki, Slim; Bjekovic-Obradovic, Marija

doi:10.1007/978-3-642-14319-9_23

Cited by 12 publications

(9 citation statements)

References 16 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The authors classified the existing compliance approaches using a four dimensions criteria. Elgammal et al (2010) report a comparative analysis between formal languages to analysis how the compliance requirements are specified for automatic verification while (Turki and Bjekovic-Obradovic 2010) investigate the practice of regulation analysis and the approaches aiming to achieve and maintain regulatory compliance of given normative systems from an information systems and services perspective. Bonatti et al (2004) study the existing approaches to logic and rule-based systems behaviour specifications from business and security policies rules to identify the possible usage for rule-based policies in a semantic web context.…”

Section: Process Compliance In Soa/cloud Computingmentioning

confidence: 99%

Normative requirements for regulatory compliance: An abstract formal framework

2015

View full text Add to dashboard Cite

By definition, regulatory rules (in legal context called norms) intend to achieve specific behaviour from business processes, and might be relevant to the whole or part of a business process. They can impose conditions on different aspects of process models, e.g., control-flow, data and resources etc. Based on the rules sets, norms can be classified into various classes and sub-classes according to their effects. This paper presents an abstract framework consisting of a list of norms and a generic compliance checking approach on the idea of (possible) execution of processes. The proposed framework is independent of any existing formalism, and provides a conceptually rich and exhaustive ontology and semantics of norms needed for business process compliance checking. Apart from the other uses, the proposed framework can be used to compare different compliance management frameworks (CMFs).

show abstract

Section: Process Compliance In Soa/cloud Computingmentioning

confidence: 99%

Normative requirements for regulatory compliance: An abstract formal framework

2015

View full text Add to dashboard Cite

show abstract

“…Their survey focuses on the understanding and lack of passion to address the compliance problem in the industry sectors and shortcomings of the available compliance solutions as well as the complexity of the compliance problem. A rather similar literature survey on the practice of regulations analysis and the approaches that aims to achieve and maintain regulations compliance from an Information System and eGovernment Services perspective has been reported in [190]. The survey in [41], on the other hand, focuses on how modelling languages are used to align the compliance requirements on business processes.…”

Section: Comparison and Key Findingsmentioning

confidence: 99%

Are we done with business process compliance: state of the art and challenges ahead

et al. 2018

View full text Add to dashboard Cite

Literature on business process compliance (BPC) has predominantly focused on the alignment of the regulatory rules with the design, verification and validation of business processes. Previously surveys on BPC have been conducted with specific context in mind; however, the literature on BPC management research is largely sparse and does not accumulate a detailed understanding on existing literature and related issues faced by the domain. This survey provides a holistic view of the literature on existing BPC management approaches, and categories them based on different compliance management strategies in the context of formulated research questions. A systematic literature approach is used where search terms pertaining keywords were used to identify literature related to the research questions from scholarly databases. From initially 183 papers, we selected 79 papers related to the themes of this survey published between 2000-2015. The survey results reveal that mostly compliance management approaches center around three distinct categories namely: design-time (28%), run-time (32%) and auditing (10%). Also, organisational and internal control based compliance management frameworks (21%) and hybrid approaches make (9%) of the surveyed approaches. Furthermore, open research challenges and gaps are identified and discussed with respect to the compliance problem.

show abstract

“…delegation), while providing analysis and enforcement functionalities. Examples of such approaches are Ponder [9], KAOS [10], Rei [11], XACML 6 , and Rewerse [12]. In both rule-based and policy-based approaches, process models are annotated with either rules or policies that can be checked and be evaluated to True or False.…”

Section: Existing Approaches To Business Process Compliance Managmentioning

confidence: 99%

“…In distributed systems, compliance problems are often studied as security problems (e.g., UMLSec [1]), or, more rarely, as quality problems (e.g., QoS [2]). In academia, compliance is acknowledged to be a broad and challenging topic, encompassing modeling, checking and monitoring compliance [3], [4], [5], [6]. The number of published papers on the topic has been constantly increasing since the year 2001 [4].…”

Section: Introductionmentioning

confidence: 99%

CoReL: Policy-Based and Model-Driven Regulatory Compliance Management

Kharbili

Kelsen

et al. 2011

2011 IEEE 15th International Enterprise Distributed Object Computing Conference

View full text Add to dashboard Cite

Abstract-Regulatory compliance management is now widely recognized as one of the main challenges still to be efficiently dealt with in information systems. In the discipline of business process management in particular, compliance is considered as an important driver of the efficiency, reliability and market value of companies. It consists of ensuring that enterprise systems behave according to some guidance provided in the form of regulations. This paper gives a definition of the research problem of regulatory compliance. We show why we expect a formal policy-based and model-driven approach to provide significant advantages in allowing enterprises to flexibly manage decision-making related to regulatory compliance. For this purpose, we contribute CoReL, a domain-specific modeling language for representing compliance requirements that has a graphical concrete syntax. Informal semantics of CoReL are introduced and its use is illustrated on an example. CoReL allows to leverage business process compliance modeling and checking, enhancing it with regard to, among other dimensions, user-friendliness, genericity, and traceability.

show abstract

Compliance in e-Government Service Engineering: State-of-the-Art

Cited by 12 publications

References 16 publications

Normative requirements for regulatory compliance: An abstract formal framework

Normative requirements for regulatory compliance: An abstract formal framework

Are we done with business process compliance: state of the art and challenges ahead

CoReL: Policy-Based and Model-Driven Regulatory Compliance Management

Contact Info

Product

Resources

About