@inproceedings{968951f8139a4d8eb288675e2294d315,
title = "Satisfaction of control objectives by control processes",
abstract = "Showing that business processes comply with regulatory requirements is not easy. We investigate this compliance problem in the case that the requirements are expressed as a directed, acyclic graph, with high-level requirements (called control objectives) at the top and with low-level requirements (called control activities) at the bottom. These control activities are then implemented by control processes. We introduce two algorithms: the first identifies whether a given set of control activities is sufficient to satisfy the top-level control objectives; the second identifies those steps of control processes that contribute to the satisfaction of top-level control objectives. We illustrate these concepts and the algorithms by examples taken from a large healthcare provider. {\textcopyright} 2009 Springer-Verlag Berlin Heidelberg.",
author = "D. Marino and F. Massacci and A. Micheletti and N. Rassadko and S. Neuhaus",
year = "2009",
doi = "10.1007/978-3-642-10383-4_39",
language = "English",
series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
pages = "531--545",
booktitle = "Service-Oriented Computing - 7th International Joint Conference, ICSOC-Service Wave 2009, Proceedings",
note = "7th International Joint Conference on Service-Oriented Computing, ICSOC-ServiceWave 2009 ; Conference date: 24-11-2009 Through 27-11-2009",
}