Satisfaction of control objectives by control processes

D. Marino; F. Massacci; A. Micheletti; N. Rassadko; S. Neuhaus

doi:10.1007/978-3-642-10383-4_39

Satisfaction of control objectives by control processes

D. Marino, F. Massacci, A. Micheletti, N. Rassadko, S. Neuhaus

Research output: Chapter in Book / Report / Conference proceeding › Conference contribution › Academic › peer-review

Abstract

Showing that business processes comply with regulatory requirements is not easy. We investigate this compliance problem in the case that the requirements are expressed as a directed, acyclic graph, with high-level requirements (called control objectives) at the top and with low-level requirements (called control activities) at the bottom. These control activities are then implemented by control processes. We introduce two algorithms: the first identifies whether a given set of control activities is sufficient to satisfy the top-level control objectives; the second identifies those steps of control processes that contribute to the satisfaction of top-level control objectives. We illustrate these concepts and the algorithms by examples taken from a large healthcare provider. © 2009 Springer-Verlag Berlin Heidelberg.

Original language	English
Title of host publication	Service-Oriented Computing - 7th International Joint Conference, ICSOC-Service Wave 2009, Proceedings
Pages	531-545
DOIs	https://doi.org/10.1007/978-3-642-10383-4_39
Publication status	Published - 2009
Externally published	Yes
Event	7th International Joint Conference on Service-Oriented Computing, ICSOC-ServiceWave 2009 - , Sweden Duration: 24 Nov 2009 → 27 Nov 2009

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	7th International Joint Conference on Service-Oriented Computing, ICSOC-ServiceWave 2009
Country/Territory	Sweden
Period	24/11/09 → 27/11/09

Access to Document

10.1007/978-3-642-10383-4_39

Persistent URL (handle)

Persistent link

Cite this

Marino, D., Massacci, F., Micheletti, A., Rassadko, N., & Neuhaus, S. (2009). Satisfaction of control objectives by control processes. In Service-Oriented Computing - 7th International Joint Conference, ICSOC-Service Wave 2009, Proceedings (pp. 531-545). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). https://doi.org/10.1007/978-3-642-10383-4_39

@inproceedings{968951f8139a4d8eb288675e2294d315,

title = "Satisfaction of control objectives by control processes",

abstract = "Showing that business processes comply with regulatory requirements is not easy. We investigate this compliance problem in the case that the requirements are expressed as a directed, acyclic graph, with high-level requirements (called control objectives) at the top and with low-level requirements (called control activities) at the bottom. These control activities are then implemented by control processes. We introduce two algorithms: the first identifies whether a given set of control activities is sufficient to satisfy the top-level control objectives; the second identifies those steps of control processes that contribute to the satisfaction of top-level control objectives. We illustrate these concepts and the algorithms by examples taken from a large healthcare provider. {\textcopyright} 2009 Springer-Verlag Berlin Heidelberg.",

author = "D. Marino and F. Massacci and A. Micheletti and N. Rassadko and S. Neuhaus",

year = "2009",

doi = "10.1007/978-3-642-10383-4\_39",

language = "English",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

pages = "531--545",

booktitle = "Service-Oriented Computing - 7th International Joint Conference, ICSOC-Service Wave 2009, Proceedings",

note = "7th International Joint Conference on Service-Oriented Computing, ICSOC-ServiceWave 2009 ; Conference date: 24-11-2009 Through 27-11-2009",

}

Marino, D, Massacci, F, Micheletti, A, Rassadko, N & Neuhaus, S 2009, Satisfaction of control objectives by control processes. in Service-Oriented Computing - 7th International Joint Conference, ICSOC-Service Wave 2009, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), pp. 531-545, 7th International Joint Conference on Service-Oriented Computing, ICSOC-ServiceWave 2009, Sweden, 24/11/09. https://doi.org/10.1007/978-3-642-10383-4_39

Satisfaction of control objectives by control processes. / Marino, D.; Massacci, F.; Micheletti, A. et al.
Service-Oriented Computing - 7th International Joint Conference, ICSOC-Service Wave 2009, Proceedings. 2009. p. 531-545 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

Research output: Chapter in Book / Report / Conference proceeding › Conference contribution › Academic › peer-review

TY - GEN

T1 - Satisfaction of control objectives by control processes

AU - Marino, D.

AU - Massacci, F.

AU - Micheletti, A.

AU - Rassadko, N.

AU - Neuhaus, S.

PY - 2009

Y1 - 2009

N2 - Showing that business processes comply with regulatory requirements is not easy. We investigate this compliance problem in the case that the requirements are expressed as a directed, acyclic graph, with high-level requirements (called control objectives) at the top and with low-level requirements (called control activities) at the bottom. These control activities are then implemented by control processes. We introduce two algorithms: the first identifies whether a given set of control activities is sufficient to satisfy the top-level control objectives; the second identifies those steps of control processes that contribute to the satisfaction of top-level control objectives. We illustrate these concepts and the algorithms by examples taken from a large healthcare provider. © 2009 Springer-Verlag Berlin Heidelberg.

AB - Showing that business processes comply with regulatory requirements is not easy. We investigate this compliance problem in the case that the requirements are expressed as a directed, acyclic graph, with high-level requirements (called control objectives) at the top and with low-level requirements (called control activities) at the bottom. These control activities are then implemented by control processes. We introduce two algorithms: the first identifies whether a given set of control activities is sufficient to satisfy the top-level control objectives; the second identifies those steps of control processes that contribute to the satisfaction of top-level control objectives. We illustrate these concepts and the algorithms by examples taken from a large healthcare provider. © 2009 Springer-Verlag Berlin Heidelberg.

UR - https://www.scopus.com/pages/publications/75649115361

UR - https://www.scopus.com/inward/citedby.url?scp=75649115361&partnerID=8YFLogxK

U2 - 10.1007/978-3-642-10383-4_39

DO - 10.1007/978-3-642-10383-4_39

M3 - Conference contribution

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 531

EP - 545

BT - Service-Oriented Computing - 7th International Joint Conference, ICSOC-Service Wave 2009, Proceedings

T2 - 7th International Joint Conference on Service-Oriented Computing, ICSOC-ServiceWave 2009

Y2 - 24 November 2009 through 27 November 2009

ER -

Marino D, Massacci F, Micheletti A, Rassadko N, Neuhaus S. Satisfaction of control objectives by control processes. In Service-Oriented Computing - 7th International Joint Conference, ICSOC-Service Wave 2009, Proceedings. 2009. p. 531-545. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-642-10383-4_39

Satisfaction of control objectives by control processes

Abstract

Publication series

Conference

Access to Document

Persistent URL (handle)

Other files and links

Fingerprint

Cite this