Model-based reasoning on the achievement of business goals

Business process modeling has been realized as a methodology for the optimization of workflows in enterprises. Process models help to formalize the actual workflow by describing the activities that are required to achieve a specific business goal. In order to make business processes compliant with laws and regulations, it is necessary in practice to rewrite them in a way such that they guarantee the compliance with the identified security properties. Our research towards automated process rewriting for compliance enforcement has revealed that an essential building block is the ability for reasoning on the achievement of business goals: rewriting is only practically applicable (regardless whether it is performed manually or automatically) if the resulting process still achieves the desired business goals. This paper presents an approach for the automated reasoning on the achievement of business goals based on semantic congruence relations.

[1]  Kevin W. Hamlen,et al.  Computability classes for enforcement mechanisms , 2006, TOPL.

[2]  Robin Milner,et al.  A Calculus of Mobile Processes, II , 1992, Inf. Comput..

[3]  Ross J. Anderson Security engineering - a guide to building dependable distributed systems (2. ed.) , 2001 .

[4]  Davide Sangiorgi,et al.  The Pi-Calculus - a theory of mobile processes , 2001 .

[5]  Shazia Wasim Sadiq,et al.  Modeling Control Objectives for Business Process Compliance , 2007, BPM.

[6]  Lutz Lowis,et al.  A Classification Model for Automating Compliance , 2008, 2008 10th IEEE Conference on E-Commerce Technology and the Fifth IEEE Conference on Enterprise Computing, E-Commerce and E-Services.

[7]  F. Nordsieck Die schaubildliche Erfassung und Untersuchung der Betriebsorganisation , 1932 .

[8]  Wolfgang Reisig Petri Nets: An Introduction , 1985, EATCS Monographs on Theoretical Computer Science.

[9]  Raheel Ahmad,et al.  The π-Calculus: A theory of mobile processes , 2008, Scalable Comput. Pract. Exp..

[10]  Rafael Accorsi Automated Privacy Audits to Complement the Notion of Control for Identity Management , 2007, IDMAN.

[11]  Bill Curtis,et al.  Process modeling , 1992, CACM.

[12]  ROBIN MILNER,et al.  Edinburgh Research Explorer A Calculus of Mobile Processes, I , 2003 .

[13]  Omg Available Specification Business Process Modeling Notation, V1.1 , 2008 .

[14]  Frederick Winslow Taylor,et al.  科学管理原理=The principles of scientific management , 2014 .

[15]  Hans Eriksson,et al.  Business Modeling With UML: Business Patterns at Work , 2000 .

[16]  Jonathan L. Gross,et al.  Handbook of graph theory , 2007, Discrete mathematics and its applications.

[17]  Monique Snoeck,et al.  Business Process Verification: A Petri Net Approach , 2007 .

[18]  M. Porter The Competitive Advantage Of Nations , 1990 .

[19]  Jan Jürjens,et al.  Rubacon: automated support for model-based compliance engineering , 2008, ICSE '08.

[20]  W. Bodmer Principles of Scientific Management , 1993, FASEB journal : official publication of the Federation of American Societies for Experimental Biology.

[21]  Jeffrey D. Ullman,et al.  Introduction to Automata Theory, Languages and Computation , 1979 .

[22]  J. van Leeuwen,et al.  Advanced Information Systems Engineering , 1999, Lecture Notes in Computer Science.

[23]  Frank Yellin,et al.  The Java Virtual Machine Specification , 1996 .

[24]  Wil M. P. van der Aalst,et al.  Formalization and verification of event-driven process chains , 1999, Inf. Softw. Technol..

[25]  Stefan Sackmann,et al.  ExPDT: Ein Policy-basierter Ansatz zur Automatisierung von Compliance , 2008, Wirtsch..