Dealing with imprecise compliance requirements

Business process compliance management is a field of study involving the co-ordination of business process management and compliance systems. A compliance system is an organisation wide tool that links legislative and business rules to organization policies and processes. The objective of such a system is to promote a self sustaining level of operations that minimizes the losses caused to the business through breaches of laws or internal misappropriations. We view a compliance system in a similar fashion to that of an accounting system where each process is treated as a transaction. Each process may be monitored and valuations of costing and benefits associated to each task. Both high order policy creation as well as low order transactional histories of single processes must be considered to obtain a complete picture of current operations. In this paper we discuss benefits and shortcomings in some of the currently implemented compliance schemes and present a method for measuring the degree of compliance that each business process may achieve.

[1]  Munindar P. Singh,et al.  Governance of Cross-Organizational Service Agreements: A Policy-Based Approach , 2007, IEEE International Conference on Services Computing (SCC 2007).

[2]  G. Donleavy,et al.  The Law of Requisite Variety applied to corporate governance issues , 2005, Proceedings of ICSSSM '05. 2005 International Conference on Services Systems and Services Management, 2005..

[3]  Aditya K. Ghose,et al.  Auditing Business Process Compliance , 2007, ICSOC.

[4]  Lewis B. Sheiner,et al.  Improving Data Reliability Using a Non-Compliance Detection Method versus Using Pharmacokinetic Criteria , 2007, Journal of Pharmacokinetics and Pharmacodynamics.

[5]  Claudio Carpineto,et al.  GALOIS: An Order-Theoretic Approach to Conceptual Clustering , 1993, ICML.

[6]  Stefano Bistarelli Semirings for Soft Constraint Solving and Programming , 2004, Lecture Notes in Computer Science.

[7]  Shazia Wasim Sadiq,et al.  Detecting Regulatory Compliance for Business Process Models through Semantic Annotations , 2008, Business Process Management Workshops.

[8]  Emilio Tuosto,et al.  SHReQ: coordinating application level QoS , 2005, Third IEEE International Conference on Software Engineering and Formal Methods (SEFM'05).

[9]  Rachel M. Hayes,et al.  The Sarbanes-Oxley Act and Firms' Going-Private Decisions , 2004 .

[10]  A. P. Carrillo Newcomb Hohfeld, Wesley: Fundamental Legal Conceptions as Applied in Judicial Reasoning , 1965 .

[11]  John L. Stancil,et al.  Balanced Scorecard Diagnostics -- Maintaining Maximum Performance , 2006 .

[12]  Terence Sheppey,et al.  Sarbanes-Oxley: Building Working Strategies for Compliance , 2006 .

[13]  Sandra Spelman Berns,et al.  Company law and governance : an Australian perspective , 1998 .

[14]  Marianne Huchard,et al.  Relational concept discovery in structured datasets , 2007, Annals of Mathematics and Artificial Intelligence.

[15]  David Ruiz,et al.  An Hybrid, QoS-Aware Discovery of Semantic Web Services Using Constraint Programming , 2007, ICSOC.

[16]  Shazia Wasim Sadiq,et al.  Compliance checking between business processes and business contracts , 2006, 2006 10th IEEE International Enterprise Distributed Object Computing Conference (EDOC'06).

[17]  Aditya K. Ghose,et al.  Business Process Integration: Method and Analysis , 2009, APCCM.

[18]  Guido Governatori,et al.  A Formal Analysis of a Business Contract Language , 2006, Int. J. Cooperative Inf. Syst..

[19]  Wil M. P. van der Aalst,et al.  Conformance Testing: Measuring the Fit and Appropriateness of Event Logs and Process Models , 2005, Business Process Management Workshops.

[20]  J.S. Bayne,et al.  A Theory of Enterprise Command and Control , 2006, MILCOM 2006 - 2006 IEEE Military Communications conference.

[21]  Wil M. P. van der Aalst,et al.  Conformance checking of service behavior , 2008, TOIT.

[22]  Yuming Jiang,et al.  A basic stochastic network calculus , 2006, SIGCOMM.

[23]  Shazia Wasim Sadiq,et al.  Compliance Aware Business Process Design , 2007, Business Process Management Workshops.