Towards Visually Monitoring Multiple Perspectives of Business Process Compliance

A challenge for any enterprise is to ensure conformance of its business processes with imposed compliance rules. The latter may constrain multiple perspectives of a business process, including control flow, data, time, resources, and interactions with business partners. However, business process compliance cannot completely be decided at design time, but needs to be monitored during run time as well. This paper introduces a comprehensive framework for visually monitoring business process compliance. As opposed to existing approaches, the framework supports the visual monitoring of all relevant process perspectives based on the extended Compliance Rule Graph eCRG language. Furthermore, it not only allows detecting compliance violations, but visually highlights their causes as well. Finally, the framework assists users in monitoring business process compliance and ensuring a compliant continuation of their running business processes.

[1]  Mathias Weske,et al.  Event-Based Monitoring of Process Execution Violations , 2011, BPM.

[2]  Paola Mello,et al.  Fuzzy Conformance Checking of Observed Behaviour with Expectations , 2011, AI*IA.

[3]  Hannes Beck Automatisierte Überwachung von Business Process Compliance Regeln mit Daten-, Zeit-, Ressourcen- und Interaktions-Aspekten , 2014 .

[4]  Frederick Y. Wu,et al.  Business Artifact-Centric Modeling for Real-Time Performance Monitoring , 2011, BPM.

[5]  Guido Governatori,et al.  The Journey to Business Process Compliance , 2009, Handbook of Research on Business Process Modeling.

[6]  Raghava Rao Mukkamala,et al.  Nested Dynamic Condition Response Graphs , 2011, FSEN.

[7]  Stefanie Rinderle-Ma,et al.  On Enabling Compliance of Cross-Organizational Business Processes , 2013, BPM.

[8]  Marco Montali,et al.  Monitoring Business Constraints with Linear Temporal Logic: An Approach Based on Colored Automata , 2011, BPM.

[9]  Pnina Soffer,et al.  A process mining-based analysis of business process work-arounds , 2014, Software & Systems Modeling.

[10]  Antonio Ruiz Cortés,et al.  Hints on How to Face Business Process Compliance , 2010 .

[11]  Manfred Reichert,et al.  Modeling the Resource Perspective of Business Process Compliance Rules with the Extended Compliance Rule Graph , 2014, BMMDS/EMMSAD.

[12]  Akhil Kumar,et al.  Conceptual model for online auditing , 2011, Decis. Support Syst..

[13]  Peter Dadam,et al.  Monitoring Business Process Compliance Using Compliance Rule Graphs , 2011, OTM Conferences.

[14]  Shazia Wasim Sadiq,et al.  Modeling Control Objectives for Business Process Compliance , 2007, BPM.

[15]  Peter Dadam,et al.  On Enabling Data-Aware Compliance Checking of Business Process Models , 2010, ER.

[16]  Stefanie Rinderle-Ma,et al.  Towards Compliance of Cross-Organizational Processes and Their Changes - Research Challenges and State of Research , 2012, Business Process Management Workshops.

[17]  Akhil Kumar,et al.  Visual Modeling of Business Process Compliance Rules with the Support of Multiple Perspectives , 2013, ER.

[18]  Marco Montali,et al.  A Framework for the Systematic Comparison and Evaluation of Compliance Monitoring Approaches , 2013, 2013 17th IEEE International Enterprise Distributed Object Computing Conference.

[19]  Marco Montali,et al.  An Operational Decision Support Framework for Monitoring Business Constraints , 2012, FASE.

[20]  Paola Mello,et al.  Monitoring business constraints with the event calculus , 2013, ACM Trans. Intell. Syst. Technol..

[21]  Perdita Stevens,et al.  Modelling Recursive Calls with UML State Diagrams , 2003, FASE.

[22]  Miklos A. Vasarhelyi,et al.  Putting Continuous Auditing Theory into Practice: Lessons from Two Pilot Implementations , 2008, J. Inf. Syst..

[23]  Manfred Reichert,et al.  Ensuring business process compliance along the process life cycle , 2012 .

[24]  Dirk Fahland,et al.  Where Did I Misbehave? Diagnostic Information in Compliance Checking , 2012, BPM.

[25]  Jörg Becker,et al.  Generalizability and Applicability of Model-Based Business Process Compliance-Checking Approaches — A State-of-the-Art Analysis and Research Roadmap , 2012 .

[26]  Manfred Reichert,et al.  An operational semantics for the extended compliance rule graph language , 2014 .

[27]  Eduardo Alves Portela Santos,et al.  Modeling Business Rules for Supervisory Control of Process-Aware Information Systems , 2011, Business Process Management Workshops.

[28]  Manfred Reichert,et al.  Change and Compliance in Collaborative Processes , 2015, 2015 IEEE International Conference on Services Computing.

[29]  Vinay Kulkarni,et al.  Toward Better Mapping between Regulations and Operations of Enterprises Using Vocabularies and Semantic Similarity , 2015, Complex Syst. Informatics Model. Q..

[30]  Mark Strembeck,et al.  Conformance Checking of RBAC Policies in Process-Aware Information Systems , 2011, Business Process Management Workshops.

[31]  Wil M. P. van der Aalst,et al.  DECLARE: Full Support for Loosely-Structured Processes , 2007, 11th IEEE International Enterprise Distributed Object Computing Conference (EDOC 2007).

[32]  Mike P. Papazoglou,et al.  Capturing Compliance Requirements: A Pattern-Based Approach , 2012, IEEE Software.

[33]  Mathias Weske,et al.  Specification, Verification and Explanation of Violation for Data Aware Compliance Rules , 2009, ICSOC/ServiceWave.

[34]  Nenad Stojanovic,et al.  Pattern-Based Design and Validation of Business Process Compliance , 2007, OTM Conferences.

[35]  R. Accorsi An Approach to Data-driven Detective Internal Controls for Process-aware Information Systems , 2012 .

[36]  Peter Dadam,et al.  Integration and verification of semantic constraints in adaptive process management systems , 2008, Data Knowl. Eng..

[37]  Vinay Kulkarni,et al.  Toward Better Mapping between Regulations and Operational Details of Enterprises Using Vocabularies and Semantic Similarity , 2015, CAiSE Forum.

[38]  Rüdiger Pryss,et al.  Ensuring compliance of distributed and collaborative workflows , 2013, 9th IEEE International Conference on Collaborative Computing: Networking, Applications and Worksharing.

[39]  Stefanie Rinderle-Ma,et al.  On the Formal Semantics of the Extended Compliance Rule Graph , 2013 .