A Legal Perspective on Business: Modeling the Impact of Law

Modern goal-oriented requirements engineering frameworks use modeling as a means of better understanding a domain, leading to an overall improvement in the quality of the requirements. Regulations and laws impose additional context and constraints on software goals and can limit the satisfaction of stakeholder needs. Organizations and software developers need modeling tools that can properly address the potential deep impact legal issues can have on the effectiveness of business strategies. In this paper, we perform a preliminary study into the development of a modeling framework able to support the analysis of legal prescriptions alongside business strategies. We demonstrate, via an example drawn from a case study of the Health Insurance Portability and Accountability Act (HIPAA), how models of this law can be built with the GRL modeling language and how they can be evaluated as part of the business goal models.

[1]  Daniel Amyot,et al.  A Requirements Management Framework for Privacy Compliance , 2007, WER.

[2]  Paolo Giorgini,et al.  BALANCED GOALCARDS Combining Goal Analysis and Balanced , 2008 .

[3]  Stefano Spaccapietra,et al.  Conceptual Modeling — ER 2002 , 2002, Lecture Notes in Computer Science.

[4]  Daniel Amyot,et al.  Towards a Framework for Tracking Legal Compliance in Healthcare , 2007, CAiSE.

[5]  Stephen Fickas,et al.  Goal-Directed Requirements Acquisition , 1993, Sci. Comput. Program..

[6]  Paolo Giorgini,et al.  Balanced Goalcards - Combining Goal Analysis and Balanced Scorecards , 2008, ENASE.

[7]  John Mylopoulos,et al.  Reasoning with Goal Models , 2002, ER.

[8]  Marco Pistore,et al.  Specifying and analyzing early requirements: some experimental results , 2003, Proceedings. 11th IEEE International Requirements Engineering Conference, 2003..

[9]  Annie I. Antón,et al.  Towards Regulatory Compliance: Extracting Rights and Obligations to Align Requirements with Regulations , 2006, 14th IEEE International Requirements Engineering Conference (RE'06).

[10]  Radboud Winkels,et al.  Legal Ontologies in Knowledge Engineering and Information Management , 2004, Artificial Intelligence and Law.

[11]  Colette Rolland,et al.  REASONING WITH GOALS TO ENGINEER REQUIREMENTS , 2004 .

[12]  John Mylopoulos,et al.  Requirements Engineering Meets Trust Management: Model, Methodology, and Reasoning , 2004, iTrust.

[13]  John Mylopoulos,et al.  Requirements engineering for trust management: model, methodology, and reasoning , 2006, International Journal of Information Security.

[14]  Robert Darimont,et al.  Goal-oriented Analysis of Regulations , 2006, ReMo2V.

[15]  Anna Perini,et al.  Exploring the Effectiveness of Normative i* Modelling: Results from a Case Study on Food Chain Traceability , 2008, CAiSE.

[16]  Robert Darimont,et al.  Quality Starts with the Modelling of Goal-Oriented Requirements , 2003 .

[17]  John Mylopoulos,et al.  Organizational Patterns for Early Requirements Analysis , 2003, CAiSE.