论文信息 - Issues with the communication and integrity of audit reports when financial reporting shifts to an information-centric paradigm

Issues with the communication and integrity of audit reports when financial reporting shifts to an information-centric paradigm

A core application of XBRL is to facilitate the flow of tagged financial statements and annual reports, from companies and other entities directly to the databases, web sites, and computers of regulators, stakeholders and other information consumers. Increasingly, XBRL provides the technological foundation for the communication of financial information where there is independent assurance. This XBRL-based assurance may be on the financial statements (i.e., an electronically consumable form of today's standard PDF or HTML audit report) or focus on the quality of the XBRL exhibit (i.e., the instance document). Regardless of the type of XBRL assurance report, maintenance of the security and integrity of the instance document is paramount. This conceptual paper identifies and discusses the communication, security challenges and relevant research issues when there is independent assurance on financial statements formatted in XBRL. Successful electronic communication of assurance to information consumers should clearly distinguish the responsibilities of management (i.e., the financial statements) and the auditor (i.e., the audit report). It is important to have an integrated approach where the assurance report, financial statements and other reports in which facts in the financial statements are incorporated are inextricably tied at the level of automated data consumption. Further, as much as possible, human interaction should be accommodated. The paper sets out a range of alternatives for maintenance of security on the assurance report.

Roger Debreceny | Stephanie M. Farewell | Eric E. Cohen | Saeed Roohani

[1] Carsten Felden,et al. XBRL for Interactive Data: Engineering the Information Value Chain , 2009 .

[2] Burton S. Kaliski,et al. PKCS #7: Cryptographic Message Syntax Version 1.5 , 1998, RFC.

[3] J. Efrim Boritz,et al. Assurance Reporting for XML-Based Information Services: XARL (Extensible Assurance Reporting Language) , 2004 .

[4] Robert Stutely. The Standard Generalized Markup Language , 1987 .

[5] Mark Bartel,et al. Xml-Signature Syntax and Processing , 2000 .

[6] Roger Debreceny,et al. Financial reporting on the Internet and the external audit , 1999 .

[7] J. Efrim Boritz,et al. Assurance on XBRL‐Related Documents: The Case of United Technologies Corporation , 2009, J. Inf. Syst..

[8] D. Eastlake,et al. XML Encryption Syntax and Processing , 2003 .

[9] Edward Curry,et al. XBRL and open data for global financial ecosystems: A linked data approach , 2012, Int. J. Account. Inf. Syst..

[10] R. Housley. Cryptographic Message Syntax , 1999, RFC.

[11] Edgar R. Weippl,et al. XML security - A comparative literature review , 2008, J. Syst. Softw..

[12] Andrea Seaton Kelton,et al. The Effects of Information Presentation Format on Judgment and Decision Making: A Review of the Information Systems Research , 2010, J. Inf. Syst..

[13] J. Efrim Boritz,et al. Security in Xml-Based Financial Reporting Services on the Internet , 2005 .