Measurement-oriented comparison of multiple regulations with GRL

In recent years, intentional models have been adapted to capture and analyze compliance needs and requirements. Furthermore, intentional models have been used to identify the impact of regulations on organizational goals by helping to elicit different alternatives about the business operations supported by compliant business processes and services. In other works, intentional models based on measurement-frameworks have provided well-structured models of regulations and compliance alternatives. This paper integrates Goal-Oriented Requirements Language (GRL)-based methodologies with measurement-based methodologies to improve support for comparing regulations sharing the same concerns via the (measurement) objectivity.

[1]  André Rifaut Goal-Driven Requirements Engineering for Supporting the ISO 15504 Assessment Process , 2005, EuroSPI.

[2]  Alexei Lapouchnian,et al.  Goal-Oriented Requirements Engineering: An Overview of the Current Research , 2005 .

[3]  Anna Perini,et al.  Towards interoperability of i* models using iStarML , 2011, Comput. Stand. Interfaces.

[4]  Martin S. Feather,et al.  Requirements and Specification Exemplars , 1997, Automated Software Engineering.

[5]  Mark C. Paulk,et al.  Capability Maturity Model Sm for Software, Version 1.1 Capability Maturity Model Sm for Software, Version 1.1 for the Commander (signature on File) Ii S Capability Maturity Model List of Figures List of Figures Iv S Capability Maturity Model , 1993 .

[6]  Annie I. Antón,et al.  Towards Regulatory Compliance: Extracting Rights and Obligations to Align Requirements with Regulations , 2006, 14th IEEE International Requirements Engineering Conference (RE'06).

[7]  Nicola Zannone,et al.  Towards the development of privacy-aware systems , 2009, Inf. Softw. Technol..

[8]  Terence P. Rout SPICE and the CMM : is the CMM compatible with ISO / IEC 15504 ? , 1998 .

[9]  Alberto Siena,et al.  Engineering Law-Compliant Requirements: the Nomos Framework , 2010 .

[10]  Daniel Amyot,et al.  Evaluating goal models within the goal‐oriented requirement language , 2010, Int. J. Intell. Syst..

[11]  John Mylopoulos,et al.  Detecting Conflicts of Interest , 2006, 14th IEEE International Requirements Engineering Conference (RE'06).

[12]  Mark C. Paulk,et al.  Analyzing the Conceptual Relationship Between ISO/IEC 15504 (Software Process Assessment) and the Capability Maturity Model for Software , 1999 .

[13]  L. Finkelstein Widely, strongly and weakly defined measurement , 2003 .

[14]  Eric Yu Strategic modelling for enterprise integration , 1999 .

[15]  Nicola Zannone,et al.  Purpose Control: Did You Process the Data for the Intended Purpose? , 2011, Secure Data Management.

[16]  Daniel Amyot,et al.  Towards a Framework for Tracking Legal Compliance in Healthcare , 2007, CAiSE.

[17]  Daniel Amyot,et al.  A systematic review of goal-oriented requirements management frameworks for business process compliance , 2011, 2011 Fourth International Workshop on Requirements Engineering and Law.

[18]  Khaled El Emam,et al.  SPICE in retrospect: Developing a standard for process assessment , 2007, J. Syst. Softw..

[19]  Eric Dubois,et al.  Using Goal-Oriented Requirements Engineering for Improving the Quality of ISO/IEC 15504 based Compliance Assessment Frameworks , 2008, 2008 16th IEEE International Requirements Engineering Conference.

[20]  Xavier Franch,et al.  Model Interchange and Tool Interoperability in the i* Framework: A Proof of Concept , 2011, WER.

[21]  Nicolette Schönfeldt,et al.  Operational risk management in financial institutions , 2014 .

[22]  Giovanni Sartor,et al.  Fundamental legal concepts: A formal and teleological characterisation* , 2006, Artificial Intelligence and Law.

[23]  André Rifaut Intentional Models based on Measurement Theory , 2011, iStar.

[24]  Axel van Lamsweerde,et al.  Reasoning about partial goal satisfaction for requirements and design engineering , 2004, SIGSOFT '04/FSE-12.

[25]  Daniel Amyot,et al.  Compliance Analysis Based on a Goal-oriented Requirement Language Evaluation Methodology , 2009, 2009 17th IEEE International Requirements Engineering Conference.

[26]  John Mylopoulos,et al.  Designing Law-Compliant Software Requirements , 2009, ER.

[27]  Eric Yu,et al.  Evaluating goal models within the goal-oriented requirement language , 2010 .

[28]  Paul M. Schwartz,et al.  Privacy, Information, and Technology , 2006 .

[29]  P. May Regulatory regimes and accountability , 2007 .

[30]  Daniel Amyot,et al.  Integrating business strategies with requirement models of legal compliance , 2010, Int. J. Electron. Bus..

[31]  André Rifaut Compliance management with measurement frameworks , 2011, 2011 Fourth International Workshop on Requirements Engineering and Law.

[32]  Daniel Amyot,et al.  Modeling and Analysis of URN Goals and Scenarios with jUCMNav , 2009, 2009 17th IEEE International Requirements Engineering Conference.