Normative requirements for regulatory compliance: An abstract formal framework

View/ Open
File version
Accepted Manuscript (AM)
Author(s)
Hashmi, Mustafa
Governatori, Guido
Wynn, Moe Thandar
Griffith University Author(s)
Year published
2016
Metadata
Show full item recordAbstract
By definition, regulatory rules (in legal context called norms) intend to achieve specific behaviour from business processes, and might be relevant to the whole or part of a business process. They can impose conditions on different aspects of process models, e.g., control-flow, data and resources etc. Based on the rules sets, norms can be classified into various classes and sub-classes according to their effects. This paper presents an abstract framework consisting of a list of norms and a generic compliance checking approach on the idea of (possible) execution of processes. The proposed framework is independent of any ...
View more >By definition, regulatory rules (in legal context called norms) intend to achieve specific behaviour from business processes, and might be relevant to the whole or part of a business process. They can impose conditions on different aspects of process models, e.g., control-flow, data and resources etc. Based on the rules sets, norms can be classified into various classes and sub-classes according to their effects. This paper presents an abstract framework consisting of a list of norms and a generic compliance checking approach on the idea of (possible) execution of processes. The proposed framework is independent of any existing formalism, and provides a conceptually rich and exhaustive ontology and semantics of norms needed for business process compliance checking. Apart from the other uses, the proposed framework can be used to compare different compliance management frameworks (CMFs).
View less >
View more >By definition, regulatory rules (in legal context called norms) intend to achieve specific behaviour from business processes, and might be relevant to the whole or part of a business process. They can impose conditions on different aspects of process models, e.g., control-flow, data and resources etc. Based on the rules sets, norms can be classified into various classes and sub-classes according to their effects. This paper presents an abstract framework consisting of a list of norms and a generic compliance checking approach on the idea of (possible) execution of processes. The proposed framework is independent of any existing formalism, and provides a conceptually rich and exhaustive ontology and semantics of norms needed for business process compliance checking. Apart from the other uses, the proposed framework can be used to compare different compliance management frameworks (CMFs).
View less >
Journal Title
Information Systems Frontiers
Volume
18
Issue
3
Copyright Statement
© Springer Science+Business Media New York 2015. This is an electronic version of an article published in Information Systems Frontiers, 18 (3), pp. 429-455, 2016. Information Systems Frontiers is available online at: http://link.springer.com/ with the open URL of your article.
Subject
Information systems
Science & Technology
Computer Science, Theory & Methods