Policy-enabled goal-oriented requirements engineering for semantic Business Process Management

Decreus, Ken; Kharbili, Marwane El; Poels, Geert; Pulvermueller, Elke

doi:10.1002/int.20431

Cited by 11 publications

(5 citation statements)

References 40 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In order to get initial feedback on the use and perceived value of our method, we decided to conduct a number of small-scale pilot studies in a specific context (Policy Modelling), in order to evaluate and refine our solution before considering largerscale and more general case study research. The main finding [18] of our pilot studies was the need for a thorough preparation of the participants in understanding our definitions, tools and method steps. For instance, a correct understanding among the participants should be reached about what is a mission, strategy, tactic, business process, or task, as participants could have different interpretations.…”

Section: Discussionmentioning

confidence: 99%

A Goal-Oriented Requirements Engineering Method for Business Processes

Decreus

Poels

2011

Progress in Pattern Recognition, Image Analysis, Computer Vision, and Applications

Self Cite

View full text Add to dashboard Cite

Abstract. The field of requirements engineering (RE) for business processes has grown during the last several years. As business processes are needed to fulfil organizational goals, the information captured in goal models provides a basis for designing business processes. Although research has started to explore how to transform goal models into business process models, current transformation methods need further research. This paper proposes a toolsupported method to model goals as part of the business requirements for business processes and to automatically generate business process design skeletons that respond to these business requirements.

show abstract

Section: Discussionmentioning

confidence: 99%

A Goal-Oriented Requirements Engineering Method for Business Processes

Decreus

Poels

2011

Progress in Pattern Recognition, Image Analysis, Computer Vision, and Applications

Self Cite

View full text Add to dashboard Cite

show abstract

“…The work of [57] extends the Formal Tropos requirements engineering approach to support security policies. The policy-extended Formal Tropos models consist of custom textual policies, manually introduced by system designers, expressed in the grammar proposed by this work.…”

Section: From Goal To Process Modelsmentioning

confidence: 99%

“…2.3, a number of criteria have been introduced. The mapping of process activities to elements of the organisational level requirements model (i.e., goals) is considered a valuable practice as it augments the traceability of changes between system models of different abstraction levels [57]. Additionally, since process models are not equipped to adequately capture the rationale behind design choices, mapping their components to requirement models helps provide justification.…”

Section: Modellingmentioning

confidence: 99%

Implementation and Design of Secure Business Process Models Based on Organisational Goals

Patrick

2022

Preprint

View full text Add to dashboard Cite

Business processes are essential instruments used for the coordination of organisational activities in order to produce value in the form of products and services. Information security is an important non-functional characteristic of business processes due to the involvement of sensitive data exchanged between their participants. Therefore, potential security shortfalls can severely impact organisational reputation, customer trust and cause compliance issues. Nevertheless, despite its importance, security is often considered as a technical concern and treated as an afterthought during the design of information systems and the business processes which they support. The consideration of security during the early design stages of information systems is highly beneficial. Goal-oriented security requirements engineering ap- proaches can contribute to the early elicitation of system requirements at a high level of abstraction and capture the organisational context and rationale behind design choices. Aligning such requirements with process activities at the operational level augments the traceability between system models of different abstraction levels and leads to more robust and context-aware operationalisations of security. Therefore, there needs to be a well-defined and verifiable interconnection between a system’s security requirements and its business process models. This work introduces a framework for the design of secure business process models. It uses security-oriented goal models as its starting point to capture a socio-technical view of the system to-be and its security requirements during its early design stages. Concept mappings and model transformation rules are also introduced as a structured way of extracting business process skeletons from such goal models, in order to facilitate the alignment between the two different levels of abstraction. The extracted business process skeletons, are refined to complete business process models through the use of a set of security patterns, which standardise proven solutions to recurring security problems. Finally, the framework also offers security verification capabilities of the produced process models through the introduction of security-related attributes and model checking algorithms. Evaluation of this work is performed: (i) through individual evaluation of its components via their application in real-life systems, (ii) a workshop-based modelling exercise where participants used and evaluated parts of the framework and (iii) a case study from the public administration domain where the overall framework was applied in cooperation with stakeholders of the studied system. The evaluation indicated that the developed framework provides a structured approach which supports stakeholders in designing and evaluating secure business process models.

show abstract

“…An approach to semantic business process compliance management has been proposed by El Kharbili and colleagues [5]. We share the idea of making use of the advantages of semantic technologies for compliance management.…”

Section: Related Workmentioning

confidence: 99%

“…First of all, we are interested in regulatory compliance, and not in business process management in general, which means that we need to exploit the powerful semantics of the LegalRuleML framework to convey the semantics of the rules extracted from the legal documents. We do not need to design a business policy and business rule ontology, as in [5]. Second, the proposed architecture considers also the dynamics of the legal documents to be checked the compliance with, by proposing alternative modeling solutions.…”

Section: Related Workmentioning

confidence: 99%

Semantic Business Process Regulatory Compliance Checking Using LegalRuleML

Governatori

Hashmi

Lam

et al. 2016

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Abstract. Legal documents are the source of norms, guidelines, and rules that often feed into different applications. In this perspective, to foster the need of development and deployment of different applications, it is important to have a sufficiently expressive conceptual framework such that various heterogeneous aspects of norms can be modeled and reasoned with. In this paper, we investigate how to exploit Semantic Web technologies and languages, such as LegalRuleML, to model a legal document. We show how the semantic annotations can be used to empower a business process (regulatory) compliance system and discuss the challenges of adapting a semantic approach to legal domain.

show abstract

Policy-enabled goal-oriented requirements engineering for semantic Business Process Management

Cited by 11 publications

References 40 publications

A Goal-Oriented Requirements Engineering Method for Business Processes

A Goal-Oriented Requirements Engineering Method for Business Processes

Implementation and Design of Secure Business Process Models Based on Organisational Goals

Semantic Business Process Regulatory Compliance Checking Using LegalRuleML

Contact Info

Product

Resources

About