Process Mining and Security: Detecting Anomalous Process Executions and Checking Process Conformance

Aalst, Wil M. P. van der; Medeiros, Ana Karla Alves de

doi:10.1016/j.entcs.2004.10.013

Cited by 137 publications

(84 citation statements)

References 23 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…There are several lines of related work, among them the development of support for system audits, e. g., by integrating analysis techniques such as [2,4]. In particular, process mining approaches appear to be particularly interesting: combing process mining with our business process animation, i. e., the visualization of attack traces, allows for interactively investigation deviations of the actual process execution with the intended one.…”

Section: Discussionmentioning

confidence: 99%

Secure and Compliant Implementation of Business Process-Driven Systems

Brucker

Hang

2013

Business Process Management Workshops

View full text Add to dashboard Cite

Abstract. Today's businesses are inherently process-driven. Consequently, the use of business-process driven systems, usually implemented on top of service-oriented or cloud-based infrastructures, is increasing. At the same time, the demand on the security, privacy, and compliance of such systems is increasing as well. As a result, the costs-with respect to computational effort at runtime as well as financial costs-for operating business-process driven systems increase steadily. In this paper, we present a method for statically checking the security and conformance of the system implementation, e. g., on the source code level, to requirements specified on the business process level. As the compliance is statically guaranteed-already at design-time-this method reduces the number of run-time checks for ensuring the security and compliance and, thus, improves the runtime performances. Moreover, it reduces the costs of system audits, as there is no need for analyzing the generated log files for validating the compliance to the properties that are already statically guaranteed.

show abstract

Section: Discussionmentioning

confidence: 99%

Secure and Compliant Implementation of Business Process-Driven Systems

Brucker

Hang

2013

Business Process Management Workshops

View full text Add to dashboard Cite

show abstract

“…However, all event logs have one thing in common: they show occurrences of events at specific moments in time, where each event refers to a specific process and an instance thereof, i.e. a case (Van Der Aalst & De Medeiros, 2005).…”

Section: Process Miningmentioning

confidence: 99%

“…ProM framework (De Medeiros et al, 2005) is a pluggable environment for process mining. Since each system has its own format for output log files, ProM framework works with a generic XML formats like MXML and XES (Van Der Aalst & Van Der Aalst, 2011).…”

Section: Process Miningmentioning

confidence: 99%

“…ProM framework is a pluggable environment for process mining. This framework is flexible with respect to the input and output format, and is also open enough to allow for the easy reuse of code during the implementation of new process mining ideas (De Medeiros et al, 2005). This paper is mainly concerned with profilers that provide information about java program or JVM (HotSpotTM); these profilers mainly have three phases: collecting data, analyzing data and visualizing results.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Improving Analysis and Visualizing of JVM Profiling Logs Using Process Mining

Farag

Din²,

Ghali³

et al. 2016

CIS

View full text Add to dashboard Cite

Growing size and complexity of modern software applications increase the demand to make the information systems self-configuring, self-optimizing and with flexible architecture. Although managed languages have eliminated or minimized many low-level software errors there are many other sources of errors that persist. Java Virtual Machine (JVM), as managed language has many adaptive optimization techniques, which needs tools to analysis program behavior determines where the application spends most of its time. In this paper, new approached has been introduced to use process-mining techniques to represent the analysis and visualize phases of JVM profilers. They are flexible enough to cover so many perspectives in several ways. That can form a unified layer for analysis and visualize across profiling.

show abstract

“…In [11] the results are extended to include time aspects. The notion of conformance has also been discussed in the context of security [4], business alignment [2], and genetic mining [26].…”

Section: Related Workmentioning

confidence: 99%

Process Mining and Verification of Properties: An Approach Based on Temporal Logic

Aalst

Beer

Dongen

2005

Lecture Notes in Computer Science

215

114

View full text Add to dashboard Cite

Abstract. Information systems are facing conflicting requirements. On the one hand, systems need to be adaptive and self-managing to deal with rapidly changing circumstances. On the other hand, legislation such as the Sarbanes-Oxley Act, is putting increasing demands on monitoring activities and processes. As processes and systems become more flexible, both the need for, and the complexity of monitoring increases. Our earlier work on process mining has primarily focused on process discovery, i.e., automatically constructing models describing knowledge extracted from event logs. In this paper, we present another approach supported by our ProM framework and based on both a standard XML format and temporal logic. Given an event log and a property, our LTL Checker verifies whether the observed behavior matches the (un)expected/(un)desirable behavior.

show abstract

Process Mining and Security: Detecting Anomalous Process Executions and Checking Process Conformance

Cited by 137 publications

References 23 publications

Secure and Compliant Implementation of Business Process-Driven Systems

Secure and Compliant Implementation of Business Process-Driven Systems

Improving Analysis and Visualizing of JVM Profiling Logs Using Process Mining

Process Mining and Verification of Properties: An Approach Based on Temporal Logic

Contact Info

Product

Resources

About