Skip to main content
SpringerLink
Log in

Effect of Using Automated Auditing Tools on Detecting Compliance Failures in Unmanaged Processes

  • Conference paper
Business Process Management (BPM 2009)

Part of the book series: Lecture Notes in Computer Science ((LNISA,volume 5701))

Included in the following conference series:

Abstract

The effect of using automated auditing tools to detect compliance failures in unmanaged business processes is investigated. In the absence of a process execution engine, compliance of an unmanaged business process is tracked by using an auditing tool developed based on business provenance technology or employing auditors. Since budget constraints limit employing auditors to evaluate all process instances, a methodology is devised to use both expert opinion on a limited set of process instances and the results produced by fallible automated audit machines on all process instances. An improvement factor is defined based on the average number of non-compliant process instances detected and it is shown that the improvement depends on the prevalence of non-compliance in the process as well as the sensitivity and the specificity of the audit machine.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Curbera, F., Doganata, Y., Martens, A., Mukhi, M., Slominski, A.: Business Provenance - A Technology to Increase Traceability of End-to-End Operations. In: OTM Conferences vol (1) , pp. 100–119 (2008)

    Google Scholar 

  2. Greengard, S.: Compliance Software’s Bonus Benefits. Business Finance Magazine (February 2004)

    Google Scholar 

  3. Gartner.: Simplifying Compliance: Best Practices and Technology, French Caldwell, (Business Process Management Summit (June 6, 2005)

    Google Scholar 

  4. Hagerty, J., Hackbush, J., Gaughan, D., Jacaobson, S.: The Governance, Risk Management, and Compliance Spending Report, 2008-2009, AMR Research Report, March 25 (2008)

    Google Scholar 

  5. Corfield, B.: Managing the cost of compliance, http://justin-taylor.net/webdocs/tip_of_the_iceberg.pdf

  6. Zur Muehlen, M., Ho, D.T.: Risk Management in the BPM Lifecycle. In: Bussler, C.J., Haller, A. (eds.) BPM 2005. LNCS, vol. 3812, pp. 454–466. Springer, Heidelberg (2006)

    Chapter  Google Scholar 

  7. Christopher, G., Müller, S., Pfitzmann, B.: From Regulatory Policies to Event Monitoring Rules: Towards Model-Driven Compliance Automation. IBM Research Report RZ 3662, IBM Zurich Research Laboratory (2006)

    Google Scholar 

  8. Lu, R., Sadiq, S., Governatori, G.: Compliance aware business process design. In: ter Hofstede, A.H.M., Benatallah, B., Paik, H.-Y. (eds.) BPM Workshops 2007. LNCS, vol. 4928, pp. 120–131. Springer, Heidelberg (2008)

    Chapter  Google Scholar 

  9. Milosevic, Z., Gibson, S., Linington, J.C., Kulkarni, S.: On Design and implementation of a contract monitoring facility. In: Benatallah, B. (ed.) First IEEE International Workshop on Electronic Contracts, pp. 62–70. IEEE Press, Los Alamitos (2004)

    Google Scholar 

  10. Governatori, G., Milosevic, Z.: A Formal Analysis of a Business Contract Language. International Journal of Cooperative Information Systems 15(4), 659–685 (2006)

    Article  Google Scholar 

  11. Governatori, G., Milosevic, Z., Sadiq, S.: Compliance checking between business processes and business contracts. In: Proceedings of the 10th IEEE Conference on Enterprise Distributed Object Computing (2006)

    Google Scholar 

  12. Ly, L.T., Rinderle, S., Dadam, P.: Integration and verification of semantic constraints in adaptive process management systems. Data and Knowledge Engineering 64(1), 3–23 (2008)

    Article  Google Scholar 

  13. Governatori, G.: Representing Business Contracts in RuleML. International Journal of Cooperative Information Systems 14(2–3), 181–216 (2005)

    Article  Google Scholar 

  14. Goedertier, S., Vanthienen, J.: Designing compliant business processes with obligations and permissions. In: Eder, J., Dustdar, S. (eds.) BPM Workshops 2006. LNCS, vol. 4103, pp. 5–14. Springer, Heidelberg (2006)

    Chapter  Google Scholar 

  15. Lee, J.K., Sohn, M.M.: The eXtensible Rule Markup Language. Communications of ACM 46(5), 59–64 (2003)

    Article  Google Scholar 

  16. Egizi, C.: High cost of compliance, http://www.cioupdate.com/career/article.php/3489431/The-High-Cost-of-Compliance.htm

  17. Joseph, L., Gyorkos, T.W., Coupal, L.: Bayesian estimation of disease prevalence and the parameters of diagnostic tests in the absence of a gold standard. Am. J. Epidemiol (1995)

    Google Scholar 

  18. Gelfand, A.E., Smith, A.F.M.: Sampling-based approaches to calculating marginal densities. Journal American Statistics Assoc. 85, 348–409 (1990)

    MathSciNet  MATH  Google Scholar 

  19. Gelfand, A.E., Hills, S.E., Racine-Poon, A., et al.: Illustration of Bayesian Inference in normal data using Gibbs sampling. Journal of American Statistics Assoc. 85, 972–985 (1990)

    Article  Google Scholar 

  20. Tanner, M.A.: Tools for statistical inference. Springer, New York (1991)

    Book  MATH  Google Scholar 

  21. Katsis, A.: Sample size determination of binomial data with the presence of misclassification. Metrika 63, 323–329 (2005)

    Article  MathSciNet  MATH  Google Scholar 

  22. Pooled Prevalence Calculator, http://www.ausvet.com.au/pprev/

  23. Geman, S., Geman, D.: Stochastic Relaxation, Gibbs Distributions, and the Bayesian Restoration of Images. IEEE Transactions on Pattern Analysis and Machine Intelligence 6, 721–741 (1984)

    Article  MATH  Google Scholar 

Download references

Author information

Authors and Affiliations

  1. IBM T J Watson Research Center, 19 Skyline Drive, Hawthorne, NY, 10532

    Yurdaer Doganata & Francisco Curbera

Authors
  1. Yurdaer Doganata
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Francisco Curbera
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Hewlett-Packard Laboratories, 1501 Page Mill Rd., 94304, Palo Alto, CA, USA

    Umeshwar Dayal

  2. Alps Adria University Klagenfurt, Universitätsstr. 65, 9020, Klagenfurt, Austria

    Johann Eder

  3. IBM Zurich Research Laboratory, Saeumerstr. 4, 8803, Rüschlikon, Switzerland

    Jana Koehler

  4. Eindhoven University of Technology, PO Box 513, 5600, Eindhoven, MB, The Netherlands

    Hajo A. Reijers

Rights and permissions

Reprints and permissions

Copyright information

© 2009 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Doganata, Y., Curbera, F. (2009). Effect of Using Automated Auditing Tools on Detecting Compliance Failures in Unmanaged Processes. In: Dayal, U., Eder, J., Koehler, J., Reijers, H.A. (eds) Business Process Management. BPM 2009. Lecture Notes in Computer Science, vol 5701. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-03848-8_21

Download citation

  • DOI: https://doi.org/10.1007/978-3-642-03848-8_21

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-642-03847-1

  • Online ISBN: 978-3-642-03848-8

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation