Risk-based Analysis of Business Process Executions

被引:2
|
作者
Alizadeh, Mandi [1 ]
Zannone, Nicola [1 ]
机构
[1] Eindhoven Univ Technol, NL-5600 MB Eindhoven, Netherlands
来源
CODASPY'16: PROCEEDINGS OF THE SIXTH ACM CONFERENCE ON DATA AND APPLICATION SECURITY AND PRIVACY | 2016年
关键词
Auditing; Risk Assessment; Alignments; Conformance Checking;
D O I
10.1145/2857705.2857742
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
Organizations need to monitor their business processes to ensure that what actually happens in the system is compliant with the prescribed behavior. Deviations from the prescribed behavior may correspond to violations of security requirements and expose organizations to severe risks. Thus, it is crucial for organizations to detect and address nonconforming behavior as early as possible. In this paper, we present an auditing framework that facilitates the analysis of process executions by detecting nonconforming behaviors and ranking them with respect to their criticality. Our framework employs conformance checking techniques to detect possible explanations of nonconformity. Based on such explanations, the framework assesses the criticality of nonconforming process executions based on historical logging data and context information.
引用
收藏
页码:130 / 132
页数:3
相关论文
共 50 条
  • [21] Risk and Argument: A Risk-Based Argumentation Method for Practical Security
    Franqueira, Virginia N. L.
    Thein Than Tun
    Yu, Yijun
    Wieringa, Roel
    Nuseibeh, Bashar
    2011 19TH IEEE INTERNATIONAL REQUIREMENTS ENGINEERING CONFERENCE (RE), 2011, : 239 - 248
  • [22] Risk-based characterisation of lead in urban soils
    Hooker, PJ
    Nathanail, CP
    CHEMICAL GEOLOGY, 2006, 226 (3-4) : 340 - 351
  • [23] Bioanalytical method validation: a risk-based approach?
    James, CA
    Breda, M
    Frigerio, E
    JOURNAL OF PHARMACEUTICAL AND BIOMEDICAL ANALYSIS, 2004, 35 (04) : 887 - 893
  • [24] Risk-based efficiency assessment of information systems
    Isaev, Eugeni A.
    Pervukhin, Dmitry, V
    Rytikov, Georgy O.
    Filyugina, Ekaterina K.
    Hayrapetyan, Diana A.
    BIZNES INFORMATIKA-BUSINESS INFORMATICS, 2021, 15 (01): : 19 - 29
  • [25] Using CAPEC for Risk-Based Security Testing
    Seehusen, Fredrik
    RISK ASSESSMENT AND RISK-DRIVEN TESTING, 2015, 9488 : 77 - 92
  • [26] Science, science policy, and risk-based management
    Midgley, LP
    ENVIRONMENTAL TOXICOLOGY AND RISK ASSESSMENT: MODELING AND RISK ASSESSMENT (SIXTH VOLUME), 1997, 131 : 286 - 300
  • [27] Risk-based security: From Theory to Practice
    Thomopoulos, Stelios C. A.
    SIGNAL PROCESSING, SENSOR/INFORMATION FUSION, AND TARGET RECOGNITION XXX, 2021, 11756
  • [28] Critical success factors of risk-based inspection
    Mohamed, Ramuna
    Hassan, Che Rosmani Che
    Hamid, Mahar Diana
    PROCESS SAFETY PROGRESS, 2019, 38 (01) : 4 - 20
  • [29] Immunogenicity for antisense oligonucleotides: a risk-based assessment
    Stebbins, Christopher C.
    Petrillo, Marco
    Stevenson, Lauren F.
    BIOANALYSIS, 2019, 11 (21) : 1913 - 1916
  • [30] Risk-based inspection and assessment at gas plant
    不详
    ANTI-CORROSION METHODS AND MATERIALS, 1999, 46 (06) : 459 - 460
12345