Compliance regulations require enterprises to review their SOA applications to ensure that they satisfy the set of relevant compliance requirements. Despite an increasing number of methods and tools, organizations have a pressing need for a comprehensive compliance framework to help them ensure that their business processes comply with requirements set forth by regulations, laws, and standards. In this paper we explain how to cope with business process compliance requirements and present a framework to capture and manage compliance requirements. We introduce a declarative Compliance Request Language for specifying compliance requirements. We also examine a set of compliance patterns to support the definition of frequently recurring compliance requirements in association with business processes. This approach enables the application of automated tools for compliance analysis and verification.
|Title of host publication||Proceedings of the 15th IEEE International Enterprise Distributed Object Computing Conference (EDOC 2011)|
|Place of Publication||Helsinki|
|Publisher||IEEE Computer Society|
|Publication status||Published - 2011|
Papazoglou, M. (2011). Making business processes compliant to standards and regulations. In Proceedings of the 15th IEEE International Enterprise Distributed Object Computing Conference (EDOC 2011) (pp. 3-13). IEEE Computer Society. https://doi.org/10.1109/edoc.2011.37