@inproceedings{c2609bd5777a4bbb9ad846f5a7683992,
title = "Value-based argumentation for justifying compliance",
abstract = "Compliance is often achieved {\textquoteleft}by design{\textquoteright} through a coherent system of controls consisting of information systems and procedures . This system-based control requires a new approach to auditing in which companies must demonstrate to the regulator that they are {\textquoteleft}in control{\textquoteright}. They must determine the relevance of a regulation for their business, justify which set of control measures they have taken to comply with it, and demonstrate that the control measures are operationally effective. In this paper we show how value-based argumentation theory can be applied to the compliance domain. Corporate values motivate the selection of control measures (actions) which aim to fulfill control objectives, i.e. adopted norms (goals). In particular, we show how to formalize the dialogue in which companies justify their compliance decisions to regulators using value-based argumentation. The approach is illustrated by a case study of the safety and security measures adopted in the context of EU customs regulation.",
keywords = "regulatory compliance, internal control, risk management",
author = "B. Burgemeestre and J Hulstijn and Y Tan",
year = "2010",
doi = "10.1007/978-3-642-14183-6_16",
language = "English",
isbn = "9783642141829",
series = "Lecture Notes in Computer Science",
publisher = "Springer Verlag",
pages = "214--228",
editor = "G. Governatori and G. Sartor",
booktitle = "Proceedings of the International Conference in Deontic Logic in Computer Science (DEON 2010)",
address = "Germany",
note = "10th International Conference on Deontic Logic in Computer Science , DEON 2010 ; Conference date: 07-07-2010 Through 09-07-2010",
}