IDEAS home Printed from https://ideas.repec.org/a/spr/infosf/v18y2016i3d10.1007_s10796-015-9558-1.html
   My bibliography  Save this article

Normative requirements for regulatory compliance: An abstract formal framework

Author

Listed:
  • Mustafa Hashmi

    (NICTA Queensland)

  • Guido Governatori

    (NICTA Queensland)

  • Moe Thandar Wynn

    (Queensland University of Technology (QUT))

Abstract

By definition, regulatory rules (in legal context called norms) intend to achieve specific behaviour from business processes, and might be relevant to the whole or part of a business process. They can impose conditions on different aspects of process models, e.g., control-flow, data and resources etc. Based on the rules sets, norms can be classified into various classes and sub-classes according to their effects. This paper presents an abstract framework consisting of a list of norms and a generic compliance checking approach on the idea of (possible) execution of processes. The proposed framework is independent of any existing formalism, and provides a conceptually rich and exhaustive ontology and semantics of norms needed for business process compliance checking. Apart from the other uses, the proposed framework can be used to compare different compliance management frameworks (CMFs).

Suggested Citation

  • Mustafa Hashmi & Guido Governatori & Moe Thandar Wynn, 2016. "Normative requirements for regulatory compliance: An abstract formal framework," Information Systems Frontiers, Springer, vol. 18(3), pages 429-455, June.
  • Handle: RePEc:spr:infosf:v:18:y:2016:i:3:d:10.1007_s10796-015-9558-1
    DOI: 10.1007/s10796-015-9558-1
    as

    Download full text from publisher

    File URL: http://link.springer.com/10.1007/s10796-015-9558-1
    File Function: Abstract
    Download Restriction: Access to the full text of the articles in this series is restricted.

    File URL: https://libkey.io/10.1007/s10796-015-9558-1?utm_source=ideas
    LibKey link: if access is restricted and if your library uses this service, LibKey will redirect you to where you can use your library subscription to access this item
    ---><---

    As the access to this document is restricted, you may want to search for a different version of it.

    References listed on IDEAS

    as
    1. Linh Thao Ly & Stefanie Rinderle-Ma & Kevin Göser & Peter Dadam, 2012. "On enabling integrated process compliance with semantic constraints in process management systems," Information Systems Frontiers, Springer, vol. 14(2), pages 195-219, April.
    2. El Gammal, A. & Turetken, O. & van den Heuvel, W.J.A.M. & Papazoglou, M., 2010. "Root-cause analysis of design-time compliance violations on the basis of property patterns," Other publications TiSEM c3c81885-1432-416e-ae7f-7, Tilburg University, School of Economics and Management.
    3. Rafael Accorsi & Lutz Lowis & Yoshinori Sato, 2011. "Automated Certification for Compliant Cloud-based Business Processes," Business & Information Systems Engineering: The International Journal of WIRTSCHAFTSINFORMATIK, Springer;Gesellschaft für Informatik e.V. (GI), vol. 3(3), pages 145-154, June.
    4. Jörg Hoffmann & Ingo Weber & Guido Governatori, 2012. "On compliance checking for clausal constraints in annotated process models," Information Systems Frontiers, Springer, vol. 14(2), pages 155-177, April.
    Full references (including those not matched with items on IDEAS)

    Citations

    Citations are extracted by the CitEc Project, subscribe to its RSS feed for this item.
    as


    Cited by:

    1. Pedro Antunes & Jose A. Pino & Mary Tate & Alistair Barros, 2020. "Eliciting Process Knowledge Through Process Stories," Information Systems Frontiers, Springer, vol. 22(5), pages 1179-1201, October.
    2. Haluk Demirkan & James C. Spohrer, 2016. "Emerging service orientations and transformations (SOT)," Information Systems Frontiers, Springer, vol. 18(3), pages 407-411, June.
    3. Pedro Antunes & Jose A. Pino & Mary Tate & Alistair Barros, 0. "Eliciting Process Knowledge Through Process Stories," Information Systems Frontiers, Springer, vol. 0, pages 1-23.
    4. Robert Muthuri & Sara Capecchi & Emilio Sulis & Ilaria Angela Amantea & Guido Boella, 2022. "Integrating value modeling and legal risk management: an IT case study," Information Systems and e-Business Management, Springer, vol. 20(1), pages 27-55, March.
    5. Pompeu Casanovas & Louis de Koker & Mustafa Hashmi, 2022. "Law, Socio-Legal Governance, the Internet of Things, and Industry 4.0: A Middle-Out/Inside-Out Approach," J, MDPI, vol. 5(1), pages 1-28, January.
    6. Mustafa Hashmi, 2022. "On Modelling Process Aspects With Deontic Event-Calculus," International Journal of Service Science, Management, Engineering, and Technology (IJSSMET), IGI Global, vol. 13(1), pages 1-19, January.

    Most related items

    These are the items that most often cite the same works as this one and are cited by the same works as this one.
    1. Jörg Becker & Patrick Delfmann & Hanns-Alexander Dietrich & Matthias Steinhorst & Mathias Eggert, 2016. "Business process compliance checking – applying and evaluating a generic pattern matching approach for conceptual models in the financial sector," Information Systems Frontiers, Springer, vol. 18(2), pages 359-405, April.
    2. Shazia Sadiq & Michael Muehlen & Marta Indulska, 2012. "Preface," Information Systems Frontiers, Springer, vol. 14(2), pages 119-121, April.
    3. A. M. Mustapha & O. T. Arogundade & Sanjay Misra & Robertas Damasevicius & Rytis Maskeliunas, 2020. "A systematic literature review on compliance requirements management of business processes," International Journal of System Assurance Engineering and Management, Springer;The Society for Reliability, Engineering Quality and Operations Management (SREQOM),India, and Division of Operation and Maintenance, Lulea University of Technology, Sweden, vol. 11(3), pages 561-576, June.
    4. Chulhwan Chris Bang, 2015. "Information systems frontiers: Keyword analysis and classification," Information Systems Frontiers, Springer, vol. 17(1), pages 217-237, February.
    5. Anastasia Papazafeiropoulou & Konstantina Spanaki, 2016. "Understanding governance, risk and compliance information systems (GRC IS): The experts view," Information Systems Frontiers, Springer, vol. 18(6), pages 1251-1263, December.
    6. A. M. Mustapha & O. T. Arogundade & Sanjay Misra & Robertas Damasevicius & Rytis Maskeliunas, 0. "A systematic literature review on compliance requirements management of business processes," International Journal of System Assurance Engineering and Management, Springer;The Society for Reliability, Engineering Quality and Operations Management (SREQOM),India, and Division of Operation and Maintenance, Lulea University of Technology, Sweden, vol. 0, pages 1-16.
    7. Nguyen, D.K., 2011. "Foundations of Blueprint for Cloud-based Service Engineering," Other publications TiSEM f72f2868-f8a3-4f10-9a7d-a, Tilburg University, School of Economics and Management.
    8. El Gammal, A. & Turetken, O. & van den Heuvel, W.J.A.M. & Papazoglou, M., 2011. "On the formal specification of regulatory compliance : A comprehensive analysis," Other publications TiSEM f02249d8-47ee-4382-9db2-6, Tilburg University, School of Economics and Management.
    9. Shaio Yan Huang & Chao-Hsiung Lee & An-An Chiu & David C. Yen, 2015. "How business process reengineering affects information technology investment and employee performance under different performance measurement," Information Systems Frontiers, Springer, vol. 17(5), pages 1133-1144, October.
    10. Severin Oesterle & Jan Jöhnk & Robert Keller & Nils Urbach & Xin Yu, 2020. "A contingency lens on cloud provider management processes," Business Research, Springer;German Academic Association for Business Research, vol. 13(3), pages 1451-1489, November.
    11. Nguyen, D.K., 2011. "Foundations of Blueprint for Cloud-based Service Engineering," Discussion Paper 2011-067, Tilburg University, Center for Economic Research.
    12. El Gammal, A. & Turetken, O. & van den Heuvel, W.J.A.M. & Papazoglou, M., 2010. "Towards a comprehensive design-time compliance management : A roadmap," Other publications TiSEM e8ee336e-e493-4b82-b95a-3, Tilburg University, School of Economics and Management.
    13. Akhil Kumar & Wen Yao & Chao-Hsien Chu, 2013. "Flexible Process Compliance with Semantic Constraints Using Mixed-Integer Programming," INFORMS Journal on Computing, INFORMS, vol. 25(3), pages 543-559, August.
    14. Thomas Voglhofer & Stefanie Rinderle-Ma, 2020. "Collection and Elicitation of Business Process Compliance Patterns with Focus on Data Aspects," Business & Information Systems Engineering: The International Journal of WIRTSCHAFTSINFORMATIK, Springer;Gesellschaft für Informatik e.V. (GI), vol. 62(4), pages 361-377, August.
    15. Norris Syed Abdullah & Marta Indulska & Shazia Sadiq, 2016. "Compliance management ontology – a shared conceptualization for research and practice in compliance management," Information Systems Frontiers, Springer, vol. 18(5), pages 995-1020, October.
    16. A. M. Mustapha & O. T. Arogundade & O. R. Vincent & O. J. Adeniran, 2018. "Towards a compliance requirement management for SMSEs: a model and architecture," Information Systems and e-Business Management, Springer, vol. 16(1), pages 155-185, February.

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:spr:infosf:v:18:y:2016:i:3:d:10.1007_s10796-015-9558-1. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    If CitEc recognized a bibliographic reference but did not link an item in RePEc to it, you can help with this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: Sonal Shukla or Springer Nature Abstracting and Indexing (email available below). General contact details of provider: http://www.springer.com .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.