Title :
OPBUS: Risk-aware framework for the conformance of security-quality requirements in business processes
Author :
Varela-Vaca, A.J. ; Gasca, Rafael M. ; Pozo, Sergio
Author_Institution :
Computer Languages and Systems Department (Quivir Research Group), ETS. Ingeniería Informática, University of Seville, Avd. Reina Mercedes S/N, Spain
Abstract :
Several reports indicate that one of the most important business priorities is the improvement of business and IT management. Nowadays, business processes and in general service-based ones use other external services which are not under their jurisdiction. Organizations do not usually consider their exposition to security risks when business processes cross organizational boundaries. In this paper, we propose a risk-aware framework for security-quality requirements in business processes management. This framework is focused on the inclusion of security issues from design to execution. The framework provides innovative mechanisms based on model-based diagnosis and constraint programming in order to carry out the risk assessment of business processes and the automatic check of the conformance of security requirements.
Keywords :
Biological system modeling; Fault tolerance; Programming; Proposals; Risk management; Security; Business process management; Risk assessment; Security;
Conference_Titel :
Security and Cryptography (SECRYPT), 2011 Proceedings of the International Conference on
Conference_Location :
Seville, Spain
