Hier finden Sie wissenschaftliche Publikationen aus den Fraunhofer-Instituten.

An universal approach for compliance management using compliance descriptors

: Kötter, Falko; Kintz, Maximilien; Kochanowski, Monika; Wiriyarattanakul, Thatchanok; Fehling, Christoph; Gildein, Philipp; Wagner, Sebastian; Leymann, Frank; Weisbecker, Anette


Helfert, M.:
Cloud computing and services science. 6th International Conference, CLOSER 2016 : Rome, Italy, April 23-25, 2016, revised selected papers
Cham: Springer International Publishing, 2017 (Communications in computer and information science 740)
ISBN: 978-3-319-62593-5 (Print)
ISBN: 978-3-319-62594-2 (Online)
International Conference on Cloud Computing and Services Science (CLOSER) <6, 2016, Rome>
Deutsche Forschungsgemeinschaft DFG
SP 448/27-1; Co.M.B.
Compliance Management in Adaptive Business Processes
Fraunhofer IAO ()

Trends like outsourcing and cloud computing have led to a distribution of business processes among different IT systems and organizations. Still, businesses need to ensure compliance regarding laws and regulations of these distributed processes. This need gave way to many new solutions for compliance management and checking. Compliance requirements arise from legal documents and are implemented in all parts of enterprise IT, creating a business IT gap between legal texts and software implementation. Compliance solutions must bridge this gap as well as support a wide variety of compliance requirements. To achieve these goals, we developed an integrating compliance descriptor for compliance modeling on the legal, requirement and technical level, incorporating arbitrary rule languages for specific types of requirements. Using a modeled descriptor a compliance checking architecture can be configured, including specific rule checking implementations. The graphical notation of the compliance descriptor and the formalism it’s based on are described and evaluated using a prototype as well as expert interviews. Based on evaluation results, an extension for compliance management in unstructured processes is outlined.