Unified Compliance Modeling and Management using Compliance Descriptors

Falko Koetter, Maximilien Kintz, Monika Kochanowski, Christoph Fehling, Philipp Gildein, Frank Leymann, Anette Weisbecker
2016 Proceedings of the 6th International Conference on Cloud Computing and Services Science  
Due to innovations in the field of cloud computing business processes become distributed, encompassing a combination of services spanning multiple IT systems. Due to a growing number of regulations, managing business process compliance in this cloud environment is a necessary task for companies, leading to a growth in compliance management and compliance checking approaches. Compliance stems from laws and is implemented in all parts of enterprise IT. Thus, both a connection between business and
more » ... IT as well as a broad coverage of compliance scenarios is necessary. To solve both challenges, we use an integrating compliance descriptor for conceptual compliance modeling. This descriptor is used to configure a compliance management architecture, integrating different types of compliance checking. For creating compliance descriptors, it proved necessary to introduce a formalism and a graphical notation, which is introduced and evaluated in a prototype and expert interviews.
doi:10.5220/0005754501590170 dblp:conf/closer/KoetterKKFGLW16 fatcat:vwlfi4l3kffjbfcsouukvmv6cm