Static compliance checking beyond separation of duty constraints Online publication date: Fri, 31-Aug-2018
by Yang Bo; Chunhe Xia; Yang Luo; Qing Tang
International Journal of Embedded Systems (IJES), Vol. 10, No. 5, 2018
Abstract: Compliance requirements, such as separation of duty and binding of duty, have to be satisfied in many application domains. Existing compliance checking frameworks either have limited expressiveness or rely on model checking, which has small applicable range and low efficiency. To overcome these limitations, we improve high level expression separation of duty algebra to: 1) describe both SoD and BoD constraints to make it more expressive; 2) describe user-task relationship to perform compliance checking. In order to make the improved high level policy act on concrete process, we: 1) construct mapping rules to translate the improved high level policies to low level constraints described in description logic; 2) propose a reasoning framework to check for business process compliance. We report on the applicability of our approach via a case study.
Online publication date: Fri, 31-Aug-2018
If you are not a subscriber and you just want to read the full contents of this article, buy online access here.Complimentary Subscribers, Editors or Members of the Editorial Board of the International Journal of Embedded Systems (IJES):
Login with your Inderscience username and password:
Want to subscribe?
A subscription gives you complete access to all articles in the current issue, as well as to all articles in the previous three years (where applicable). See our Orders page to subscribe.
If you still need assistance, please email firstname.lastname@example.org