OPBUS: RISK-AWARE FRAMEWORK FOR THE CONFORMANCE OF SECURITY-QUALITY REQUIREMENTS IN BUSINESS PROCESSES

A. J. Varela-Vaca; Rafael M. Gasca; Sergio Pozo

doi:10.5220/0003515503700374

OPBUS: RISK-AWARE FRAMEWORK FOR THE CONFORMANCE OF SECURITY-QUALITY REQUIREMENTS IN BUSINESS PROCESSES

A. J. Varela-Vaca, Rafael M. Gasca, Sergio Pozo

2011

Abstract

Several reports indicate that one of the most important business priorities is the improvement of business and IT management. Nowadays, business processes and in general service-based ones use other external services which are not under their jurisdiction. Organizations do not usually consider their exposition to security risks when business processes cross organizational boundaries. In this paper, we propose a risk-aware framework for security-quality requirements in business processes management. This framework is focused on the inclusion of security issues from design to execution. The framework provides innovative mechanisms based on model-based diagnosis and constraint programming in order to carry out the risk assessment of business processes and the automatic check of the conformance of security requirements.

Download

Paper Citation

in Harvard Style

J. Varela-Vaca A., M. Gasca R. and Pozo S. (2011). OPBUS: RISK-AWARE FRAMEWORK FOR THE CONFORMANCE OF SECURITY-QUALITY REQUIREMENTS IN BUSINESS PROCESSES . In Proceedings of the International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2011) ISBN 978-989-8425-71-3, pages 370-374. DOI: 10.5220/0003515503700374

in Bibtex Style

@conference{secrypt11,
author={A. J. Varela-Vaca and Rafael M. Gasca and Sergio Pozo},
title={OPBUS: RISK-AWARE FRAMEWORK FOR THE CONFORMANCE OF SECURITY-QUALITY REQUIREMENTS IN BUSINESS PROCESSES},
booktitle={Proceedings of the International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2011)},
year={2011},
pages={370-374},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0003515503700374},
isbn={978-989-8425-71-3},
}

in EndNote Style

TY - CONF
JO - Proceedings of the International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2011)
TI - OPBUS: RISK-AWARE FRAMEWORK FOR THE CONFORMANCE OF SECURITY-QUALITY REQUIREMENTS IN BUSINESS PROCESSES
SN - 978-989-8425-71-3
AU - J. Varela-Vaca A.
AU - M. Gasca R.
AU - Pozo S.
PY - 2011
SP - 370
EP - 374
DO - 10.5220/0003515503700374