Ponencia
OPBUS: Risk-aware framework for the conformance of security-quality requirements in business processes
Autor/es | Varela Vaca, Ángel Jesús
Martínez Gasca, Rafael Pozo Hidalgo, Sergio |
Departamento | Universidad de Sevilla. Departamento de Lenguajes y Sistemas Informáticos |
Fecha de publicación | 2011 |
Fecha de depósito | 2022-11-22 |
Publicado en |
|
ISBN/ISSN | 978-989-8425-71-3 |
Resumen | Several reports indicate that one of the most important business priorities is the improvement of business
and IT management. Nowadays, business processes and in general service-based ones use other external
services ... Several reports indicate that one of the most important business priorities is the improvement of business and IT management. Nowadays, business processes and in general service-based ones use other external services which are not under their jurisdiction. Organizations do not usually consider their exposition to security risks when business processes cross organizational boundaries. In this paper, we propose a risk aware framework for security-quality requirements in business processes management. This framework is focused on the inclusion of security issues from design to execution. The framework provides innovative mechanisms based on model-based diagnosis and constraint programming in order to carry out the risk assessment of business processes and the automatic check of the conformance of security requirements. |
Agencias financiadoras | Junta de Andalucía Ministerio de Ciencia e Innovación (MICIN). España |
Identificador del proyecto | P08-TIC-04095
TIN2009-13714 |
Cita | Varela Vaca, Á.J., Martínez Gasca, R. y Pozo Hidalgo, S. (2011). OPBUS: Risk-aware framework for the conformance of security-quality requirements in business processes. En SECRYPT 2011: International Conference on Security and Cryptography (370-374), Sevilla, España: IEEE Computer Society. |
Ficheros | Tamaño | Formato | Ver | Descripción |
---|---|---|---|---|
OPBUS_Risk-aware_framework_for ... | 378.8Kb | [PDF] | Ver/ | |