Varela Vaca, Ángel JesúsMartínez Gasca, RafaelPozo Hidalgo, Sergio2022-11-222022-11-222011Varela Vaca, Á.J., Martínez Gasca, R. y Pozo Hidalgo, S. (2011). OPBUS: Risk-aware framework for the conformance of security-quality requirements in business processes. En SECRYPT 2011: International Conference on Security and Cryptography (370-374), Sevilla, España: IEEE Computer Society.978-989-8425-71-3https://hdl.handle.net/11441/139662Several reports indicate that one of the most important business priorities is the improvement of business and IT management. Nowadays, business processes and in general service-based ones use other external services which are not under their jurisdiction. Organizations do not usually consider their exposition to security risks when business processes cross organizational boundaries. In this paper, we propose a risk aware framework for security-quality requirements in business processes management. This framework is focused on the inclusion of security issues from design to execution. The framework provides innovative mechanisms based on model-based diagnosis and constraint programming in order to carry out the risk assessment of business processes and the automatic check of the conformance of security requirements.application/pdf5engAttribution-NonCommercial-NoDerivatives 4.0 Internacionalhttp://creativecommons.org/licenses/by-nc-nd/4.0/Business process managementRisk assessmentSecurityinfo:eu-repo/semantics/conferenceObjectinfo:eu-repo/semantics/openAccess