Reasoning over Secure Business Processes

By Achim D. Brucker.

Modern enterprise systems are often process-based, i.e., they allow for the direct execution of business processes that are specified in a high-level language such as BPMN.

We present an approach for validating the compliance of the business processes during design-time. Basically, while modeling a business process the business analyst specifies as well the security and compliance requirements the business process should comply to. By pressing a button, these requirements are validated and the results are presented in a graphical format to the business analysis. As proof-of-concept we created a prototype in which the SVaaS Server is deployed on the SAP NetWeaver Cloud and two SVaaS Connectors are built to enable two well-known BPMN tools, SAP NetWeaver BPM and Activiti, to consume SVaaS against industrial relevant business processes.

Please cite this work as follows:
A. D. Brucker, “Reasoning over secure business processes,” presented at the Dagstuhl seminar 13211 “automated reasoning on conceptual schemas,” Dagstuhl, Germany, May 21, 2013. Author copy: https://logicalhacking.com/publications/talk-brucker-reasoning-2013/

BibTeX
@Unpublished{ talk:brucker:reasoning:2013,
  date       = {2013-05-21},
  title      = {Reasoning over Secure Business Processes},
  author     = {Achim D. Brucker},
  venue      = {Dagstuhl, Germany},
  eventtitle = {Dagstuhl Seminar 13211 ``Automated Reasoning on Conceptual
                Schemas''},
  abstract   = {Modern enterprise systems are often process-based, i.e., they
                allow for the direct execution of business processes that are
                specified in a high-level language such as BPMN.
                
                We present an approach for validating the compliance of the
                business processes during design-time. Basically, while
                modeling a business process the business analyst specifies as
                well the security and compliance requirements the business
                process should comply to. By pressing a button, these
                requirements are validated and the results are presented in a
                graphical format to the business analysis. As proof-of-concept
                we created a prototype in which the SVaaS Server is deployed
                on the SAP NetWeaver Cloud and two SVaaS Connectors are built
                to enable two well-known BPMN tools, SAP NetWeaver BPM and
                Activiti, to consume SVaaS against industrial relevant
                business processes.},
  areas      = {software},
  note       = {Author copy: \url{https://logicalhacking.com/publications/talk-brucker-reasoning-2013/}},
  pdf        = {https://logicalhacking.com/publications/talk-brucker-reasoning-2013/talk-brucker-reasoning-2013.pdf},
}