DOI

Organizations need to monitor their business processes to ensure that what actually happens in the system is compliant with the prescribed behavior. Deviations from the prescribed behavior may correspond to violations of security requirements and expose organizations to severe risks. Thus, it is crucial for organizations to detect and address nonconforming behavior as early as possible. In this paper, we present an auditing framework that facilitates the analysis of process executions by detecting nonconforming behaviors and ranking them with respect to their criticality. Our framework employs conformance checking techniques to detect possible explanations of nonconformity. Based on such explanations, the framework assesses the criticality of nonconforming process executions based on historical logging data and context information.

Original languageEnglish
Title of host publicationCODASPY 2016 - Proceedings of the 6th ACM Conference on Data and Application Security and Privacy
PublisherAssociation for Computing Machinery (ACM)
Pages130-132
Number of pages3
ISBN (Electronic)9781450339353
DOIs
StatePublished - 9 Mar 2016
Event6th ACM Conference on Data and Application Security and Privacy, CODASPY 2016 - New Orleans, United States
Duration: 9 Mar 201611 Mar 2016

Conference

Conference6th ACM Conference on Data and Application Security and Privacy, CODASPY 2016
CountryUnited States
CityNew Orleans
Period9/03/1611/03/16

    Research areas

  • Alignments, Auditing, Conformance checking, Risk assessment

ID: 32864210