Model-aware Monitoring of SOAs for Compliance
Business processes today are supported by process-driven service oriented architectures. Due to the increasing importance of compliance of an organization with regulatory requirements and internal policies, there is a need for appropriate techniques to mo
- PDF / 669,615 Bytes
- 20 Pages / 439.37 x 666.142 pts Page_size
- 107 Downloads / 183 Views
Model-aware Monitoring of SOAs for Compliance Ta’id Holmes, Emmanuel Mulo, Uwe Zdun, and Schahram Dustdar
Abstract Business processes today are supported by process-driven service oriented architectures. Due to the increasing importance of compliance of an organization with regulatory requirements and internal policies, there is a need for appropriate techniques to monitor organizational information systems as they execute business processes. Event-based monitoring of processes is one of the ways to provide runtime process-state information. This type of monitoring, however, has limitations mostly related to the type and amount of information available in events and process engines. We propose a novel approach – model-aware monitoring of business processes – to address these limitations. Emitted events contain unique identifiers of models that can be retrieved dynamically during runtime from a model-aware repository and service environment (M ORSE). The size of the events is kept small and patterns of events that signify interesting occurrences are identified through complex event processing and are signaled to interesting components such as a business intelligence. To illustrate our approach we present an industry case study where we have applied this generic infrastructure for the compliance monitoring of business processes.
5.1 Introduction Business compliance, i.e., the conformance of an organization’s business activities and practices with existing laws (cf. [16, 19, 34, 42]), regulations (cf. [4, 26, 27]) and its own internal policies, is a major concern of today’s business community. However, these compliance concerns frequently change, making it hard to systematically and quickly accommodate new compliance requirements. The COMPAS project [15] aims to design and implement novel models, languages, and an architecTa’id Holmes · Emmanuel Mulo · Uwe Zdun · Schahram Dustdar Distributed Systems Group, Institute of Information Systems, Vienna University of Technology, Vienna, Austria, e-mail: \{tholmes,e.mulo,zdun,dustdar\}@infosys.tuwien.ac. at
117
118
T. Holmes et al.
tural framework to ensure dynamic and on-going compliance of software services to business regulations and stated user service-requirements. In this chapter we present part of the results from this project related to runtime monitoring of compliance in process-oriented systems. Business processes are today supported by process-driven service oriented architectures (SOA). A business process comprises a collection of related, structured activities within or across organizations, that produce a specific service or product for a particular customer. Process-driven SOAs aim to increase productivity, efficiency, and flexibility of an organization, by aligning high-level business processes with applications supported by information technology. Such architectures constitute a process (or workflow) engine that orchestrates services to realize activities in a business process [24]. In an enterprise scale process-driven SOA, moreover, there exist multi
Data Loading...
