遵从性域:在云环境中建模数据限制的一种方法

2011 IEEE 15th International Enterprise Distributed Object Computing Conference Pub Date : 2011-08-29 DOI:10.1109/EDOC.2011.22

Daniel Schleicher, Christoph Fehling, Stefan Grohe, F. Leymann, Alexander Nowak, P. Schneider, D. Schumm

{"title":"遵从性域:在云环境中建模数据限制的一种方法","authors":"Daniel Schleicher, Christoph Fehling, Stefan Grohe, F. Leymann, Alexander Nowak, P. Schneider, D. Schumm","doi":"10.1109/EDOC.2011.22","DOIUrl":null,"url":null,"abstract":"It is crucial for enterprises to execute business operations in a compliant way. This is especially true for IT-driven business processes as enterprises may face considerable fines when violating laws and regulation in their business processes. Through the advent of cloud computing, a new dimension of compliance requirements within the research area of compliant business process design has emerged. Data-sovereignty is one of the major compliance concerns enterprises have to deal with when moving applications and data to the cloud. Enterprises are fully responsible for their data, also when the data is not present within their IT premises anymore. This lead to the policy that specific data must not leave the IT premises of the enterprise. In this paper we present an approach to support the human process designer in modelling compliant business processes. We are focusing on compliance requirements which have to be considered in the field of cloud computing. These requirements have been created to meet laws and regulations. These laws and regulations are considering data which is to other countries, for example. Looking at the characteristics of these requirements, we deal with data-centric compliance rules here.","PeriodicalId":147466,"journal":{"name":"2011 IEEE 15th International Enterprise Distributed Object Computing Conference","volume":"102 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2011-08-29","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":"{\"title\":\"Compliance Domains: A Means to Model Data-Restrictions in Cloud Environments\",\"authors\":\"Daniel Schleicher, Christoph Fehling, Stefan Grohe, F. Leymann, Alexander Nowak, P. Schneider, D. Schumm\",\"doi\":\"10.1109/EDOC.2011.22\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"It is crucial for enterprises to execute business operations in a compliant way. This is especially true for IT-driven business processes as enterprises may face considerable fines when violating laws and regulation in their business processes. Through the advent of cloud computing, a new dimension of compliance requirements within the research area of compliant business process design has emerged. Data-sovereignty is one of the major compliance concerns enterprises have to deal with when moving applications and data to the cloud. Enterprises are fully responsible for their data, also when the data is not present within their IT premises anymore. This lead to the policy that specific data must not leave the IT premises of the enterprise. In this paper we present an approach to support the human process designer in modelling compliant business processes. We are focusing on compliance requirements which have to be considered in the field of cloud computing. These requirements have been created to meet laws and regulations. These laws and regulations are considering data which is to other countries, for example. Looking at the characteristics of these requirements, we deal with data-centric compliance rules here.\",\"PeriodicalId\":147466,\"journal\":{\"name\":\"2011 IEEE 15th International Enterprise Distributed Object Computing Conference\",\"volume\":\"102 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2011-08-29\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"2\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2011 IEEE 15th International Enterprise Distributed Object Computing Conference\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/EDOC.2011.22\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2011 IEEE 15th International Enterprise Distributed Object Computing Conference","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/EDOC.2011.22","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 2

摘要

企业以合规的方式执行业务操作是至关重要的。对于it驱动的业务流程尤其如此，因为企业在其业务流程中违反法律法规时可能面临相当大的罚款。随着云计算的出现，在合规业务流程设计的研究领域中出现了合规需求的一个新维度。数据主权是企业在将应用程序和数据迁移到云端时必须处理的主要遵从性问题之一。企业对其数据负全部责任，即使数据不再出现在其IT场所内也是如此。这导致了特定数据不能离开企业IT场所的策略。在本文中，我们提出了一种方法来支持人工流程设计人员对合规业务流程进行建模。我们关注的是云计算领域必须考虑的合规性要求。创建这些要求是为了满足法律法规。例如，这些法律法规正在考虑向其他国家提供的数据。查看这些需求的特征，我们在这里处理以数据为中心的遵从性规则。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Compliance Domains: A Means to Model Data-Restrictions in Cloud Environments

It is crucial for enterprises to execute business operations in a compliant way. This is especially true for IT-driven business processes as enterprises may face considerable fines when violating laws and regulation in their business processes. Through the advent of cloud computing, a new dimension of compliance requirements within the research area of compliant business process design has emerged. Data-sovereignty is one of the major compliance concerns enterprises have to deal with when moving applications and data to the cloud. Enterprises are fully responsible for their data, also when the data is not present within their IT premises anymore. This lead to the policy that specific data must not leave the IT premises of the enterprise. In this paper we present an approach to support the human process designer in modelling compliant business processes. We are focusing on compliance requirements which have to be considered in the field of cloud computing. These requirements have been created to meet laws and regulations. These laws and regulations are considering data which is to other countries, for example. Looking at the characteristics of these requirements, we deal with data-centric compliance rules here.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2011 IEEE 15th International Enterprise Distributed Object Computing Conference

自引率

0.00%

发文量