University of Wollongong
Browse

Analyst-mediated contextualization of regulatory policies

Download (415.73 kB)
conference contribution
posted on 2024-11-14, 10:51 authored by George Koliadis, Nirmit V Desai, Nanjangud C Nerandra, Aditya Ghose
Increasing legislative and regulatory concerns have fueled an interest in effective and efficient tools for managing business process compliance within organizations. In particular, the key challenge is to understand high-level compliance policies in natural language, and interpret them for a particular usage context. These interpreted policies can then be represented in a formal language, and used to (for example) automatically verify compliance of business process executions against these policies. In this paper, we focus on the first part of this problem: interpreting regulatory policies — called contextualization. We employ a natural language parser to extract key phrases from the natural language statements and generate possible interpretations from predefined templates. An analyst chooses interpretations according to the organizational context. These interpretations are then grounded further and represented in a formal language. Via a prototype, we demonstrate our approach on real-life security compliance obligations used within IBM’s IT service delivery units.

History

Citation

Koliadis, G., Desai, N. V., Nerandra, N. C. & Ghose, A. K. (2010). Analyst-mediated contextualization of regulatory policies. Proceedings: 2010 IEEE International Conference on Services Computing (SCC) (pp. 281-288). Piscataway, New Jersey, USA: IEEE.

Parent title

Proceedings - 2010 IEEE 7th International Conference on Services Computing, SCC 2010

Pagination

281-288

Language

English

RIS ID

34030

Usage metrics

    Categories

    Exports

    RefWorks
    BibTeX
    Ref. manager
    Endnote
    DataCite
    NLM
    DC