Establishing Regulatory Compliance for Information System Requirements: An Experience Report from the Health Care Domain

0
99

Authors: Alberto Siena, Angelo Susi, Anna Perini, Giampaolo Armellin, Gianluca Mameli, John Mylopoulos

Tags: 2010, conceptual modeling

Adherence to laws and regulations imposes important constraints on organizations, for legacy and new systems, both for their design and operation. Nòmos is a framework that supports the development of compliant software systems. In this paper, we report on the application of Nòmos in an industrial project, to provide model-based evidence that a set of requirements for a healthcare information system are compliant with a specific law. Compliance is treated as a collection of assigned responsibilities to social and system actors. The design of compliance pays special attention to auditability, i.e., making sure that design-time compliance is actually being adhered to.

Read the full paper here: https://link.springer.com/chapter/10.1007/978-3-642-16373-9_7