Requirements modelling and formal analysis using graph operations

The increasing complexity of enterprise systems requires a more advanced analysis of the representation of services expected than is currently possible. Consequently, the specification stage, which could be facilitated by formal verification, becomes very important to the system life-cycle. This paper presents a formal modelling approach, which may be used in order to better represent the reality of the system and to verify the awaited or existing system’s properties, taking into account the environmental characteristics. For that, we firstly propose a formalization process based upon properties specification, and secondly we use Conceptual Graphs operations to develop reasoning mechanisms of verifying requirements statements. The graphic visualization of these reasoning enables us to correctly capture the system specifications by making it easier to determine if desired properties hold. It is applied to the field of Enterprise modelling

Comprehensive measurement framework for enterprise architectures

Enterprise Architecture defines the overall form and function of systems across an enterprise involving the stakeholders and providing a framework, standards and guidelines for project-specific architectures. Project-specific Architecture defines the form and function of the systems in a project or program, within the context of the enterprise as a whole with broad scope and business alignments. Application-specific Architecture defines the form and function of the applications that will be developed to realize functionality of the system with narrow scope and technical alignments. Because of the magnitude and complexity of any enterprise integration project, a major engineering and operations planning effort must be accomplished prior to any actual integration work. As the needs and the requirements vary depending on their volume, the entire enterprise problem can be broken into chunks of manageable pieces. These pieces can be implemented and tested individually with high integration effort. Therefore it becomes essential to analyze the economic and technical feasibility of realizable enterprise solution. It is difficult to migrate from one technological and business aspect to other as the enterprise evolves. The existing process models in system engineering emphasize on life-cycle management and low-level activity coordination with milestone verification. Many organizations are developing enterprise architecture to provide a clear vision of how systems will support and enable their business. The paper proposes an approach for selection of suitable enterprise architecture depending on the measurement framework. The framework consists of unique combination of higher order goals, non-functional requirement support and inputs-outcomes pair evaluation. The earlier efforts in this regard were concerned about only custom scales indicating the availability of a parameter in a range.Comment: 22 Page

Audit Methodology for IT Governance

The continuous development of the new IT technologies was followed up by a rapid integration of them at the organization level. The management of the organizations face a new challenge: structural redefinition of the IT component in order to create plus value and to minimize IT risks through an efficient management of all IT resources of the organization. These changes have had a great impact on the governance of the IT component. The paper proposes an audit methodology of the IT Governance at the organization level. From this point of view the developed audit strategy is a strategy based on risks to enable IT auditor to study from the best angle efficiency and effectiveness of the IT Governance structure. The evaluation of the risks associated with IT Governance is a key process in planning the audit mission which will allow the identification of the segments with increased risks. With now ambition for completeness, the proposed methodology provides the auditor a useful tool in the accomplishment of his mission.IT Governance, Corporate Governance, IT Audit Process, IT Risk

Electronic security - risk mitigation in financial transactions : public policy issues

This paper builds on a previous series of papers (see Claessens, Glaessner, and Klingebiel, 2001, 2002) that identified electronic security as a key component to the delivery of electronic finance benefits. This paper and its technical annexes (available separately at http://www1.worldbank.org/finance/) identify and discuss seven key pillars necessary to fostering a secure electronic environment. Hence, it is intended for those formulating broad policies in the area of electronic security and those working with financial services providers (for example, executives and management). The detailed annexes of this paper are especially relevant for chief information and security officers responsible for establishing layered security. First, this paper provides definitions of electronic finance and electronic security and explains why these issues deserve attention. Next, it presents a picture of the burgeoning global electronic security industry. Then it develops a risk-management framework for understanding the risks and tradeoffs inherent in the electronic security infrastructure. It also provides examples of tradeoffs that may arise with respect to technological innovation, privacy, quality of service, and security in designing an electronic security policy framework. Finally, it outlines issues in seven interrelated areas that often need attention in building an adequate electronic security infrastructure. These are: 1) The legal framework and enforcement. 2) Electronic security of payment systems. 3) Supervision and prevention challenges. 4) The role of private insurance as an essential monitoring mechanism. 5) Certification, standards, and the role of the public and private sectors. 6) Improving the accuracy of information on electronic security incidents and creating better arrangements for sharing this information. 7) Improving overall education on these issues as a key to enhancing prevention.Knowledge Economy,Labor Policies,International Terrorism&Counterterrorism,Payment Systems&Infrastructure,Banks&Banking Reform,Education for the Knowledge Economy,Knowledge Economy,Banks&Banking Reform,International Terrorism&Counterterrorism,Governance Indicators

Monitoring morphisms to support sustainable interoperability of enterprise systems

Dissertation to obtain the Master degree in Electrical Engineering and Computer ScienceNowadays, organizations are required to be part of a global collaborative world. Sometimes this is the only way they can access new and wider markets, reaching new opportunities, skills and sharing assets, e.g. tools, lessons learnt. However, due to the different sources of enterprise models and semantics, organizations are experiencing difficulties in exchanging vital information via electronic and in a seamlessly way. To solve this issue, most of them try to attain interoperability by establishing peer-to-peer mappings with different business partners, or in optimized networks using neutral data standards to regulate communications. Moreover, the systems are more and more dynamic, changing frequently to answer new customer’s requirements, causing new interoperability problems and a reduction of efficiency. This dissertation proposes a multi-agent system to monitor existing enterprise systems, by being capable of detecting morphism changes. With this, network harmonization breakings are timely detected, and possible solutions are suggested to regain the interoperable status, thus enhancing robustness for reaching sustainability of business networks

MSUO Information Technology and Geographical Information Systems: Common Protocols & Procedures. Report to the Marine Safety Umbrella Operation

The Marine Safety Umbrella Operation (MSUO) facilitates the cooperation between Interreg funded Marine Safety Projects and maritime stakeholders. The main aim of MSUO is to permit efficient operation of new projects through Project Cooperation Initiatives, these include the review of the common protocols and procedures for Information Technology (IT) and Geographical Information Systems (GIS). This study carried out by CSA Group and the National Centre for Geocomputation (NCG) reviews current spatial information standards in Europe and the data management methodologies associated with different marine safety projects. International best practice was reviewed based on the combined experience of spatial data research at NCG and initiatives in the US, Canada and the UK relating to marine security service information and acquisition and integration of large marine datasets for ocean management purposes. This report identifies the most appropriate international data management practices that could be adopted for future MSUO projects

Modelling business processes with links to ISO 9001

Merged with duplicate record 10026.1/795 on 14.02.2017 by CS (TIS)This work in the domain of quality management and business process design looks at how the requirements of the ISO 9001 standard for quality management systems are designed and implemented in business. It is the aim of the research reported in this thesis to support manufacturing companies when modelling a Fulfil Order Process by identifying the links to the ISO 9001 quality standard and highlighting potential impact from any changes in the process or the standard during a redesign project. It does so by presenting a modelling technique, named IDEF9000, which will enable companies to take a systemic perspective of a Fulfil Order Process identifying all relevant links to ISO 9001. A research strategy based around the experiences of companies when designing business processes with links to ISO 9001 was adopted. In-depth case studies carried out by the author showed that simply documenting what an organisation does to satisfy the various elements of ISO 9001 is still one of the most common approaches adopted. This results in a process-oriented character only at the documentation stage. It is the result of limited guidance on how to integrate the requirements of ISO 900 I in business processes. The work proceeded by exploring the domains of business processes, the use of systems thinking to explain business processes and the relevance of ISO 9001 requirements from a process-based viewpoint. A set of criteria was developed to identify activities, information and other flows controlled by ISO 9001 to design a Fulfil Order Process in a manufacturing company. This provided the context for the development of the modelling technique IDEF9000, which is an enhanced version of IDEFo, and its validation by review and by use in two manufacturing companies. The originality of this work lies in the identification and emphasis by the author of the need to take a systemic view of business processes when designing or redesigning a process-based ISO 9001 quality management system. Also, criteria for a technique to address the modelling of a Fulfil Order Process were identified. Furthermore this contribution to knowledge includes the identification of links between ISO 9001 requirements and a holistic Fulfil Order Process. This led to the development of further criteria for modelling such a business process showing the links to ISO 9001. IDEF9000 represents an improved modelling approach that fulfils the identified criteria and permits the systemic design or redesign of a Fulfil Order Process while establishing the links controlled by the ISO 9001 quality standard

The effectiveness of quality management strategies in health care organizations: an analysis of quality standards implementation and clinical performance improvement

Quality management strategies in healthcare institutions require an increasingly refined quality management system. This study aims to analyze the ISO 9001:2015 Standard for the implementation of a quality management system in the field of medical services provided by healthcare facilities, as well as to determine patterns during performance to assess the effectiveness of the quality management strategy. The article discusses key factors for achieving the quality management strategy through the implementation of a quality management system to improve clinical indicators. This system, according to the requirements of the ISO 9001:2015 Standard, ensures quality service provision.A cyclical sequence of actions is used to analyze quality management system implementation. It is applied to quality service processes in healthcare organizations and reflects some key aspects (planning, execution, activities, and verification of all relevant processes as described in the ISO 9001:2015 Standard). The authors have examined the quality management strategy based on the literature review and the analyzed standard. This strategy includes leadership, adapting quality improvement initiatives, setting the boundaries of managerial and clinical policies. All the above allow the integration of quality improvement initiatives into a sustainable, organized system with continuous enhancement