Controlling Compliance of Collaborative Business Processes through an Integration Platform within an E-government Scenario

Compliance management is gaining increasing interest in inter-organizational service-oriented systems, which are usually supported by integration platforms. Due to their mediation role and capabilities, these platforms constitute a convenient infrastructure for controlling compliance requirements affecting inter-organizational message exchanges, which may be carried out as part of collaborative business processes (CBPs). This paper addresses compliance requirements of CBPs within an e-government scenario, by using a policy-based compliance control solution for integration platforms which was introduced in our previous work

Secure data sharing and processing in heterogeneous clouds

The extensive cloud adoption among the European Public Sector Players empowered them to own and operate a range of cloud infrastructures. These deployments vary both in the size and capabilities, as well as in the range of employed technologies and processes. The public sector, however, lacks the necessary technology to enable effective, interoperable and secure integration of a multitude of its computing clouds and services. In this work we focus on the federation of private clouds and the approaches that enable secure data sharing and processing among the collaborating infrastructures and services of public entities. We investigate the aspects of access control, data and security policy languages, as well as cryptographic approaches that enable fine-grained security and data processing in semi-trusted environments. We identify the main challenges and frame the future work that serve as an enabler of interoperability among heterogeneous infrastructures and services. Our goal is to enable both security and legal conformance as well as to facilitate transparency, privacy and effectivity of private cloud federations for the public sector needs. © 2015 The Authors

Open Government Architecture: The evolution of De Jure Standards, Consortium Standards, and Open Source Software

Conducted for the Treasury Board of Québec, this study seeks to present recent contributions to the evolution, within an enterprise architecture context, of de jure and de facto standards by various actors in the milieu, industrial consortia, and international standardization committees active in open source software. In order to be able to achieve its goals of delivering services to citizens and society, the Government of Québec must integrate its computer systems to create a service oriented open architecture. Following in the footsteps of various other governments and the European Community, such an integration will require elaboration of an interoperability framework, i.e. a structured set of de jure standards, de facto standards, specifications, and policies allowing computer systems to interoperate. Thus, we recommend that the Government of Québec: Pursue its endeavours to elaborate an interoperability framework for its computer systems that is based on open de jure and de facto standards. This framework should not only reflect the criteria enumerated in this study and apply to internal computer systems, but it should also extend to Web services supplied to organizations outside of the government. This framework should explicitly prioritize open source de jure and de facto standards and include a policy covering free software. The interoperability framework should initially draw on that of the state of Massachusetts. In the medium term, is should be as comprehensive as that of the British government. Integrate this interoperability framework into its enterprise architecture. Publish this interoperability framework with its enterprise architecture. Specify this interoperability framework in its calls for tenders. Elaborate a policy of compliance with this framework for all new applications.

Towards a Metamodel supporting E-government Collaborative Business Processes Management within a Service-based Interoperability Platform

Interoperability between different organizations is a complex task, where a key element is to be able to define without ambiguity the concepts that are involved in each domain and their relations. A key aspect for enabling e-government is the technological support for complex interaction scenarios, defining collaborative Business Processes (BPs) that are the basis for these interactions. E-government collaborative BPs involve several and heterogeneous participants: organizations, partners, and users, with different capabilities, needs, and available technical support. The goal of this paper is to present ongoing research on e-government cross-organizational collaborative BPs support in a service-based interoperability platform. This proposal is focused on the formalization and exploitation of e-government knowledge and information (i.e., metamodels and ontologies) to improve the definition, automated generation, control, monitoring and improvement of e-government collaborative BPs

Securing intellectual capital:an exploratory study in Australian universities

Purpose – To investigate the links between IC and the protection of data, information and knowledge in universities, as organizations with unique knowledge-related foci and challenges.Design/methodology/approach – We gathered insights from existing IC-related research publications to delineate key foundational aspects of IC, identify and propose links to traditional information security that impact the protection of IC. We conducted interviews with key stakeholders in Australian universities in order to validate these links.Findings – Our investigation revealed two kinds of embeddedness characterizing the organizational fabric of universities: (1) vertical and (2) horizontal, with an emphasis on the connection between these and IC-related knowledge protection within these institutions.Research implications – There is a need to acknowledge the different roles played by actors within the university, and the relevance of information security to IC-related preservation.Practical implications – Framing information security as an IC-related issue can help IT security managers communicate the need for knowledge security with executives in higher education, and secure funding to preserve and secure such IC-related knowledge, once its value is recognized.Originality/value – This is one of the first studies to explore the connections between data and information security and the three core components of IC’s knowledge security in the university context

Semantic discovery and reuse of business process patterns

Patterns currently play an important role in modern information systems (IS) development and their use has mainly been restricted to the design and implementation phases of the development lifecycle. Given the increasing significance of business modelling in IS development, patterns have the potential of providing a viable solution for promoting reusability of recurrent generalized models in the very early stages of development. As a statement of research-in-progress this paper focuses on business process patterns and proposes an initial methodological framework for the discovery and reuse of business process patterns within the IS development lifecycle. The framework borrows ideas from the domain engineering literature and proposes the use of semantics to drive both the discovery of patterns as well as their reuse