Adherence to laws and regulations imposes important constraints on organizations, for legacy and new systems, both for their design and operation. N`omos is a framework that supports the development of compliant software systems. In this paper, we report on the application of N`omos in an industrial project, to provide model-based evidence that a set of requirements for a healthcare information system are compliant with a specific law. Compliance is treated as a collection of assigned responsibilities to social and system actors. The design of compliance pays special attention to auditability, i.e., making sure that designtime compliance is actually being adhered to.
Establishing Regulatory Compliance for Information System Requirements: An Experience Report from the Health Care Domain
Siena, Alberto;Mameli, Gianluca;Mylopoulos, John;Perini, Anna;Susi, Angelo
2010-01-01
Abstract
Adherence to laws and regulations imposes important constraints on organizations, for legacy and new systems, both for their design and operation. N`omos is a framework that supports the development of compliant software systems. In this paper, we report on the application of N`omos in an industrial project, to provide model-based evidence that a set of requirements for a healthcare information system are compliant with a specific law. Compliance is treated as a collection of assigned responsibilities to social and system actors. The design of compliance pays special attention to auditability, i.e., making sure that designtime compliance is actually being adhered to.I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
