Managing legal compliance through security requirements across service provider chains: A case study on the German federal data protection act
| dc.contributor.author | Sillaber, Christian | |
| dc.contributor.author | Breu, Ruth | |
| dc.contributor.editor | Goltz, Ursula | |
| dc.contributor.editor | Magnor, Marcus | |
| dc.contributor.editor | Appelrath, Hans-Jürgen | |
| dc.contributor.editor | Matthies, Herbert K. | |
| dc.contributor.editor | Balke, Wolf-Tilo | |
| dc.contributor.editor | Wolf, Lars | |
| dc.date.accessioned | 2018-11-06T10:57:18Z | |
| dc.date.available | 2018-11-06T10:57:18Z | |
| dc.date.issued | 2012 | |
| dc.description.abstract | Future service customer-provider as well as inter-provider relationships will see the increased application of dynamic service composition providing a broad diversity of functions. However, currently existing deficiencies of processes and tools force service providers and service consumers to trade off profitability against security compliance. This is predominately due to the ignorance or manual resolution of policy and configuration dependencies, caused by distinct terminologies and languages used at both the service provider and service customer. We report on the research design for the Collaborative Security Requirement Management System (CoSeRMaS), a collaborative and semi-automated tool to manage, define and validate inter organizational requirements. We demonstrate the capabilities of CoSeRMaS to establish and validate the legal compliance that is demanded by the German Bundes Datenschutzgesetz (BDSG) when two or more customers and providers exchange data as part of their service composition. | en |
| dc.identifier.isbn | 978-3-88579-602-2 | |
| dc.identifier.pissn | 1617-5468 | |
| dc.identifier.uri | https://dl.gi.de/handle/20.500.12116/17766 | |
| dc.language.iso | en | |
| dc.publisher | Gesellschaft für Informatik e.V. | |
| dc.relation.ispartof | INFORMATIK 2012 | |
| dc.relation.ispartofseries | Lecture Notes in Informatics (LNI) - Proceedings, Volume P-208 | |
| dc.title | Managing legal compliance through security requirements across service provider chains: A case study on the German federal data protection act | en |
| dc.type | Text/Conference Paper | |
| gi.citation.endPage | 1317 | |
| gi.citation.publisherPlace | Bonn | |
| gi.citation.startPage | 1306 | |
| gi.conference.date | 16.-21. September 2012 | |
| gi.conference.location | Braunschweig | |
| gi.conference.sessiontitle | Regular Research Papers |
Dateien
Originalbündel
1 - 1 von 1
Vorschaubild nicht verfügbar
- Name:
- 1306.pdf
- Größe:
- 329.82 KB
- Format:
- Adobe Portable Document Format