Online Version - Last Updated - 20 Jan 2012 |
 |
| Home |
| |
| Procedures and Resources for Authors |
|
| Information and Resources for Volume Editors |
| |
| Orders and Subscriptions |
| |
| Published Articles |
|
| Upcoming Volumes |
| |
| Contact Us |
| |
| Useful External Links |
| |
| CRPIT Site Search |
A Platform-Independent Approach for Auditing Information Systems
Weber, G.
Information systems in several application domains
have to fulfil particularly stringent requirements, first
of all concerning privacy, but then also concerning
the ability to audit the use of data in hindsight.
For databases as a key component of such systems,
the concept of hippocratic databases was proposed. These databases are
targeted at privacy-intensive applications including
healthcare applications. Hippocratic databases enable
active enforcement of privacy policies, as well
as audits of compliance. We present here a framework
that allows us to audit the data that was actually
presented. In a model-driven approach, platform-independent
models support reuse and are translated
into platform dependent models. We present here a
platform-independent model for auditing information
systems. It is based on a message-based system viewpoint
that allows us to discuss aspects of a service-oriented
architecture on a high-level analysis and design
level. This method shows how we can use a protocol
of all ingoing and outgoing messages as an audit
trail for the system.
Cite as: Weber, G. (2008). A Platform-Independent Approach for Auditing Information Systems. In Proc. Second Australasian Workshop on Health Data and Knowledge Management (HDKM 2008), Wollongong, NSW, Australia. CRPIT, 80. Warren, J. R., Yu, P., Yearwood, J. and Patrick, J. D., Eds. ACS. 65-73.
(from crpit.com)
(local if available)
