An experimental study on the design and modeling of security concepts in business processes

Maria Leitner; Sigrid Schefer-Wenzl; Stefanie Rinderle-Ma; Mark Strembeck

doi:10.1007/978-3-642-41641-5_17

An experimental study on the design and modeling of security concepts in business processes

Maria Leitner, Sigrid Schefer-Wenzl, Stefanie Rinderle-Ma, Mark Strembeck

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

8 Scopus citations

Abstract

In recent years, business process models are used to define security properties for the corresponding business information systems. In this context, a number of approaches emerged that integrate security properties into standard process modeling languages. Often, these security properties are depicted as text annotations or graphical extensions. However, because the symbols of process-related security properties are not standardized, different issues concerning the comprehensibility and maintenance of the respective models arise. In this paper, we present the initial results of an experimental study on the design and modeling of 11 security concepts in a business process context. In particular, we center on the semantic transparency of the visual symbols that are intended to represent the different concepts (i.e. the one-to-one correspondence between the symbol and its meaning). Our evaluation showed that various symbols exist which are well-perceived. However, further studies are necessary to dissolve a number of remaining issues.

Original language	English
Title of host publication	Practice of Enterprise Modeling - 6th IFIP WG 8.1 Working Conference, PoEM 2013, Proceedings
Publisher	Springer Verlag
Pages	236-250
Number of pages	15
ISBN (Print)	9783642416408
DOIs	https://doi.org/10.1007/978-3-642-41641-5_17
State	Published - 2013
Externally published	Yes
Event	6th IFIP WG 8.1 Conference on the Practice of Enterprise Modeling, PoEM 2013 - Riga, Latvia Duration: 6 Nov 2013 → 7 Nov 2013

Publication series

Name	Lecture Notes in Business Information Processing
Volume	165 LNBIP
ISSN (Print)	1865-1348

Conference

Conference	6th IFIP WG 8.1 Conference on the Practice of Enterprise Modeling, PoEM 2013
Country/Territory	Latvia
City	Riga
Period	6/11/13 → 7/11/13

Keywords

BPMN
Business processes
Empirical evaluation
Icons
Modeling
Security
Visualization

Access to Document

10.1007/978-3-642-41641-5_17

Cite this

Leitner, M., Schefer-Wenzl, S., Rinderle-Ma, S., & Strembeck, M. (2013). An experimental study on the design and modeling of security concepts in business processes. In Practice of Enterprise Modeling - 6th IFIP WG 8.1 Working Conference, PoEM 2013, Proceedings (pp. 236-250). (Lecture Notes in Business Information Processing; Vol. 165 LNBIP). Springer Verlag. https://doi.org/10.1007/978-3-642-41641-5_17

@inproceedings{aac15bd6cffb4c07ba7b4ca871d57b2b,

title = "An experimental study on the design and modeling of security concepts in business processes",

abstract = "In recent years, business process models are used to define security properties for the corresponding business information systems. In this context, a number of approaches emerged that integrate security properties into standard process modeling languages. Often, these security properties are depicted as text annotations or graphical extensions. However, because the symbols of process-related security properties are not standardized, different issues concerning the comprehensibility and maintenance of the respective models arise. In this paper, we present the initial results of an experimental study on the design and modeling of 11 security concepts in a business process context. In particular, we center on the semantic transparency of the visual symbols that are intended to represent the different concepts (i.e. the one-to-one correspondence between the symbol and its meaning). Our evaluation showed that various symbols exist which are well-perceived. However, further studies are necessary to dissolve a number of remaining issues.",

keywords = "BPMN, Business processes, Empirical evaluation, Icons, Modeling, Security, Visualization",

author = "Maria Leitner and Sigrid Schefer-Wenzl and Stefanie Rinderle-Ma and Mark Strembeck",

year = "2013",

doi = "10.1007/978-3-642-41641-5_17",

language = "English",

isbn = "9783642416408",

series = "Lecture Notes in Business Information Processing",

publisher = "Springer Verlag",

pages = "236--250",

booktitle = "Practice of Enterprise Modeling - 6th IFIP WG 8.1 Working Conference, PoEM 2013, Proceedings",

note = "6th IFIP WG 8.1 Conference on the Practice of Enterprise Modeling, PoEM 2013 ; Conference date: 06-11-2013 Through 07-11-2013",

}

Leitner, M, Schefer-Wenzl, S, Rinderle-Ma, S & Strembeck, M 2013, An experimental study on the design and modeling of security concepts in business processes. in Practice of Enterprise Modeling - 6th IFIP WG 8.1 Working Conference, PoEM 2013, Proceedings. Lecture Notes in Business Information Processing, vol. 165 LNBIP, Springer Verlag, pp. 236-250, 6th IFIP WG 8.1 Conference on the Practice of Enterprise Modeling, PoEM 2013, Riga, Latvia, 6/11/13. https://doi.org/10.1007/978-3-642-41641-5_17

An experimental study on the design and modeling of security concepts in business processes. / Leitner, Maria; Schefer-Wenzl, Sigrid; Rinderle-Ma, Stefanie et al.
Practice of Enterprise Modeling - 6th IFIP WG 8.1 Working Conference, PoEM 2013, Proceedings. Springer Verlag, 2013. p. 236-250 (Lecture Notes in Business Information Processing; Vol. 165 LNBIP).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - An experimental study on the design and modeling of security concepts in business processes

AU - Leitner, Maria

AU - Schefer-Wenzl, Sigrid

AU - Rinderle-Ma, Stefanie

AU - Strembeck, Mark

PY - 2013

Y1 - 2013

N2 - In recent years, business process models are used to define security properties for the corresponding business information systems. In this context, a number of approaches emerged that integrate security properties into standard process modeling languages. Often, these security properties are depicted as text annotations or graphical extensions. However, because the symbols of process-related security properties are not standardized, different issues concerning the comprehensibility and maintenance of the respective models arise. In this paper, we present the initial results of an experimental study on the design and modeling of 11 security concepts in a business process context. In particular, we center on the semantic transparency of the visual symbols that are intended to represent the different concepts (i.e. the one-to-one correspondence between the symbol and its meaning). Our evaluation showed that various symbols exist which are well-perceived. However, further studies are necessary to dissolve a number of remaining issues.

AB - In recent years, business process models are used to define security properties for the corresponding business information systems. In this context, a number of approaches emerged that integrate security properties into standard process modeling languages. Often, these security properties are depicted as text annotations or graphical extensions. However, because the symbols of process-related security properties are not standardized, different issues concerning the comprehensibility and maintenance of the respective models arise. In this paper, we present the initial results of an experimental study on the design and modeling of 11 security concepts in a business process context. In particular, we center on the semantic transparency of the visual symbols that are intended to represent the different concepts (i.e. the one-to-one correspondence between the symbol and its meaning). Our evaluation showed that various symbols exist which are well-perceived. However, further studies are necessary to dissolve a number of remaining issues.

KW - BPMN

KW - Business processes

KW - Empirical evaluation

KW - Icons

KW - Modeling

KW - Security

KW - Visualization

UR - http://www.scopus.com/inward/record.url?scp=85006049205&partnerID=8YFLogxK

U2 - 10.1007/978-3-642-41641-5_17

DO - 10.1007/978-3-642-41641-5_17

M3 - Conference contribution

AN - SCOPUS:85006049205

SN - 9783642416408

T3 - Lecture Notes in Business Information Processing

SP - 236

EP - 250

BT - Practice of Enterprise Modeling - 6th IFIP WG 8.1 Working Conference, PoEM 2013, Proceedings

PB - Springer Verlag

T2 - 6th IFIP WG 8.1 Conference on the Practice of Enterprise Modeling, PoEM 2013

Y2 - 6 November 2013 through 7 November 2013

ER -

An experimental study on the design and modeling of security concepts in business processes

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this