A posteriori process security control

Processes specify how personal and business data are dealt with in information systems. Traditionally, security and privacy in this setting means prevention, i.e. ensuring processes' adherence to the corresponding policies a priori. In contexts where process evolution, flexibility and change happen, approaches based solely upon prevention become no longer practicable. In order to provide trustworthy enterprise systems, prevention must be complemented with a rigorous posteriori process security controls to detect policy violations. This talk presents the state of the art in area of auditing business processes executions and challenges arising from big process logs generated by modern business process management systems.