University of Karachi
Modern enterprise systems are often process based, i.e., they allow for the direct execution of business processes that are specified in a high-level language such as BPMN. In this paper, the authors present a service, called Security Validation as a Service (SVaaS) for validating the compliance of the business processes during design-time. Basically, while modeling a business process the business analyst specifies as well the security and compliance requirements the business process should comply to. By pressing a button, these requirements are validated and the results are presented in a graphical format to the business analysis.