{"id":"https://openalex.org/W1601977582","doi":"https://doi.org/10.1007/978-3-8348-9195-2_47","title":"Introducing Regulatory Compliance Requirements Engineering","display_name":"Introducing Regulatory Compliance Requirements Engineering","publication_year":2007,"publication_date":"2007-12-21","ids":{"openalex":"https://openalex.org/W1601977582","doi":"https://doi.org/10.1007/978-3-8348-9195-2_47","mag":"1601977582"},"language":"en","primary_location":{"id":"doi:10.1007/978-3-8348-9195-2_47","is_oa":false,"landing_page_url":"https://doi.org/10.1007/978-3-8348-9195-2_47","pdf_url":null,"source":{"id":"https://openalex.org/S4306464254","display_name":"Vieweg eBooks","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"ebook platform"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ISSE 2006 \u2014 Securing Electronic Busines Processes","raw_type":"book-chapter"},"type":"book-chapter","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5022120688","display_name":"Shahbaz Ali","orcid":null},"institutions":[],"countries":[],"is_corresponding":true,"raw_author_name":"Shahbaz Ali","raw_affiliation_strings":["Tarmin Technologies Ltd, UK","Tarmin Technologies Ltd"],"affiliations":[{"raw_affiliation_string":"Tarmin Technologies Ltd, UK","institution_ids":[]},{"raw_affiliation_string":"Tarmin Technologies Ltd","institution_ids":[]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5089000105","display_name":"Jon G. Hall","orcid":"https://orcid.org/0000-0002-5619-820X"},"institutions":[{"id":"https://openalex.org/I204136569","display_name":"The Open University","ror":"https://ror.org/05mzfcs16","country_code":"GB","type":"education","lineage":["https://openalex.org/I204136569"]},{"id":"https://openalex.org/I8679417","display_name":"Hong Kong Metropolitan University","ror":"https://ror.org/0349bsm71","country_code":"HK","type":"education","lineage":["https://openalex.org/I8679417"]}],"countries":["GB","HK"],"is_corresponding":false,"raw_author_name":"Jon Hall","raw_affiliation_strings":["The Open University, UK","the Open University"],"affiliations":[{"raw_affiliation_string":"The Open University, UK","institution_ids":["https://openalex.org/I204136569"]},{"raw_affiliation_string":"the Open University","institution_ids":["https://openalex.org/I8679417"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5022120688"],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":3.7013,"has_fulltext":false,"cited_by_count":2,"citation_normalized_percentile":{"value":0.92784993,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"439","last_page":"447"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T13295","display_name":"Safety Systems Engineering in Autonomy","score":0.9951000213623047,"subfield":{"id":"https://openalex.org/subfields/2213","display_name":"Safety, Risk, Reliability and Quality"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T13295","display_name":"Safety Systems Engineering in Autonomy","score":0.9951000213623047,"subfield":{"id":"https://openalex.org/subfields/2213","display_name":"Safety, Risk, Reliability and Quality"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9922999739646912,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10430","display_name":"Software Engineering Techniques and Practices","score":0.9865000247955322,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/asset","display_name":"Asset (computer security)","score":0.6075501441955566},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.48856744170188904},{"id":"https://openalex.org/keywords/risk-analysis","display_name":"Risk analysis (engineering)","score":0.4677337110042572},{"id":"https://openalex.org/keywords/information-security-management","display_name":"Information security management","score":0.4485335946083069},{"id":"https://openalex.org/keywords/legislation","display_name":"Legislation","score":0.4397059977054596},{"id":"https://openalex.org/keywords/requirements-engineering","display_name":"Requirements engineering","score":0.42097708582878113},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.40405842661857605},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.3874461054801941},{"id":"https://openalex.org/keywords/security-information-and-event-management","display_name":"Security information and event management","score":0.36198896169662476},{"id":"https://openalex.org/keywords/knowledge-management","display_name":"Knowledge management","score":0.35563087463378906},{"id":"https://openalex.org/keywords/process-management","display_name":"Process management","score":0.34869280457496643},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.329012006521225},{"id":"https://openalex.org/keywords/cloud-computing-security","display_name":"Cloud computing security","score":0.30026066303253174},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.2740944027900696},{"id":"https://openalex.org/keywords/cloud-computing","display_name":"Cloud computing","score":0.16826510429382324},{"id":"https://openalex.org/keywords/political-science","display_name":"Political science","score":0.14755216240882874},{"id":"https://openalex.org/keywords/law","display_name":"Law","score":0.09171837568283081}],"concepts":[{"id":"https://openalex.org/C76178495","wikidata":"https://www.wikidata.org/wiki/Q4808784","display_name":"Asset (computer security)","level":2,"score":0.6075501441955566},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.48856744170188904},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.4677337110042572},{"id":"https://openalex.org/C148976360","wikidata":"https://www.wikidata.org/wiki/Q1662500","display_name":"Information security management","level":5,"score":0.4485335946083069},{"id":"https://openalex.org/C2777351106","wikidata":"https://www.wikidata.org/wiki/Q49371","display_name":"Legislation","level":2,"score":0.4397059977054596},{"id":"https://openalex.org/C6604083","wikidata":"https://www.wikidata.org/wiki/Q376937","display_name":"Requirements engineering","level":3,"score":0.42097708582878113},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.40405842661857605},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.3874461054801941},{"id":"https://openalex.org/C103377522","wikidata":"https://www.wikidata.org/wiki/Q3493999","display_name":"Security information and event management","level":4,"score":0.36198896169662476},{"id":"https://openalex.org/C56739046","wikidata":"https://www.wikidata.org/wiki/Q192060","display_name":"Knowledge management","level":1,"score":0.35563087463378906},{"id":"https://openalex.org/C195094911","wikidata":"https://www.wikidata.org/wiki/Q14167904","display_name":"Process management","level":1,"score":0.34869280457496643},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.329012006521225},{"id":"https://openalex.org/C184842701","wikidata":"https://www.wikidata.org/wiki/Q370563","display_name":"Cloud computing security","level":3,"score":0.30026066303253174},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.2740944027900696},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.16826510429382324},{"id":"https://openalex.org/C17744445","wikidata":"https://www.wikidata.org/wiki/Q36442","display_name":"Political science","level":0,"score":0.14755216240882874},{"id":"https://openalex.org/C199539241","wikidata":"https://www.wikidata.org/wiki/Q7748","display_name":"Law","level":1,"score":0.09171837568283081},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1007/978-3-8348-9195-2_47","is_oa":false,"landing_page_url":"https://doi.org/10.1007/978-3-8348-9195-2_47","pdf_url":null,"source":{"id":"https://openalex.org/S4306464254","display_name":"Vieweg eBooks","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"ebook platform"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ISSE 2006 \u2014 Securing Electronic Busines Processes","raw_type":"book-chapter"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":27,"referenced_works":["https://openalex.org/W117007327","https://openalex.org/W1483280370","https://openalex.org/W1523253877","https://openalex.org/W1526098002","https://openalex.org/W1551592336","https://openalex.org/W1559498407","https://openalex.org/W1567188009","https://openalex.org/W1892050306","https://openalex.org/W2069673757","https://openalex.org/W2082789796","https://openalex.org/W2097154968","https://openalex.org/W2112154700","https://openalex.org/W2117818414","https://openalex.org/W2129527513","https://openalex.org/W2150071393","https://openalex.org/W2163022780","https://openalex.org/W2170496240","https://openalex.org/W2227392689","https://openalex.org/W2409772061","https://openalex.org/W2616308654","https://openalex.org/W2915925638","https://openalex.org/W3118517595","https://openalex.org/W4237410669","https://openalex.org/W4251647746","https://openalex.org/W4285719527","https://openalex.org/W6788651489","https://openalex.org/W6995947862"],"related_works":["https://openalex.org/W2120971814","https://openalex.org/W2508914475","https://openalex.org/W4310892428","https://openalex.org/W4293770853","https://openalex.org/W2356973015","https://openalex.org/W2362334938","https://openalex.org/W2777401565","https://openalex.org/W2033357182","https://openalex.org/W2248314326","https://openalex.org/W4299810435"],"abstract_inverted_index":{"A":[0],"recent":[1],"study":[2],"by":[3],"the":[4,39,55,58,67,75,96,106,167,174,183,204,207,219,226,229,236,252,262],"University":[5],"of":[6,26,60,77,95,109,141,169,206,210,228,231,238,242,254,264],"California":[7],"at":[8,23],"Berkeley":[9],"[UclaO3]":[10],"has":[11,120],"observed":[12],"that":[13,154,194,276],"information":[14,32,98],"in":[15,45,111,125,213,292],"e-mails":[16],"and":[17,43,57,62,87,101,177,188,199,202,241,267,288],"other":[18],"electronic":[19],"records":[20],"is":[21,74,250],"growing":[22],"a":[24,93,139,150,186,258,271,293],"rate":[25],"30%":[27],"per":[28],"year.":[29],"Secure,":[30],"efficient":[31],"asset":[33],"usage":[34],"lends":[35],"increasing":[36,107],"importance":[37],"to":[38,54,79,91,127,133,146,157,165,191,218,222,260,270,280,283,289],"integration,":[40],"protection,":[41],"analysis,":[42],"storage":[44],"organisational":[46,243],"systems.":[47,244],"Information":[48,102],"assets":[49],"are":[50,160],"valuable,":[51],"not":[52],"least":[53],"individual,":[56],"introduction":[59],"legislative":[61],"regulatory":[63],"frameworks,":[64],"such":[65],"as":[66,171,257],"Data":[68],"Protection":[69],"Act":[70],"acknowledges":[71],"this;":[72],"it":[73,163],"duty":[76],"organisations":[78,170],"exercise":[80],"Regulatory":[81,135],"Compliance":[82,136],"[IdcO4,":[83],"Fisma03,":[84],"SoxO2,":[85],"IsgiO6,":[86],"GrsmO6J,":[88],"largely":[89],"understood":[90],"be":[92,223],"component":[94],"organisation\u2019s":[97],"security":[99,112,142,158,198],"contexts":[100],"Lifecycle":[103],"Management":[104],"(ILM).Despite":[105],"number":[108,140],"publications":[110],"requirements":[113,129,159,201,212,233],"engineering":[114],"(RE),":[115],"little":[116],"or":[117],"no":[118],"research":[119,249],"so":[121,291],"far":[122],"taken":[123],"place":[124],"order":[126],"address":[128],"for":[130,149,185],"software":[131,239],"systems":[132,287],"which":[134],"applies.":[137],"Although":[138],"RE":[143,193,240,274],"approaches":[144,156],"appear":[145],"offer":[147],"potential":[148,220],"solution,":[151],"we":[152],"argue":[153],"current":[155],"inadequate":[161],"when":[162],"comes":[164],"addressing":[166],"issues":[168],"they":[172],"face":[173],"changing":[175],"legislation":[176],"regulation.This":[178],"position":[179],"paper":[180],"also":[181],"argues":[182],"need":[184],"flexible":[187],"responsive":[189],"approach":[190],"system":[192],"properly":[195],"distinguishes":[196],"between":[197],"compliance":[200,211,232,265,273],"facilitates":[203],"understanding":[205],"overall":[208],"role":[209],"RE.":[214],"It":[215],"calls":[216],"attention":[217],"benefits":[221],"had":[224],"from":[225,235],"unification":[227],"views":[230],"analysis":[234],"standpoints":[237],"Using":[245],"Problem":[246],"Frames,":[247],"our":[248],"exploring":[251],"use":[253],"conceptual":[255],"tools":[256],"foundation":[259],"model":[261],"impact":[263],"requirements,":[266],"will":[268],"lead":[269],"stronger":[272],"framework":[275],"allows":[277],"an":[278],"organisation":[279],"engineer":[281],"changes":[282],"their":[284],"existing":[285],"socio-technical":[286],"do":[290],"non-disruptive":[294],"manner.":[295]},"counts_by_year":[],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}