Abstract
We argue that the trustworthiness of evolving software systems can be significantly enhanced by a rigorous process of independent on-line monitoring throughout the evolutionary lifetime of the system. Such monitoring can prevent fraud, encourage careful maintenance, and serve as an early detector of irregularities in the state and behavior of the system.
Unfortunately, there is a conflict between the concepts of on-line and independent monitoring. This conflict is due to the fact that on-line monitoring requires the embedding of some kinds of sensors in the base-system. But the introduction of such sensors requires a degree of cooperation with the developers of the base-system, and may interfere with the operations of that system, contrary to the requirements of independent monitoring. We describe a way to resolve this conflict by means of a concept of continuously auditable system introduced in this paper.
Work supported in part by NSF grants No. CCR-9308773
Chapter PDF
Similar content being viewed by others
References
A.D. Baily, J. Gerlach, P. McAfee, and A.B. Whinston. Internal accounting control in the office of the future. The IEEE Computer Journal, May 1981.
Paolo Ciancarini. Enacting rule-based software processes with polis. Technical report, University of Pisa, october 1991.
G. et al. Kaiser. Intelligent assistance for software development and maintenance. IEEE Software, May 1988.
N.H. Minsky. Law-governed systems. The IEE Software Engineering Journal, September 1991.
N.H. Minsky. Independent on-line monitoring of evolving sys- tems. In Proceedings of the 18th International Conference on Software Engineering (ICSE),March 1996. (also available through http://www.cs.rutgers.edu/-minsky/index.html).
N.H. Minsky. Law-governed regularities in object systems; part 1: An abstract model. Theory and Practice of Object Systems (TAPOS),1996. (to be published; also available through http://www.cs.rutgers.edu/ minsky/index.html).
N.H. Minsky and P. Pal. Law-governed regularities in object sys- tems; part 2: A concrete implementation. Theory and Practice of Object Systems (TAPOS),1996. (to be published; also available through http://www.cs.rutgers.edu/ minsky/index.html).
N.H. Minsky and V. Ungureanu. Regulated coordination in open distributed systems. In Proc. of Coordination’97: Second International Conference on Coordination Models and Languages; Berlin 1997,September 1997. (to be published).
P. Pal. Law-governed support for realizing design patterns. In Proceedings of the 17th Conference on Technology of Object-Oriented Languages and Systems(TOOLS-17), pages 25–34, August 1995.
Beth A. Schroeder. On-line monitoring: A tutorial. IEEE Computer, pages 72–78, June 1995.
Miklos A. Vasarhelyi and Fern B. Halper. The continuous audit of online systems. Auditing: A Journal of Practice and Theory, 10(1), 1991.
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 1997 Springer Science+Business Media Dordrecht
About this chapter
Cite this chapter
Minsky, N.H. (1997). Towards Continuously Auditable Systems. In: Jajodia, S., List, W., McGregor, G., Strous, L. (eds) Integrity and Internal Control in Information Systems. IICIS 1997. IFIP — The International Federation for Information Processing. Springer, Boston, MA. https://doi.org/10.1007/978-0-387-35317-3_2
Download citation
DOI: https://doi.org/10.1007/978-0-387-35317-3_2
Publisher Name: Springer, Boston, MA
Print ISBN: 978-1-4757-5529-9
Online ISBN: 978-0-387-35317-3
eBook Packages: Springer Book Archive