Adapting Business Process Modeling Techniques for Risk Analysis of Computer Based Information Systems

  • Martin Diergardt
Conference paper


This paper provides a novel approach for the modeling of undesired event sequences in complex computer based information systems. In doing so, it shows how object oriented event process chains (oEPC) are adapted for modeling undesired event sequences and presents a case study, where the approach is applied. Based on this approach system dynamcs and complexity can be analyzed and an efficient risk analysis approach can be established.


Information System Event Sequence Causal Loop Diagram Business Impact Event Drive Process Chain 
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.


Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.


  1. 1.
    Sterman J.D. Business Dynamics. McGraw-Hill, New York, 2000Google Scholar
  2. 2.
    Basle Committee on Banking Supervision. Consultative Document. Overview of the New Basel Capital Accord. 2001Google Scholar
  3. 3.
    Mock R., Möhle F., Fischer A. Risk Analysis Related Issues of IT-Systems: Case Studies in Review. In: PSAM6. Elsevier, Amsterdam, 2002Google Scholar
  4. 4.
    Scheer A.-W. Architektur integrierter Informationssysteme: Grundlagen der Unternehmensmodellierung, 2nd Edition. Springer Verlag, Heidelberg, 1992CrossRefGoogle Scholar
  5. 5.
    Booch G., Rumbaugh J., Jacobson I. The Unified Modeling Language User Guide. Addison Wesley Longman, Reading, MA, 1999Google Scholar
  6. 6.
    Internet Security Systems, Alerts: Microsoft SQL Slammer Worm Propagation. Atlanta: January 25, 2003 []Google Scholar

Copyright information

© Springer-Verlag London 2004

Authors and Affiliations

  • Martin Diergardt
    • 1
  1. 1.Laboratory for Safety AnalysisSwiss Federal Institute of TechnologyZurichSwitzerland

Personalised recommendations