Ensuring compliance of software systems with government regulations, policies and laws is a complex problem. Generally speaking, solutions to the problem first identify rights and obligations defined in the law and then treat these as requirements for the system under design. This work examines the challenge of developing tool support for extracting such requirements from legal documents. To address this challenge, we have developed a tool called GaiusT1 . The tool is founded on a framework for textual semantic annotation. It semi-automatically generates elements of requirements models, including actors, rights and obligations. We present the complexities of annotating prescriptive text, the architecture of GaiusT, and the process by which annotation is accomplished. We also present experimental results from two case studies to illustrate the application of the tool and its effectiveness relative to manual efforts. The first case study is based on the US Health Insurance Portability and Accountability Act (HIPAA), while the second analyzes the Italian accessibility law for information technology instruments.

GaiusT: Supporting the Extraction of Rights and Obligations for Regulatory Compliance / Zeni, Nicola; Kiyavitskaya, Nadzeya; Mich, Luisa; J. R., Cordy; Mylopoulos, Ioannis. - In: REQUIREMENTS ENGINEERING. - ISSN 0947-3602. - STAMPA. - 20:1(2015), pp. 1-22. [10.1007/s00766-013-0181-8]

GaiusT: Supporting the Extraction of Rights and Obligations for Regulatory Compliance

Zeni, Nicola;Kiyavitskaya, Nadzeya;Mich, Luisa;Mylopoulos, Ioannis
2015-01-01

Abstract

Ensuring compliance of software systems with government regulations, policies and laws is a complex problem. Generally speaking, solutions to the problem first identify rights and obligations defined in the law and then treat these as requirements for the system under design. This work examines the challenge of developing tool support for extracting such requirements from legal documents. To address this challenge, we have developed a tool called GaiusT1 . The tool is founded on a framework for textual semantic annotation. It semi-automatically generates elements of requirements models, including actors, rights and obligations. We present the complexities of annotating prescriptive text, the architecture of GaiusT, and the process by which annotation is accomplished. We also present experimental results from two case studies to illustrate the application of the tool and its effectiveness relative to manual efforts. The first case study is based on the US Health Insurance Portability and Accountability Act (HIPAA), while the second analyzes the Italian accessibility law for information technology instruments.
2015
1
Zeni, Nicola; Kiyavitskaya, Nadzeya; Mich, Luisa; J. R., Cordy; Mylopoulos, Ioannis
GaiusT: Supporting the Extraction of Rights and Obligations for Regulatory Compliance / Zeni, Nicola; Kiyavitskaya, Nadzeya; Mich, Luisa; J. R., Cordy; Mylopoulos, Ioannis. - In: REQUIREMENTS ENGINEERING. - ISSN 0947-3602. - STAMPA. - 20:1(2015), pp. 1-22. [10.1007/s00766-013-0181-8]
File in questo prodotto:
File Dimensione Formato  
GaiusT.pdf

Solo gestori archivio

Tipologia: Versione editoriale (Publisher’s layout)
Licenza: Tutti i diritti riservati (All rights reserved)
Dimensione 1.72 MB
Formato Adobe PDF
1.72 MB Adobe PDF   Visualizza/Apri

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11572/33064
Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus 71
  • ???jsp.display-item.citation.isi??? 45
social impact