Abstract
While blockchains are not yet ubiquitous in business practice, they are expected to serve as a platform to handle an increasing number of business transactions in a not-too-distant future. Smart contracts can be used to code and to enforce agreements between business parties. A significant difference between traditional and smart contracts is that once the actual events of the smart contract become part of a block in the blockchain, they are almost impossible to undo. Therefore, it is important that critical validity aspects of these smart contracts are explicitly represented. As smart contracts are software products too, it is therefore also critical that the coding of these critical validity aspects guarantees a faithful implementation of the validity checks. This paper suggests applying a combination of two approaches (i.e., ontology engineering and model-driven engineering) to the design and the implementation of smart contracts, in order to facilitate their audit through a clear separation of concerns. More precisely, this paper discusses the example of the REA ontology to provide the ontological commitment of the critical validity aspects of a contract, while MDE provides a tool to unambiguously translate the REA ontology’s contracting terms into a well-designed Smart Contract. This paper suggests that the resulting Smart Contract can support auditors’ assertions regarding exchanges between business partners and support the audit process.
Keywords
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsReferences
Rittenberg, L.E., Bradley, J.: Schwieger: Auditing Concepts for a Changing Environment. Harcourt College Publishers, Orlando (2001)
Public Company Accounting Oversight Board: Auditing standard no. 5 – An audit of internal control over financial reporting that is integrated with an audit of financial statements. Exch. Organ. Behav. Teach. J. (2007)
Emam, S., Miller, J.: Test case prioritization using extended digraphs. ACM Trans. Softw. Eng. Methodol. 25, 1–41 (2015)
Demillo, R.A.: Software Testing (2003)
Fraser, G.: Gamification of software testing. In: IEEE/ACM 12th International Workshop on Automation of Software Testing. pp. 2–7 (2017)
Hemmati, H., Arcuri, A., Briand, L.: Achieving scalable model-based testing through test case diversity. ACM Trans. Softw. Eng. Methodol. (2013). https://doi.org/10.1145/2430536.2430540
Baskerville, R., Baiyere, A., Gregor, S., Hevner, A., Rossi, M.: Design science research contributions: finding a balance between artifact and theory. J. Assoc. Inf. Syst. 19, 3 (2018)
McCarthy, W.E., Geerts, G.L., Gal, G.: The REA Ontology (2021)
Scheynen, N.: Construction of web services using the MERODE approach, (2016)
Gašević, D., Djurić, D., Devedžić, V.: Model driven engineering and ontology development (2009). https://doi.org/10.1007/978-3-642-00282-3
Dick, J., Hull, E., Jackson, K.: Requirements engineering (2017). https://doi.org/10.1007/978-3-319-61073-3
Guarino, N.: Understanding, building and using ontologies. Int. J. Hum. Comput. Stud. 46, 293–310 (1997). https://doi.org/10.1006/ijhc.1996.0091
Guarino, N., Oberle, D., Staab, S.: What is an ontology? Handbook on ontologies. In: Handbook on Ontologies SE - International Handbooks on Information Systems (2009)
Studer, R., Benjamins, V.R., Fensel, D.: Knowledge Engineering: Principles and methods. Data Knowl. Eng. 25 (1998). https://doi.org/10.1016/S0169-023X(97)00056-6
Iqbal, R., Murad, M.A.A., Mustapha, A., Sharef, N.M.: An analysis of ontology engineering methodologies: a literature review. Res. J. Appl. Sci. Eng. Technol. 6, 2993–3000 (2013). https://doi.org/10.19026/rjaset.6.3684.
Guarino, N.: Semantic matching: formal ontological distinctions for information organization, extraction, and integration. In: Pazienza, M.T. (ed.) SCIE 1997. LNCS (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 1299, pp. 139–170. Springer, Heidelberg (1997). https://doi.org/10.1007/3-540-63438-x_8
Al-Arfaj, A., Al-Salman, A.: Ontology construction from text: challenges and trends. Int. J. Artif. Intell. Expert Syst. 6, 15–26 (2015)
Cimiano, P., Völker, J., Studer, R.: Ontologies on demand? A description of the state-of-the-art, applications, challenges and trends for ontology learning from text. Information-wiss. und Prax. 57, 315–320 (2006)
Snoeck, M.: Enterprise Information Systems Engineering: The MERODE Approach. Springer, Cham (2014). https://doi.org/10.1007/978-3-319-10145-3
Martin, J.: Information Engineering. Prentice Hall, Englewood Cliffs (1989)
Snoeck, M., Dedene, G.: Existence dependency: The key to semantic integrity between structural and behavioral aspects of object types. IEEE Trans. Softw. Eng. 24, 233–251 (1998)
Dedene, G., Snoeck, M.: Formal deadlock elimination in an object oriented conceptual schema. Data Knowl. Eng. 15, 1–30 (1995)
Snoeck, M., Michiels, C., Dedene, G.: Consistency by construction: the case of MERODE. In: Jeusfeld, M.A., Pastor, Ó. (eds.) ER 2003. LNCS, vol. 2814, pp. 105–117. Springer, Heidelberg (2003). https://doi.org/10.1007/978-3-540-39597-3_11
Monsieur, G., Snoeck, M.: PIM to PSM transformations for an event driven architecture in an educational tool. Milestones, Model. Mappings Model. Archit. 55–63 (2006)
Sedrakyan, G., Snoeck, M., Poelmans, S.: Assessing the effectiveness of feedback enabled simulation in teaching conceptual modeling. Comput. Educ. 78, 367–382 (2014). https://doi.org/10.1016/j.compedu.2014.06.014
Laurier, W., Horiuchi, S., Snoeck, M.: An executable axiomatization of the REA2 ontology. J. Inf. Syst. ISYS-19–026 (2021). https://doi.org/10.2308/ISYS-19-026
Amaral de Sousa, V., Burnay, C., Snoeck, M.: B-MERODE: a model-driven engineering and artifact-centric approach to generate blockchain-based information systems. In: Dustdar, S., Yu, E., Salinesi, C., Rieu, D., Pant, V. (eds.) CAiSE. LNCS, vol. 12127, pp. 117–133. Springer, Cham (2020). https://doi.org/10.1007/978-3-030-49435-3_8
Tarnas, R.: The passion of the western mind: understanding the ideas that have shaped our world view. In: The Passion of the Western Mind (1991)
Xu, X., et al.: The blockchain as a software connector. In: 13th Working IEEE/IFIP Conference on Software Architecture (WICSA), pp. 182–191 (2016)
Chen, Y., Liu, J.: Distributed community detection over blockchain networks based on structural entropy. In: ACM International Symposium on Blockchain and Secure Critical Infrastructure, pp. 3–12 (2019)
Laurier, W., Kiehn, J., Polovina, S.: REA2: a unified formalisation of the resource-event-agent ontology. Appl. Ontol. 13, 201–224 (2018). https://doi.org/10.3233/AO-180198
Laurier, W., Collet, R., Desguin, S., Fauconnier, B.: Ontology-aware Model-driven Architecture A Resource-Event-Agent implementation for the Blockchain. 日本情報経営学会誌. 41, 1–12 (2021)
Allee, V.: Value network analysis and value conversion of tangible and intangible assets. J. Intellect. Cap. 9, 5–24 (2008). https://doi.org/10.1108/14691930810845777
CGMA, C.F.E.: Blockchain augmented audit–Benefits and challenges for accounting professionals. J. Theor. Account. Res. 14, 117–137 (2018)
Raphael, J.: Rethinking the audit: Innovation is transforming how audits are conducted-and even what it means to be an auditor. J. Account. 223, 28 (2017)
Rozario, A.M., Vasarhelyi, M.: Auditing with smart contracts. Int. J. Digit. Account. Res. 18, 1–27 (2018)
Fan, K., Bao, Z., Liu, M., Vasilakos, A.V., Shi, W.: Dredas: decentralized, reliable and efficient remote outsourced data auditing scheme with blockchain smart contract for industrial IoT. Futur. Gener. Comput. Syst. 110, 665–674 (2020). https://doi.org/10.1016/j.future.2019.10.014
Kalis, R.: Using blockchain to validate audit trail data in private business applications. Univ. Amsterdam, June 2018
Magazzeni, D., McBurney, P., Nash, W.: Validation and verification of smart contracts: a research agenda. Computer (Long. Beach. Calif). 50, 50–57 (2017). https://doi.org/10.1109/MC.2017.3571045
Clack, C.D.: Smart Contract Templates: legal semantics and code validation. J. Digit. Bank. 2, 338–352 (2018)
Liu, J., Liu, Z.: A survey on security verification of blockchain smart contracts. IEEE Access. 7, 77894–77904 (2019). https://doi.org/10.1109/ACCESS.2019.2921624
Harz, D., Knottenbelt, W.: Towards safer smart contracts: a survey of languages and verification methods. arXiv Prepr. arXiv1809.09805 (2018)
Almakhour, M., Sliman, L., Samhat, A.E., Mellouk, A.: Verification of smart contracts: a survey. Pervasive Mob. Comput. 67, 101227 (2020). https://doi.org/10.1016/j.pmcj.2020.101227.
Tolmach, P., Li, Y., Lin, S.-W., Liu, Y., Li, Z.: A survey of smart contract formal specification and verification. arXiv Prepr. arXiv2008.02712 (2020)
Marescotti, M., Otoni, R., Alt, L., Eugster, P., Hyvärinen, A.E.J., Sharygina, N.: Accurate smart contract verification through direct modelling. In: Margaria, T., Steffen, B. (eds.) ISoLA. LNCS, vol. 12478, pp. 178–194. Springer, Cham (2020). https://doi.org/10.1007/978-3-030-61467-6_12
Braga, B.F.B., Almeida, J.P.A., Guizzardi, G., Benevides, A.B.: Transforming OntoUML into Alloy: towards conceptual model validation using a lightweight formal method. Innov. Syst. Softw. Eng. 6, 55–63 (2010). https://doi.org/10.1007/s11334-009-0120-5
Petrović, N., Tošić, M.: Semantic approach to smart contract verification. Facta Univ. Ser. Autom. Control Robot. 19, 21–37 (2020)
Li, A., Choi, J.A., Long, F.: Securing smart contract with runtime validation. In: Proceedings of the 41st ACM SIGPLAN Conference on Programming Language Design and Implementation, pp. 438–453 (2020)
Su, S., Wang, K., Kim, H.S.: Smartsupply: smart contract based validation for supply chain blockchain. In: 2018 IEEE International Conference on Internet of Things (iThings) and IEEE Green Computing and Communications (GreenCom) and IEEE Cyber, Physical and Social Computing (CPSCom) and IEEE Smart Data (SmartData), pp. 988–993 (2018). https://doi.org/10.1109/Cybermatics_2018.2018.00186
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2021 Springer Nature Switzerland AG
About this paper
Cite this paper
Gal, G., Snoeck, M., Laurier, W. (2021). Ontology-Driven Audit Using the REA-Ontology. In: Polyvyanyy, A., Rinderle-Ma, S. (eds) Advanced Information Systems Engineering Workshops. CAiSE 2021. Lecture Notes in Business Information Processing, vol 423. Springer, Cham. https://doi.org/10.1007/978-3-030-79022-6_10
Download citation
DOI: https://doi.org/10.1007/978-3-030-79022-6_10
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-030-79021-9
Online ISBN: 978-3-030-79022-6
eBook Packages: Computer ScienceComputer Science (R0)