Skip to main content
SpringerLink
Log in

Ontology-Driven Audit Using the REA-Ontology

  • Conference paper
  • First Online:
Advanced Information Systems Engineering Workshops (CAiSE 2021)

Part of the book series: Lecture Notes in Business Information Processing ((LNBIP,volume 423))

Included in the following conference series:

  • 692 Accesses

Abstract

While blockchains are not yet ubiquitous in business practice, they are expected to serve as a platform to handle an increasing number of business transactions in a not-too-distant future. Smart contracts can be used to code and to enforce agreements between business parties. A significant difference between traditional and smart contracts is that once the actual events of the smart contract become part of a block in the blockchain, they are almost impossible to undo. Therefore, it is important that critical validity aspects of these smart contracts are explicitly represented. As smart contracts are software products too, it is therefore also critical that the coding of these critical validity aspects guarantees a faithful implementation of the validity checks. This paper suggests applying a combination of two approaches (i.e., ontology engineering and model-driven engineering) to the design and the implementation of smart contracts, in order to facilitate their audit through a clear separation of concerns. More precisely, this paper discusses the example of the REA ontology to provide the ontological commitment of the critical validity aspects of a contract, while MDE provides a tool to unambiguously translate the REA ontology’s contracting terms into a well-designed Smart Contract. This paper suggests that the resulting Smart Contract can support auditors’ assertions regarding exchanges between business partners and support the audit process.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

  1. Rittenberg, L.E., Bradley, J.: Schwieger: Auditing Concepts for a Changing Environment. Harcourt College Publishers, Orlando (2001)

    Google Scholar 

  2. Public Company Accounting Oversight Board: Auditing standard no. 5 – An audit of internal control over financial reporting that is integrated with an audit of financial statements. Exch. Organ. Behav. Teach. J. (2007)

    Google Scholar 

  3. Emam, S., Miller, J.: Test case prioritization using extended digraphs. ACM Trans. Softw. Eng. Methodol. 25, 1–41 (2015)

    Article  Google Scholar 

  4. Demillo, R.A.: Software Testing (2003)

    Google Scholar 

  5. Fraser, G.: Gamification of software testing. In: IEEE/ACM 12th International Workshop on Automation of Software Testing. pp. 2–7 (2017)

    Google Scholar 

  6. Hemmati, H., Arcuri, A., Briand, L.: Achieving scalable model-based testing through test case diversity. ACM Trans. Softw. Eng. Methodol. (2013). https://doi.org/10.1145/2430536.2430540

    Article  Google Scholar 

  7. Baskerville, R., Baiyere, A., Gregor, S., Hevner, A., Rossi, M.: Design science research contributions: finding a balance between artifact and theory. J. Assoc. Inf. Syst. 19, 3 (2018)

    Google Scholar 

  8. McCarthy, W.E., Geerts, G.L., Gal, G.: The REA Ontology (2021)

    Google Scholar 

  9. Scheynen, N.: Construction of web services using the MERODE approach, (2016)

    Google Scholar 

  10. Gašević, D., Djurić, D., Devedžić, V.: Model driven engineering and ontology development (2009). https://doi.org/10.1007/978-3-642-00282-3

  11. Dick, J., Hull, E., Jackson, K.: Requirements engineering (2017). https://doi.org/10.1007/978-3-319-61073-3

  12. Guarino, N.: Understanding, building and using ontologies. Int. J. Hum. Comput. Stud. 46, 293–310 (1997). https://doi.org/10.1006/ijhc.1996.0091

    Article  Google Scholar 

  13. Guarino, N., Oberle, D., Staab, S.: What is an ontology? Handbook on ontologies. In: Handbook on Ontologies SE - International Handbooks on Information Systems (2009)

    Google Scholar 

  14. Studer, R., Benjamins, V.R., Fensel, D.: Knowledge Engineering: Principles and methods. Data Knowl. Eng. 25 (1998). https://doi.org/10.1016/S0169-023X(97)00056-6

  15. Iqbal, R., Murad, M.A.A., Mustapha, A., Sharef, N.M.: An analysis of ontology engineering methodologies: a literature review. Res. J. Appl. Sci. Eng. Technol. 6, 2993–3000 (2013). https://doi.org/10.19026/rjaset.6.3684.

  16. Guarino, N.: Semantic matching: formal ontological distinctions for information organization, extraction, and integration. In: Pazienza, M.T. (ed.) SCIE 1997. LNCS (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 1299, pp. 139–170. Springer, Heidelberg (1997). https://doi.org/10.1007/3-540-63438-x_8

  17. Al-Arfaj, A., Al-Salman, A.: Ontology construction from text: challenges and trends. Int. J. Artif. Intell. Expert Syst. 6, 15–26 (2015)

    Google Scholar 

  18. Cimiano, P., Völker, J., Studer, R.: Ontologies on demand? A description of the state-of-the-art, applications, challenges and trends for ontology learning from text. Information-wiss. und Prax. 57, 315–320 (2006)

    Google Scholar 

  19. Snoeck, M.: Enterprise Information Systems Engineering: The MERODE Approach. Springer, Cham (2014). https://doi.org/10.1007/978-3-319-10145-3

  20. Martin, J.: Information Engineering. Prentice Hall, Englewood Cliffs (1989)

    Google Scholar 

  21. Snoeck, M., Dedene, G.: Existence dependency: The key to semantic integrity between structural and behavioral aspects of object types. IEEE Trans. Softw. Eng. 24, 233–251 (1998)

    Article  Google Scholar 

  22. Dedene, G., Snoeck, M.: Formal deadlock elimination in an object oriented conceptual schema. Data Knowl. Eng. 15, 1–30 (1995)

    Article  Google Scholar 

  23. Snoeck, M., Michiels, C., Dedene, G.: Consistency by construction: the case of MERODE. In: Jeusfeld, M.A., Pastor, Ó. (eds.) ER 2003. LNCS, vol. 2814, pp. 105–117. Springer, Heidelberg (2003). https://doi.org/10.1007/978-3-540-39597-3_11

    Chapter  Google Scholar 

  24. Monsieur, G., Snoeck, M.: PIM to PSM transformations for an event driven architecture in an educational tool. Milestones, Model. Mappings Model. Archit. 55–63 (2006)

    Google Scholar 

  25. Sedrakyan, G., Snoeck, M., Poelmans, S.: Assessing the effectiveness of feedback enabled simulation in teaching conceptual modeling. Comput. Educ. 78, 367–382 (2014). https://doi.org/10.1016/j.compedu.2014.06.014

    Article  Google Scholar 

  26. Laurier, W., Horiuchi, S., Snoeck, M.: An executable axiomatization of the REA2 ontology. J. Inf. Syst. ISYS-19–026 (2021). https://doi.org/10.2308/ISYS-19-026

  27. Amaral de Sousa, V., Burnay, C., Snoeck, M.: B-MERODE: a model-driven engineering and artifact-centric approach to generate blockchain-based information systems. In: Dustdar, S., Yu, E., Salinesi, C., Rieu, D., Pant, V. (eds.) CAiSE. LNCS, vol. 12127, pp. 117–133. Springer, Cham (2020). https://doi.org/10.1007/978-3-030-49435-3_8

    Chapter  Google Scholar 

  28. Tarnas, R.: The passion of the western mind: understanding the ideas that have shaped our world view. In: The Passion of the Western Mind (1991)

    Google Scholar 

  29. Xu, X., et al.: The blockchain as a software connector. In: 13th Working IEEE/IFIP Conference on Software Architecture (WICSA), pp. 182–191 (2016)

    Google Scholar 

  30. Chen, Y., Liu, J.: Distributed community detection over blockchain networks based on structural entropy. In: ACM International Symposium on Blockchain and Secure Critical Infrastructure, pp. 3–12 (2019)

    Google Scholar 

  31. Laurier, W., Kiehn, J., Polovina, S.: REA2: a unified formalisation of the resource-event-agent ontology. Appl. Ontol. 13, 201–224 (2018). https://doi.org/10.3233/AO-180198

    Article  Google Scholar 

  32. Laurier, W., Collet, R., Desguin, S., Fauconnier, B.: Ontology-aware Model-driven Architecture A Resource-Event-Agent implementation for the Blockchain. 日本情報経営学会誌. 41, 1–12 (2021)

    Google Scholar 

  33. Allee, V.: Value network analysis and value conversion of tangible and intangible assets. J. Intellect. Cap. 9, 5–24 (2008). https://doi.org/10.1108/14691930810845777

    Article  Google Scholar 

  34. CGMA, C.F.E.: Blockchain augmented audit–Benefits and challenges for accounting professionals. J. Theor. Account. Res. 14, 117–137 (2018)

    Google Scholar 

  35. Raphael, J.: Rethinking the audit: Innovation is transforming how audits are conducted-and even what it means to be an auditor. J. Account. 223, 28 (2017)

    Google Scholar 

  36. Rozario, A.M., Vasarhelyi, M.: Auditing with smart contracts. Int. J. Digit. Account. Res. 18, 1–27 (2018)

    Google Scholar 

  37. Fan, K., Bao, Z., Liu, M., Vasilakos, A.V., Shi, W.: Dredas: decentralized, reliable and efficient remote outsourced data auditing scheme with blockchain smart contract for industrial IoT. Futur. Gener. Comput. Syst. 110, 665–674 (2020). https://doi.org/10.1016/j.future.2019.10.014

  38. Kalis, R.: Using blockchain to validate audit trail data in private business applications. Univ. Amsterdam, June 2018

    Google Scholar 

  39. Magazzeni, D., McBurney, P., Nash, W.: Validation and verification of smart contracts: a research agenda. Computer (Long. Beach. Calif). 50, 50–57 (2017). https://doi.org/10.1109/MC.2017.3571045

  40. Clack, C.D.: Smart Contract Templates: legal semantics and code validation. J. Digit. Bank. 2, 338–352 (2018)

    Google Scholar 

  41. Liu, J., Liu, Z.: A survey on security verification of blockchain smart contracts. IEEE Access. 7, 77894–77904 (2019). https://doi.org/10.1109/ACCESS.2019.2921624

    Article  Google Scholar 

  42. Harz, D., Knottenbelt, W.: Towards safer smart contracts: a survey of languages and verification methods. arXiv Prepr. arXiv1809.09805 (2018)

    Google Scholar 

  43. Almakhour, M., Sliman, L., Samhat, A.E., Mellouk, A.: Verification of smart contracts: a survey. Pervasive Mob. Comput. 67, 101227 (2020). https://doi.org/10.1016/j.pmcj.2020.101227.

  44. Tolmach, P., Li, Y., Lin, S.-W., Liu, Y., Li, Z.: A survey of smart contract formal specification and verification. arXiv Prepr. arXiv2008.02712 (2020)

    Google Scholar 

  45. Marescotti, M., Otoni, R., Alt, L., Eugster, P., Hyvärinen, A.E.J., Sharygina, N.: Accurate smart contract verification through direct modelling. In: Margaria, T., Steffen, B. (eds.) ISoLA. LNCS, vol. 12478, pp. 178–194. Springer, Cham (2020). https://doi.org/10.1007/978-3-030-61467-6_12

    Chapter  Google Scholar 

  46. Braga, B.F.B., Almeida, J.P.A., Guizzardi, G., Benevides, A.B.: Transforming OntoUML into Alloy: towards conceptual model validation using a lightweight formal method. Innov. Syst. Softw. Eng. 6, 55–63 (2010). https://doi.org/10.1007/s11334-009-0120-5

    Article  Google Scholar 

  47. Petrović, N., Tošić, M.: Semantic approach to smart contract verification. Facta Univ. Ser. Autom. Control Robot. 19, 21–37 (2020)

    Google Scholar 

  48. Li, A., Choi, J.A., Long, F.: Securing smart contract with runtime validation. In: Proceedings of the 41st ACM SIGPLAN Conference on Programming Language Design and Implementation, pp. 438–453 (2020)

    Google Scholar 

  49. Su, S., Wang, K., Kim, H.S.: Smartsupply: smart contract based validation for supply chain blockchain. In: 2018 IEEE International Conference on Internet of Things (iThings) and IEEE Green Computing and Communications (GreenCom) and IEEE Cyber, Physical and Social Computing (CPSCom) and IEEE Smart Data (SmartData), pp. 988–993 (2018). https://doi.org/10.1109/Cybermatics_2018.2018.00186

Download references

Author information

Authors and Affiliations

  1. Isenberg School of Management, University of Massachusetts Amherst, Amherst, MA, 01003, USA

    Graham Gal

  2. Research Centre for Information Systems Engineering (LIRIS), KU Leuven, Leuven, Belgium

    Monique Snoeck

  3. NODES, Université Saint-Louis–Bruxelles, Brussels, Belgium

    Wim Laurier

Authors
  1. Graham Gal
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Monique Snoeck
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Wim Laurier
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Graham Gal .

Editor information

Editors and Affiliations

  1. The University of Melbourne, Carlton, VIC, Australia

    Artem Polyvyanyy

  2. Technical University of Munich, Garching, Germany

    Stefanie Rinderle-Ma

Rights and permissions

Reprints and permissions

Copyright information

© 2021 Springer Nature Switzerland AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Gal, G., Snoeck, M., Laurier, W. (2021). Ontology-Driven Audit Using the REA-Ontology. In: Polyvyanyy, A., Rinderle-Ma, S. (eds) Advanced Information Systems Engineering Workshops. CAiSE 2021. Lecture Notes in Business Information Processing, vol 423. Springer, Cham. https://doi.org/10.1007/978-3-030-79022-6_10

Download citation

  • DOI: https://doi.org/10.1007/978-3-030-79022-6_10

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-030-79021-9

  • Online ISBN: 978-3-030-79022-6

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation