A Survey of Formal Business Process Veriﬁcation

From Soundness to Variability

Heerko Groefsema and Doina Bucur

Johann Bernoulli Institute for Mathematics and Computer Science,

University of Groningen, Nijenborgh 9, 9747 AG Groningen, the Netherlands

{h.groefsema, d.bucur}@rug.nl

Keywords:

Business Process Management, Veriﬁcation, Model Checking, Survey.

Abstract:

Formal veriﬁcation of business process models is of interest to a number of application areas, including check-

ing for basic process correctness, business compliance, and process variability. A large amount of work on

these topics exist, while a comprehensive overview of the ﬁeld and its directions is lacking. We provide an

overview and critical reﬂections on existing approaches.

1 INTRODUCTION

Business process modeling helps businesses to in-

crease the quality of their processes. Formal tech-

niques are used to model, implement, execute, and

monitor business process models. Model checking

is a technique which veriﬁes a given system model

for compliance with a speciﬁcation of interest, for

various practical goals including ensuring basic cor-

rectness of processes, business compliance check-

ing, and process variability. A related survey (Mori-

moto, 2008) provides an overview of business process

checking, but does not consider compliance and vari-

ability as supported through formal veriﬁcation, while

in (Aiello et al., 2010), we survey variability for busi-

ness processes.

While a large amount of work exists in the ﬁeld

of business process veriﬁcation, it lacks an overview

of the state of the ﬁeld and its related formal veriﬁ-

cation frameworks. As such, in the present treatment,

we aim to provide an overview of formal veriﬁcation

goals, techniques, and frameworks for business pro-

cess modeling, and give critical reﬂections.

Frameworks aiming at the veriﬁcation of business

process models exist. They supports various process-

speciﬁcation formalisms, e.g., imperative, declara-

tive, event-driven, or artifact-centric. In imperative

speciﬁcation formalisms, processes are modelled as

sets of tasks or activities, gates, and events inter-

linked by ﬂows or transitions. Each activity describes

a single unit of work and the transitions describe the

order between these units of work. Common nota-

tions include Business Process Model and Notation

(BPMN) (OMG, 2011), Business Process Execution

Language (BPEL) (Oasis, 2007), Uniﬁed Modeling

Language (UML) activity diagrams (OMG, 2011),

and Yet Another Workﬂow Language (YAWL) (Hof-

stede et al., 2010). Alternatively, declarative speciﬁ-

cation formalisms, such as (Pesic and van der Aalst,

2006), model processes without distinct ﬂow controls

which specify order between units of work. Instead,

these speciﬁcations express a process model as a set

of activities and a set of constraints over these activ-

ities, with the constraints restricting the possible in-

clusion and ordering of the activities. Any process

behaviour not prohibited by these constraints is valid.

Event-driven speciﬁcation is another approach to

business process modelling. Deﬁned in (Keller et al.,

1992), Event-driven Process Chains (EPC) are di-

rected graphs mainly consisting of events, functions

(activities), and logical connectors (gates). Unlike im-

perative speciﬁcations, EPC do not model node order-

ing explicitly. Although EPC are known for their in-

telligible notation and simplicity, their lack of seman-

tics is a topic of discussion (van der Aalst, 1999). Fi-

nally, artifact-centric speciﬁcations focus on the evo-

lution of business entities and data. Originally pro-

posed in (Nigam and Caswell, 2003), such speciﬁca-

tions incorporate the notion of the lifecycle of busi-

ness artifacts, such as data—which is ignored by most

other speciﬁcations.

In what follows, Section 2 examines the tech-

niques and goals of business processes veriﬁcation.

We classify and discuss veriﬁcation frameworks in

Section 3, and conclude in Section 4.

198

Groefsema H. and Bucur D.

A Survey of Formal Business Process VeriﬁcationFrom Soundness to Variability.

DOI: 10.5220/0004775401980203

In Proceedings of the Third International Symposium on Business Modeling and Software Design (BMSD 2013), pages 198-203

ISBN: 978-989-8565-56-3

2 BUSINESS PROCESS MODEL

CHECKING

Business processes veriﬁcation can be based on sev-

eral algorithmic techniques (and some supporting in-

termediary modelling formalisms), and be used for a

number of goals. Next we overview these.

2.1 Veriﬁcation Techniques

Petri Nets are state-transition systems used to analyze

distributed systems. They are amenable to intuitive

graphical notation which, unlike most of the process

notations discussed in Section 1, include a mathemat-

ical deﬁnition of its execution semantics. A number

of subclasses of Petri Nets have been deﬁned, most

notably the sub-class of Workﬂow (WF) nets (van der

Aalst, 1998) which is applied as an intermediary for-

malism in the veriﬁcation of business processes. Be-

sides Petri Nets, a system may also be modelled as

a ﬁnite state machine (FSM)—a directed graph of

nodes and edges, with nodes representing a system

state system and edges representing a change in state.

Both Petri Nets and FSM-like models are then veri-

ﬁed against a speciﬁcation or correctness property.

On the other hand, generic model checkers, e.g.,

SPIN (Holzmann, 2004) and nuSMV2 (Cimatti et al.,

1999), implement search algorithms to verify any sys-

tem modelled in the model checker’s input languages.

Of these, notable is the Process Meta-Language, or

Promela, used by SPIN. Business processes can be

remodelled using Promela, with the Promela imple-

mentation then internally translated into an automaton

and veriﬁed against a correctness property.

Correctness properties may be informal speciﬁ-

cations, process models, or logic formulas. Infor-

mal speciﬁcations include properties deﬁned as sim-

ple tuples or programming methods. Process mod-

els themselves can be used as correctness properties

as well. In this case, the original business process

model is veriﬁed to be a reﬁnement of the correctness

model. Logic properties are formulas in logics rang-

ing from propositional logic to deontic and temporal

logic. Deontic logics reason about obligations and

permissions. Temporal logics include Linear Tempo-

ral Logic (LTL) and Computation Tree Logic (CTL),

a branching-time logic. LTL speciﬁes properties (e.g.,

the universality of a certain state property, and the or-

der of states) over states occurring on process exe-

cution paths. CTL extends this set of temporal op-

erators with path quantiﬁers, such that formulas can

specify properties over branching executions. Exten-

sions of these logics are common for process veriﬁ-

cation. They include Past-time LTL (PLTL), but also

novel logics for business process speciﬁcation.

2.2 Goals of Veriﬁcation

Business process veriﬁcation is the act of determin-

ing if a business process model is correct with regard

to a set of formal correctness properties. Often, veri-

ﬁcation is automated by tools known as analyzers or

model checkers. Several goals for using veriﬁcation

are presented in the business process literature.

The ﬁrst goal is verifying basic properties such as

reachability and termination. Reachability of a busi-

ness activity requires an execution path to exist lead-

ing to that activity starting from the initial activities.

A termination property requires that all possible exe-

cution traces terminate. Business process soundness,

a property originally proposed in the area of Petri Net

veriﬁcation, is known as the combination of these

two properties plus a third: the absence of related

running activities at process termination (i.e., proper

completion). Avoiding the deployment of erroneous

processes that do not conform with these properties

is obviously advantageous: “[erroneously] designed

workﬂow models can result in failed workﬂow pro-

cesses, execution errors, and disgruntled customers

and employees” (Bi and Zhao, 2004).

The second goal for business process veriﬁcation

is business compliance. Compliance checks whether

process models conform with speciﬁcations, which

in this case can be another process model or a set

of rules, such as (inter)national laws and standards.

When verifying compliance, rules are often speciﬁed

using a formal logic over the entities (e.g., events, ac-

tivities) of the business process model. In other cases,

these rules are informally speciﬁed. For example, reg-

ulations could specify that before processing a wire

transfer, a bank should identify if any sanctions exist

regarding the involved parties.

The third goal of veriﬁcation of process models,

variability, extends upon compliance. “In the con-

text of BPM, variability indicates that parts of a busi-

ness process remain variable, or not fully deﬁned, in

order to support different versions of the same pro-

cess depending on the intended use or execution con-

text” (Aiello et al., 2010). Variability aims to support

different versions of the same process. This includes

support of process families at design-time, when a

new process variant can be derived from a generic

process, and process ﬂexibility or adaptability at run-

time, where a generic process can be adapted. Vari-

ability can be speciﬁed in two different ways. The

ﬁrst, which is not in the scope of this survey, employs

the use of variation points to provide different options

at speciﬁc points in a process. The second, which is in

A Survey of Formal Business Process Verification - From Soundness to Variability

199

Table 1: Soundness tools and frameworks.

Formalisms

Framework Modelling Intermediate Correctness properties Tool

(van der Aalst, 1998) Petri Net Woﬂan

(Bi and Zhao, 2004) WfMC Propositional logic Algorithmic

(Choi and Zhao, 2005) WfMS

(van Dongen et al., 2007) EPC Petri Net ProM

(Fisteus et al., 2005) BPEL4WS CFM LTL, CTL SPIN, SMV

(Karamanolis et al., 2000) WfMS FSP LTSA

(Koehler et al., 2002) Imperative FSM CTL nuSMV

(Masalagiu et al., 2009) BPMN Petri Net to TLA+ LTL, CTL (via TLA+) TLC

(Nakajima, 2006) BPEL EFA to Promela LTL SPIN

(Weber et al., 2010) Annotated process Annotated process Algorithmic

(Wynn et al., 2009) YAWL Petri Net YAWL

scope, uses rules like those of compliance to specify

how each version of a process should behave.

A ﬁnal goal of business process veriﬁcation

(which we do not cover in this survey) deals with

processes including multiple parties, such as business

process collaborations (De Backer et al., 2009). The

goal of veriﬁcation includes, for example, the com-

patibility between processes, or lanes.

3 OVERVIEW OF FRAMEWORKS

The existing frameworks aim to verify business pro-

cesses either at design time or at runtime. The

most basic form of veriﬁcation of processes deals

with design-time veriﬁcation of soundness properties,

e.g., termination and reachability. Table 1 gives an

overview of these frameworks. (van der Aalst, 1998)

introduced soundness to the ﬁeld of BPM by trans-

lating workﬂows into Petri Nets, and (Wynn et al.,

2009) perfected the application by allowing Or-joins

and cancelation regions. Due to this, Petri Nets are

commonly used as intermediate formalisms by sound-

ness veriﬁcation frameworks, including (van Dongen

et al., 2007), who use it to verify EPC. Another pop-

ular method is by translating processes into a model

checker input language, e.g.: (Masalagiu et al., 2009)

verify BPMN by translating it (via a Petri Net in-

termediate model) into the model checker input lan-

guage TLA+, (Karamanolis et al., 2000) translate pro-

cesses to the process algebra FSP and checks the re-

sult with the Labeled Transition System Analyzer,

(Koehler et al., 2002) translate into the nuSMV in-

put language, and (Nakajima, 2006) translates into the

SPIN language Promela.

Other frameworks verify business compliance; an

overview of these is given in Table 2. A dominant

number of compliance frameworks focus on verify-

ing imperative speciﬁcations such as BPMN, BPEL,

EPC, and UML sequence diagrams. (Anderson et al.,

2005; Arbab et al., 2009; Awad et al., 2008; Foster

et al., 2003; Ghose and Koliadis, 2007; Goedertier

and Vanthienen, 2006; Janssen et al., 1998; Liu et al.,

2007; Ly et al., 2008; Ly et al., 2011; Nakajima, 2002)

all belong in this category. Others extend declarative

speciﬁcations with compliance features. In (Chesani

et al., 2009), compliance is modelled based on Dec-

SerFlow, a declarative runtime process speciﬁcation,

by translating it into a reactive event calculus. (Pul-

vermueller et al., 2010) aims at verifying the compli-

ance of design-time EPC using an extension of CTL

that differentiates between events and functions. Fi-

nally, (Deutsch et al., 2009) proposes verifying the

compliance of artifact-centric processes against prop-

erties expressed in an extension of LTL.

The last set of frameworks (listed in Table 3) aim

at supporting variability. Declarative variability ex-

tends upon compliance by only specifying rules over

the set of tasks in a process, instead of building an

imperative graph. As such, the authors of (Governa-

tori et al., 2006) ﬁrst propose a compliance frame-

work based upon the newly proposed deontic logic

FCL, then continue by extending this framework,

in (Governatori et al., 2011), with goals to provide

a fully declarative description. (Sadiq et al., 2005)

proposes deﬁning pockets of ﬂexibility within imper-

atively speciﬁed processes to introduce design-time

variability, using constraints which provide ordering

and inclusion information but which are not speci-

ﬁed using a formal logic. Formal frameworks base

their declarative speciﬁcations on the temporal logics

LTL and CTL. As examples, (Demeyer et al., 2010)

use Finite LTL to specify fully declarative processes,

(D’Aprile et al., 2011) specify declarative processes

using temporal Answer Set Programming (ASP) and

Dynamic LTL, (Pesic and van der Aalst, 2006) use

LTL to specify ﬂexible run-time processes, and the

related work of (van der Aalst and Pesic, 2006) aims

towards service ﬂows instead. Finally, (Maggi et al.,

2011) extends upon the work of (Pesic and van der

Third International Symposium on Business Modeling and Software Design

200

Table 2: Compliance tools and frameworks.

Formalisms

Framework Modelling Intermediate

Correctness

properties Tool

(Anderson et al., 2005) UML Sequence Diagram CSP CSP FDR

(Arbab et al., 2009) BPMN Reo Automata Vereofy/ mCRL2

(Awad et al., 2008) BPMN Petri Net PLTL LoLA/ nuSMV

(Chesani et al., 2009) DecSerFlow Event Calc. Algorithmic

(Deutsch et al., 2009) Business artifacts LTL-FO Algorithmic

(Foster et al., 2003) UML+ BPEL FSP LTSA

(Gerede and Su, 2007) Business artifacts CTL-FO Algorithmic

(Ghose and Koliadis, 2007) Annotated BPMN

Annotated

digraphs

Process

effect rules Algorithmic

(Goedertier and Vanthienen, 2006) BPMN PENELOPE Prolog CLP(fd)

(Janssen et al., 1998) AMBER Promela LTL SPIN

(Liu et al., 2007) BPEL

Pi-calculus

to FSM LTL nuSMV

(Ly et al., 2008; Ly et al., 2011) CRG

(Montali et al., 2010) LTL ALP ALP SCIFF

(Nakajima, 2002) WSFL Promela LTL SPIN

(Pulvermueller et al., 2010) EPC EG-CTL BAM

(Weber et al., 2008) Annotated Process Graph

Aalst, 2006) to provide for runtime recovery after

breaking constraint compliance. (Groefsema et al.,

2011) uses CTL to deﬁne process templates; pro-

cesses based upon such a template are then veriﬁed

for compliance with that template at design-time. Fi-

nally, (Bulanov et al., 2011) proposes Temporal Pro-

cess Logic (TPL) to provide a formal mechanism sup-

porting different gates to merge processes.

Critically, drawbacks exist in certain frameworks

for compliance and variability. Some frameworks in-

efﬁciently translate the business-process model into

a model checker input language, introducing a large

overhead in the ensuing state space (e.g., a simple

process of ﬁve activities and four transitions is report-

edly mapped to 201 states and 586 transitions in SPIN

by (Nakajima, 2002)).

Other methods for design-time veriﬁcation (but

not for runtime veriﬁcation, which checks linear exe-

cution paths) lack good support for complex branch-

ing features of the modelling formalism (e.g., do

not support parallel gates, or execution loops). To

improve on this, some introduce workarounds, e.g.,

(Pulvermueller et al., 2010) proposes using simple

variables on automata to fork exclusive paths and syn-

chronize parallel paths. In other work (Feja et al.,

2009), the same authors propose an unsound Kripke

translation when dealing with parallel paths. Here,

pairs of activities from different parallel paths are ex-

plicitly synchronized; in reality, however, each path

should only be synchronized after a join. Other

frameworks, e.g., (Sadiq et al., 2005), (Choi and

Zhao, 2005), and (Groefsema et al., 2011), simply

ignore exclusive, inclusive, and/or parallel paths for

reasons of complexity. (Weber et al., 2008) proposes

two veriﬁcation algorithms in polynomial time; how-

ever, one is reported by the authors as unsound and

complete, the other sound but incomplete, and both

only support acyclic processes. (Montali et al., 2010)

reports its veriﬁcation algorithm to be unable to ter-

minate under certain loops.

Finally, other frameworks require users to apply

newly proposed or extended speciﬁcation logics in

order to specify correctness properties. Examples

include (Pulvermueller et al., 2010), which extends

CTL with the ability to differentiate between events

and functions in EPC, (Governatori et al., 2006),

which proposes an entirely new deontic logic, and

(Bulanov et al., 2011), which proposes a new tem-

poral process logic to allow process mergers.

4 CONCLUSIONS

Formal veriﬁcation of business processes was ini-

tially proposed to check for process soundness, but

lately has been deployed to also support business

compliance and variability. While process soundness

is well supported by frameworks based on Petri-Net

formalisms, the areas of compliance and variability

checking lack design-time solutions which (i) mini-

mize the overhead of states in the formal model, and

(ii) support large subsets of the business process mod-

elling formalism, including parallel gates and process

loops.

A Survey of Formal Business Process Verification - From Soundness to Variability

201

Table 3: Variability tools and frameworks.

Formalisms

Framework Modelling Intermediate

Correctness

properties Tool

(D’Aprile et al., 2011) Temporal ASP Temporal ASP

(Bulanov et al., 2011) Imperative TPL

(Governatori et al., 2011) BPMN FCL

(Groefsema et al., 2011) BPMN+ CTL CTL VxBPMN

(Demeyer et al., 2010) Saturn Automata Finite LTL Saturn Eng.

(Pesic and van der Aalst, 2006; van der

Aalst and Pesic, 2006; Maggi et al., 2011) LTL Automata LTL Declare

(Rychkova et al., 2008) BPMN + FO Alloys FO Alloys

(Sadiq et al., 2005) Informal Chameleon

REFERENCES

Aiello, M., Bulanov, P., and Groefsema, H. (2010). Re-

quirements and tools for variability management. In

Proc. IEEE 34th Annual Computer Software and Ap-

plications Conference Workshops, COMPSACW ’10,

pages 245–250, Washington, DC, USA.

Anderson, B., Hansen, J. V., Lowry, P., and Summers,

S. (2005). Model checking for E-business control

and assurance. Systems, Man, and Cybernetics, Part

C: Applications and Reviews, IEEE Transactions on,

35(3):445–450.

Arbab, F., Kokash, N., and Meng, S. (2009). Towards using

Reo for compliance-aware business process modeling.

In Margaria, T. and Steffen, B., editors, Leveraging

Applications of Formal Methods, Veriﬁcation and Val-

idation, volume 17 of Communications in Computer

and Information Science, pages 108–123. Springer.

Awad, A., Decker, G., and Weske, M. (2008). Efﬁcient

compliance checking using BPMN-Q and temporal

logic. In Proc. 6th Int. Conf. on Business Process

Management, BPM ’08, pages 326–341. Springer.

Bi, H. H. and Zhao, J. L. (2004). Applying propositional

logic to workﬂow veriﬁcation. Information Technol-

ogy and Management, 5:293–318.

Bulanov, P., Lazovik, A., and Aiello, M. (2011). Business

process customization using process merging tech-

niques. In Int. Conference on Service-Oriented Com-

puting and Applications (SOCA 2011), pages 1–4.

Chesani, F., Mello, P., Montali, M., and Torroni, P. (2009).

Web services and formal methods. chapter Veriﬁca-

tion of Choreographies During Execution Using the

Reactive Event Calculus, pages 55–72. Springer.

Choi, Y. and Zhao, J. L. (2005). Decomposition-based veri-

ﬁcation of cyclic workﬂows. In Proc. Third Int. Conf.

on Automated Technology for Veriﬁcation and Analy-

sis, ATVA’05, pages 84–98. Springer.

Cimatti, A., Clarke, E., Giunchiglia, F., and Roveri, M.

(1999). NUSMV: a new Symbolic Model Veriﬁer. In

N. Halbwachs and D. Peled, editors, Proc. 11th Con-

ference on Computer-Aided Veriﬁcation (CAV), vol-

ume 1633 of LNCS, pages 495–499. Springer.

D’Aprile, D., Giordano, L., Gliozzi, V., Martelli, A., Poz-

zato, G. L., and Dupr

e, D. T. (2011). Verifying com-

pliance of business processes with temporal answer

sets. In CILC, pages 147–161.

De Backer, M., Snoeck, M., Monsieur, G., Lemahieu, W.,

and Dedene, G. (2009). A scenario-based veriﬁcation

technique to assess the compatibility of collaborative

business processes. Data Knowl. Eng., 68(6):531–

551.

Demeyer, R., Van Assche, M., Langevine, L., and Van-

hoof, W. (2010). Declarative workﬂows to efﬁciently

manage ﬂexible and advanced business processes. In

Proc. 12th International ACM SIGPLAN Symposium

on Principles and Practice of Declarative Program-

ming, PPDP, pages 209–218. ACM.

Deutsch, A., Hull, R., Patrizi, F., and Vianu, V. (2009).

Automatic veriﬁcation of data-centric business pro-

cesses. In Proc. 12th Int. Conf. on Database Theory,

ICDT, pages 252–267. ACM.

Feja, S., Speck, A., and Pulverm

uller, E. (2009). Business

process veriﬁcation. In GI Jahrestagung, pages 4037–

4051.

Fisteus, J. A., Fern

andez, L. S., and Kloos, C. D. (2005).

Applying model checking to bpel4ws business collab-

orations. In Proc. ACM Symposium on Applied Com-

puting (SAC), pages 826–830. ACM.

Foster, H., Uchitel, S., Magee, J., and Kramer, J. (2003).

Model-based veriﬁcation of web service composi-

tions. In Proc. 18th IEEE Int. Conf. on Automated

Software Engineering (ASE), pages 152–163.

Gerede, C. and Su, J. (2007). Speciﬁcation and veriﬁcation

of artifact behaviors in business process models. In

amer, B. J., Lin, K.-J., and Narasimhan, P., editors,

Service-Oriented Computing (ICSOC), volume 4749

of LNCS, pages 181–192. Springer.

Ghose, A. and Koliadis, G. (2007). Auditing busi-

ness process compliance. In Proc. 5th Int. Conf.

on Service-Oriented Computing, ICSOC, pages 169–

180. Springer.

Goedertier, S. and Vanthienen, J. (2006). Designing com-

pliant business processes with obligations and permis-

sions. In Proc. Int. Conf. on Business Process Man-

agement Workshops, BPM, pages 5–14. Springer.

Governatori, G., Milosevic, Z., and Sadiq, S. (2006).

Compliance checking between business processes and

business contracts. In Proc. 10th IEEE Int. Conf. En-

Third International Symposium on Business Modeling and Software Design

202

terprise Distributed Object Computing, EDOC, pages

221–232. IEEE Computer Society.

Governatori, G., Olivieri, F., Scannapieco, S., and Cristani,

M. (2011). Designing for compliance: norms and

goals. In Proc. 5th Int. Conf. on Rule-based modeling

and computing on the semantic web, RuleML, pages

282–297. Springer.

Groefsema, H., Bulanov, P., and Aiello, M. (2011). Declar-

ative enhancement framework for business processes.

In Int. Conference on Service-Oriented Computing,

ICSOC, LNCS 7084, pages pp 495–504.

Hofstede, A. H., Russell, N., Aalst, W. M., and Adams, M.

(2010). Modern Business Process Automation: YAWL

and its Support Environment. Springer.

Holzmann, G. (2004). The SPIN Model Checker. A Primer

and Reference Manual.

Janssen, W., Mateescu, R., Mauw, S., and Springintveld, J.

(1998). Verifying business processes using SPIN. In

Proc. of the 4th Int. SPIN Workshop, pages 21–36.

Karamanolis, C. T., Giannakopoulou, D., Magee, J., and

Wheater, S. M. (2000). Model checking of workﬂow

schemas. In Proc. 4th Int. Conf. on Enterprise Dis-

tributed Object Computing, EDOC, pages 170–181.

IEEE Computer Society.

Keller, G., N

uttgens, M., and Scheer, A. W. (1992).

Semantische Prozeßmodellierung auf der Grundlage

Ereignisgesteuerter Prozeßketten (EPK). Technical

Report 89, Universit

at des Saarlandes, Germany.

Koehler, J., Tirenni, G., and Kumaran, S. (2002). From

business process model to consistent implementation:

a case for formal veriﬁcation methods. In Proc. 6th

Int. Conf. on Enterprise Distributed Object Comput-

ing (EDOC), pages 96–106.

Liu, Y., M

uller, S., and Xu, K. (2007). A static compliance-

checking framework for business process models.

IBM Syst. J., 46(2):335–361.

Ly, L. T., Rinderle, S., and Dadam, P. (2008). Integra-

tion and veriﬁcation of semantic constraints in adap-

tive process management systems. Data Knowl. Eng.,

64(1):3–23.

Ly, L. T., Rinderle-Ma, S., Knuplesch, D., and Dadam, P.

(2011). Monitoring business process compliance us-

ing compliance rule graphs. In Proc. Confederated

Int. Conf. On the move to meaningful internet systems

- Volume I, OTM, pages 82–99. Springer-Verlag.

Maggi, F., Montali, M., Westergaard, M., and Aalst, W.

(2011). Monitoring business constraints with linear

temporal logic: An approach based on colored au-

tomata. In Business Process Management, volume

6896 of LNCS, pages 132–147. Springer.

Masalagiu, C., Chin, W.-N., Andrei, S., and Alaiba, V.

(2009). A rigorous methodology for speciﬁcation and

veriﬁcation of business processes. Formal Aspects of

Computing, 21:495–510.

Montali, M., Torroni, P., Chesani, F., Mello, P., Alberti, M.,

and Lamma, E. (2010). Abductive logic programming

as an effective technology for the static veriﬁcation of

declarative business processes. Fundam. Inf., 102(3-

4):325–361.

Morimoto, S. (2008). A survey of formal veriﬁcation for

business process modeling. In Proc. 8th Int. Conf.

on Computational Science, Part II, ICCS, pages 514–

522. Springer-Verlag.

Nakajima, S. (2002). Veriﬁcation of Web service ﬂows with

model-checking techniques. In Proc. First Int. Sympo-

sium on Cyber Worlds, pages 378–385.

Nakajima, S. (2006). Model-checking behavioral speciﬁ-

cation of BPEL applications. Electron. Notes Theor.

Comput. Sci., 151(2):89–105.

Nigam, A. and Caswell, N. S. (2003). Business artifacts:

An approach to operational speciﬁcation. IBM Syst.

J., 42(3):428–445.

Oasis (2007). Web Services Business Process Execution

Language Version 2.0. Technical report, Oasis.

OMG (2011). Business Process Model And Notation

(BPMN) Version 2.0. Technical Report 2011-01-03.

OMG (2011). OMG Uniﬁed Modeling Language

(OMG

UML). Technical Report 2011-08-05.

Pesic, M. and van der Aalst, W. M. P. (2006). A declarative

approach for ﬂexible business processes management.

In Proc. Int. Conf. on Business Process Management

Workshops, BPM, pages 169–180. Springer-Verlag.

Pulvermueller, E., Feja, S., and Speck, A. (2010).

Developer-friendly veriﬁcation of process-based sys-

tems. Knowl.-Based Syst., 23(7):667–676.

Rychkova, I., Regev, G., and Wegmann, A. (2008). Us-

ing declarative speciﬁcations in business process de-

sign. Int. J. of Computer Science and Applications,

5(3b):45–68.

Sadiq, S. W., Orlowska, M. E., and Sadiq, W. (2005). Spec-

iﬁcation and validation of process constraints for ﬂex-

ible workﬂows. Inf. Syst., 30(5):349–378.

van der Aalst, W. M. (1999). Formalization and veriﬁca-

tion of event-driven process chains. Information and

Software technology, 41(10):639–650.

van der Aalst, W. M. P. (1998). The application of Petri

nets to workﬂow management. Journal of Circuits,

Systems and Computers, 8(1):21–66.

van der Aalst, W. M. P. and Pesic, M. (2006). DecSer-

Flow: Towards a truly declarative service ﬂow lan-

guage. LNCS: Web Services and Formal Methods, Vol-

ume 4184, pages 1–23.

van Dongen, B. F., Jansen-Vullers, M. H., Verbeek, H.

M. W., and van der Aalst, W. M. P. (2007). Veri-

ﬁcation of the SAP reference models using EPC re-

duction, state-space analysis, and invariants. Comput.

Ind., 58(6):578–601.

Weber, I., Governatori, G., and Hoffmann, J. (2008). Ap-

proximate compliance checking for annotated process

models. In Advances in Enterprise EngineeringPro-

ceedings of the GRCIS workshop at CAiSE, volume 8.

Weber, I., Hoffmann, J., and Mendling, J. (2010). Be-

yond soundness: on the veriﬁcation of semantic busi-

ness process models. Distrib. Parallel Databases,

27(3):271–343.

Wynn, M. T., Verbeek, H., van der Aalst, W., ter Hofstede,

A., and Edmond, D. (2009). Business process veriﬁca-

tion - ﬁnally a reality! Business Process Management

Journal, 15(1):74–92.

A Survey of Formal Business Process Verification - From Soundness to Variability

203