Chicago, IL, USA USA
Sept. 24, 2012 to Sept. 28, 2012
Jeremy C. Maxwell , College of Engineering, North Carolina State University, Raleigh, NC, USA
Annie I. Anton , School of Interactive Computing, Georgia Institute of Technology, Atlanta, GA, USA
Peter Swire , Moritz School of Law, Ohio State University, Columbus, OH, USA
Over time, laws change to meet evolving social needs. Requirements engineers that develop software for regulated domains, such as healthcare or finance, must adapt their software as laws change to maintain legal compliance. In the United States, regulatory agencies will almost always release a proposed regulation, or rule, and accept comments from the public. The agency then considers these comments when drafting a final rule that will be binding on the regulated domain. Herein, we examine how these proposed rules evolve into final rules, and propose an Adaptability Framework. This framework can aid software engineers in predicting what areas of a proposed rule are most likely to evolve, allowing engineers to begin building towards the more stable sections of the rule. We develop the framework through a formative study using the Health Insurance Portability and Accountability (HIPAA) Security Rule and apply it in a summative study on the Health Information Technology: Initial Set of Standards, Implementation Specifications, and Certification Criteria for Electronic Health Record Technology.
Requirements Evolution, Healthcare IT, Regulatory Compliance, Requirements Engineering
Jeremy C. Maxwell, Annie I. Anton, Peter Swire, "Managing changing compliance requirements by predicting regulatory evolution", RE, 2012, 2013 21st IEEE International Requirements Engineering Conference (RE), 2013 21st IEEE International Requirements Engineering Conference (RE) 2012, pp. 101-110, doi:10.1109/RE.2012.6345793