Issue No. 05 - September/October (2009 vol. 11)
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MITP.2009.101
Travis D. Breaux , Institute for Defense Analyses
Annie I. Antón , North Carolina State University
Kent Boucher , Cisco Systems
Merlin Dorfman , Cisco Systems
Laws and regulations increasingly impose requirements on IT business practices and products. A key difficulty in responding to these requirements emerges from the need to translate legal language structures into domain-specific product specifications. Researchers at North Carolina State University developed a formal method to systematically acquire legal requirements from policies and regulations. As a part of validating the frame-based requirements analysis method (FBRAM), the NCSU researchers teamed with Cisco to study its product requirements developed to comply with US Section 508 regulations for electronic and IT accessibility. The study demonstrated the use of metrics to identify gaps between legal and product requirements as well as patterns that could help reduce the ambiguities in legal compliance.
Information technology, legal aspects of computing, IT compliance, accessibility, assistive technologies for persons with disabilities
M. Dorfman, T. D. Breaux, A. I. Antón and K. Boucher, "IT Compliance: Aligning Legal and Product Requirements," in IT Professional, vol. 11, no. , pp. 54-58, 2009.