Continuous Fraud Detection in Enterprise Systems through Audit Trail Analysis

被引：0

作者：

Best, Peter J. ^{[1
]}

Rikhardsson, Pall ^{[2
]}

Toleman, Mark ^{[3
]}

机构：

[1] Univ Southern Queensland, Sch Accounting Econ & Finance, Toowoomba, Qld 4350, Australia

[2] SAS Inst AS, Business Advisory, Financial Intelligence Div, Kobmagergade 7-9, DK-1150 Copenhagen K, Denmark

[3] Univ Southern Queensland, Sch Informat Syst, Toowoomba, Qld 4350, Australia

来源：

JOURNAL OF DIGITAL FORENSICS SECURITY AND LAW | 2009年 / 4卷 / 01期

关键词：

Continuous assurance; continuous audit; fraud detection; enterprise system; accounting information systems; mySAP; audit trails;

D O I：

暂无

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

Enterprise systems, real time recording and real time reporting pose new and significant challenges to the accounting and auditing professions. This includes developing methods and tools for continuous assurance and fraud detection. In this paper we propose a methodology for continuous fraud detection that exploits security audit logs, changes in master records and accounting audit trails in enterprise systems. The steps in this process are: (1) threat monitoring surveillance of security audit logs for 'red flags', (2) automated extraction and analysis of data from audit trails, and (3) using forensic investigation techniques to determine whether a fraud has actually occurred. We demonstrate how mySAP, an enterprise system, can be used for audit trail analysis in detecting financial frauds; afterwards we use a case study of a suspected fraud to illustrate how to implement the methodology.

引用

页码：39 / 60

页数：22

共 50 条

[31] A Genetic Algorithm approach for doing misuse detection in audit trail files
Diaz-Gomez, Pedro A.
Hougen, Dean F.
CIC 2006: 15TH INTERNATIONAL CONFERENCE ON COMPUTING, PROCEEDINGS, 2006, : 329 - +
[32] Continuous Audit and Enterprise Resource Planning Systems: A Case Study of ERP Rollouts in the Houston, TX Oil and Gas Industries
Haynes, Robin
Li, Chunyan
JOURNAL OF EMERGING TECHNOLOGIES IN ACCOUNTING, 2016, 13 (01) : 171 - 179
[33] Fraud in the health systems of Chile: a detection model
Mesa, Francisco R.
Raineri, Andres
Maturana, Sergio
Maria Kaempffer, Ana
REVISTA PANAMERICANA DE SALUD PUBLICA-PAN AMERICAN JOURNAL OF PUBLIC HEALTH, 2009, 25 (01): : 56 - 61
[34] Transaction Mining for Fraud Detection in ERP Systems
Khan, Roheena
Corney, Malcolm
Clark, Andrew
Mohay, George
INDUSTRIAL ENGINEERING AND MANAGEMENT SYSTEMS, 2010, 9 (02): : 141 - 156
[35] Empirical study on the analysis of the influence of the audit fees and non audit fees ratio to the fraud risk
Mironiuc, Marilena
Robu, Ioan-Bogdan
WORLD CONFERENCE ON BUSINESS, ECONOMICS AND MANAGEMENT (BEM-2012), 2012, 62 : 179 - 183
[36] Synthesizing test data for fraud detection systems
Barse, EL
Kvarnström, H
Jonsson, E
19TH ANNUAL COMPUTER SECURITY APPLICATIONS CONFERENCE, PROCEEDINGS, 2003, : 384 - 394
[37] Do Clients' Enterprise Systems Affect Audit Quality and Efficiency?
Pincus, Morton
Tian, Feng
Wellmeyer, Patricia
Xu, Sean Xin
CONTEMPORARY ACCOUNTING RESEARCH, 2017, 34 (04) : 1975 - 2021
[38] Security Audit of Data Flows across Enterprise Systems and Networks
Joukov, Nikolai
Shorokhov, Vladislav
Tantsuyev, Dmytro
2014 9TH INTERNATIONAL CONFERENCE FOR INTERNET TECHNOLOGY AND SECURED TRANSACTIONS (ICITST), 2014, : 240 - 247
[39] Using external data sources to improve audit trail analysis
Herting, RL
Asaro, PV
Roth, AC
Barnes, MR
JOURNAL OF THE AMERICAN MEDICAL INFORMATICS ASSOCIATION, 1999, : 795 - 799
[40] Security Audit Trail Analysis with Biogeography Based Optimization Metaheuristic
Daoudi, M.
Boukra, A.
Ahmed-Nacer, M.
INFORMATICS ENGINEERING AND INFORMATION SCIENCE, PT II, 2011, 252 : 218 - 227

← 1 2 3 4 5 →