TY - GEN
T1 - An analysis of using state of the art technologies to implement real-time continuous assurance
AU - Lin, Chien Cheng
AU - Lin, Fengyi
AU - Liang, Deron
PY - 2010
Y1 - 2010
N2 - With the integrity of the information in financial reports being questioned and the shift towards more rapid financial reporting, the auditing profession has found that Continuous Assurance is an effective means of facilitating early detection of fraudulent financial reports. However, according to recent surveys, Continuous Assurance has not been widely applied to date. This fact motivates us to investigate if state-of-the-art IT technologies are capable of supporting Continuous Assurance. The contribution of this study is threefold. First, we develop an ISO/IEC 9126-based Continuous Assurance evaluation framework with six technical criteria. Second, based on the proposed framework, we review two (real-time) IT technologies, namely the Embedded Audit Module (EAM) and the Interceptor mechanism, and explore the feasibility of using them to implement real-time Continuous Assurance (CA). Overall, the interceptor approach outperforms the EAM approach, although neither approach satisfies all of the framework's technical criteria. Third, we find that using the interceptor mechanism in the middleware layer, rather than in other layers, improves the implementation of a real-time auditing interceptor. In light of the proposed evaluation framework, we consider the future development of a middleware interceptor technology that can be used to firmly establish a real-time Continuous Assurance framework.
AB - With the integrity of the information in financial reports being questioned and the shift towards more rapid financial reporting, the auditing profession has found that Continuous Assurance is an effective means of facilitating early detection of fraudulent financial reports. However, according to recent surveys, Continuous Assurance has not been widely applied to date. This fact motivates us to investigate if state-of-the-art IT technologies are capable of supporting Continuous Assurance. The contribution of this study is threefold. First, we develop an ISO/IEC 9126-based Continuous Assurance evaluation framework with six technical criteria. Second, based on the proposed framework, we review two (real-time) IT technologies, namely the Embedded Audit Module (EAM) and the Interceptor mechanism, and explore the feasibility of using them to implement real-time Continuous Assurance (CA). Overall, the interceptor approach outperforms the EAM approach, although neither approach satisfies all of the framework's technical criteria. Third, we find that using the interceptor mechanism in the middleware layer, rather than in other layers, improves the implementation of a real-time auditing interceptor. In light of the proposed evaluation framework, we consider the future development of a middleware interceptor technology that can be used to firmly establish a real-time Continuous Assurance framework.
KW - Continuous Assurance
KW - Frauds
KW - Interceptor
KW - ISO/IEC 9126
KW - Middleware
KW - Risk management
UR - http://www.scopus.com/inward/record.url?scp=78049351145&partnerID=8YFLogxK
U2 - 10.1109/SERVICES.2010.29
DO - 10.1109/SERVICES.2010.29
M3 - 會議論文篇章
AN - SCOPUS:78049351145
SN - 9780769541297
T3 - Proceedings - 2010 6th World Congress on Services, Services-1 2010
SP - 415
EP - 422
BT - Proceedings - 2010 6th World Congress on Services, Services-1 2010
T2 - 2010 6th World Congress on Services, Services-1 2010
Y2 - 5 July 2010 through 10 July 2010
ER -