Minimizing Cost of Continuous Audit: Counting and Time Dependent Strategies
Odette School of Business, University of Windsor
University of Windsor - Odette School of Business
Ram S. Sriram
Georgia State University
Journal of Accounting and Public Policy, Vol 24, No. 1, 2005
Why do we need to continuously audit databases? The answer to this question depends on several factors, including the users and the applications that have accessed the data, the timing and the type of data modifications such as permissions or schema and so on. Many studies pertain to the technical feasibility of continuous auditing of databases, but do not consider the economic feasibility of such auditing. This paper helps fill this void in the literature. We examine certain strategies that have been suggested in the database auditing literature (see, e.g. Orman, 2001) with major and minor modifications. Orman studied the counting, periodic and hybrid auditing strategies with the objective of minimizing the number of errors introduced during database access. Unlike Orman whose focus is on assessing the number of errors entering into the system (technical feasibility), we focus on the long run operating cost of running database audit. We use results from regenerative stochastic processes to derive expressions for the long run average cost under the counting and periodic auditing strategies. Future directions for research are also proposed.
Keywords: Database Auditing, Renewal Theory, Cost of Continuous Audits, Information Assurance
JEL Classification: C61, M40, M41, M49Accepted Paper Series
Date posted: November 2, 2004
© 2013 Social Science Electronic Publishing, Inc. All Rights Reserved.
This page was processed by apollo6 in 0.360 seconds