КОНФЕРЕНЦІЇ ВНТУ електронні наукові видання, 
Молодь в науці: дослідження, проблеми, перспективи (МН-2026)

Розмір шрифта: 
DESIGN OF AN ELECTRONIC DOCUMENT MANAGEMENT SYSTEM WITH CONFIGURABLE APPROVAL ROUTING AND ASSIGNMENT DEADLINE CONTROL FOR IT COMPANIES
Олександр Мирославович Хошаба, Роман Сергійович Цугель

Остання редакція: 2026-02-18

Анотація


Information technology companies frequently handle operationally critical documents through email and messaging tools, which weakens traceability, version integrity and accountability across approval and execution chains. This paper presents the design concept of an Electronic Document Management System (EDMS) that supports document registration and storage, configurable approval routing (visa workflows), assignment of responsible persons, and systematic control of execution deadlines with reminders and escalations. The solution is implemented as a web-based client–server system with a Representational State Transfer (REST) Application Programming Interface (API) over the Hypertext Transfer Protocol (HTTP), using standardised error responses based on Request for Comments (RFC) 9457 problem details. Security and governance are addressed through alignment with International Organisation for Standardisation / International Electrotechnical Commission (ISO/IEC) 27001:2022 and ISO/IEC 27002:2022, supplemented by the Open Worldwide Application Security Project (OWASP) Top 10:2021 and the National Institute of Standards and Technology (NIST) Special Publication (SP) 800-218 Secure Software Development Framework (SSDF). Role-Based Access Control (RBAC), encryption in transit via Transport Layer Security (TLS), and tamper-evident audit logging are proposed to ensure accountability and reduce unauthorised actions. Where legally meaningful approvals are required, electronic signatures can be supported using Public Key Infrastructure (PKI) approaches aligned with European Telecommunications Standards Institute (ETSI) EN 319 102-1. Data quality is enforced through metadata schemas and validation rules that conform to ISO 8000-1:2022, while accessibility targets are mapped to the World Wide Web Consortium (W3C) Web Content Accessibility Guidelines (WCAG) 2.2. As empirical deployment metrics are not yet available, the paper defines an evaluation plan that covers functional completeness, reliability, performance, and governance indicators, such as cycle time, overdue rate, and rework frequency.

Ключові слова


electronic document management system; electronic records management; approval routing; workflow management; task execution control; deadline monitoring; audit trail; role-based access control; secure software development; web API; data quality

Посилання


1. Jordan S., Sternad Zabukovšek S., Šišovska Klančnik I. Document Management System – A Way to Digital Transformation // Naše gospodarstvo/Our Economy. - 2022. - Vol. 68, No. 2. - P. 43–54. - DOI: 10.2478/ngoe-2022-0010.

2. Pasichnyk V., Kunanets N., Veretennikova N., Peleshchyshyn A., Babelyuk O. Technologies for Electronic Document Management in the Enterprise // Information Technologies and Systems. ITSM 2023. Lecture Notes in Networks and Systems. - Cham : Springer, 2024. - Vol. 873. - P. 1–9. - DOI: 10.1007/978-3-031-55908-3_1.

3. Velásquez-Angamarca C. E., Reis J., Pinto A., Gonçalves J. C. A Formal Document Approval Workflow for Business Process in Higher Education Institutions // Proceedings of the 19th Iberian Conference on Information Systems and Technologies (CISTI). Lecture Notes in Networks and Systems. - Cham : Springer Nature Switzerland, 2026. - Vol. 1747. - P. 74–83. - DOI: 10.1007/978-3-032-12879-9_8.

4. ISO/IEC 27001:2022. Information security, cybersecurity and privacy protection - Information security management systems - Requirements. - Geneva : International Organization for Standardization, 2022.

5. ISO/IEC 27002:2022. Information security, cybersecurity and privacy protection - Information security controls. - Geneva : International Organization for Standardization, 2022.
6. Souppaya M., Scarfone K., Dodson D. NIST Special Publication 800-218. Secure Software Development Framework (SSDF) Version 1.1: Recommendations for Mitigating the Risk of Software Vulnerabilities. - Gaithersburg, MD : National Institute of Standards and Technology, 2022. - 36 p. - DOI: 10.6028/NIST.SP.800-218.

7. OWASP Top 10:2021. Web Application Security Risks : documentation. - OWASP Foundation, 2021. - Electronic resource. - Access date: 27.01.2026.

8. ETSI EN 319 102-1 V1.3.1 (2021-11). Electronic Signatures and Infrastructures (ESI); Procedures for Creation and Validation of AdES Digital Signatures; Part 1: Creation and Validation. - ETSI, 2021. - Electronic resource. - Access date: 27.01.2026.

9. Regulation (EU) 2024/1183 of the European Parliament and of the Council of 11 April 2024 amending Regulation (EU) No 910/2014 as regards establishing the European Digital Identity Framework // Official Journal of the European Union. - 2024. - 30.04.2024. - Electronic resource. - Access date: 27.01.2026.

10. Nottingham M., Wilde E., Dalal S. Problem Details for HTTP APIs : RFC 9457. - IETF, 2023. - Published: July 2023. - Electronic resource. - DOI: 10.17487/RFC9457. - Access date: 27.01.2026.

11. Web Content Accessibility Guidelines (WCAG) 2.2 : W3C Recommendation. - World Wide Web Consortium (W3C), 2023. - Electronic resource. - Access date: 27.01.2026.

12. ISO 8000-1:2022. Data quality - Part 1: Overview. - Geneva : International Organization for Standardization, 2022.

13. ISO/IEC/IEEE 29119-4:2021. Software and systems engineering - Software testing - Part 4: Test techniques. - Geneva : International Organization for Standardization, 2021.


Повний текст: PDF