Process Mining and Business Intelligence for the Detection of Suspicious Transactions

Authors

  • Fatimtzahraa Ghassan Majid Computer Science and Information Technology, University of Wasit, Iraq
  • Huda Lafta Majeed Computer Science and Information Technology, University of Wasit, Iraq
  • Gromov, Y.Y Director of the Institute of Automation and information technology, Tambov State technical university

DOI:

https://doi.org/10.59746/5h1tjj90

Keywords:

Process Mining, Database Forensics, Anomaly Detection, Petri Nets, Digital Forensic Analysis, Business Intelligence, Digital Database Forensics

Abstract

Digital forensic investigations still have a hard time finding suspicious activity in huge financial datasets. When it comes to finding complicated behavioral patterns and little abnormalities in big transactional databases, traditional database forensic methods have their limits. This is because they typically depend on human analysis or searches that have already been set up. This work presents a data forensic system grounded on process mining to assist in identifying suspicious activity inside financial systems. The framework has three main parts: process discovery, which uses Petri net representations to make diagrams of processes to event logs; conformance checking, which at first compares the data observed with the uncovered method framework; and clustering and behavior analysis, which puts suspicious cases at the top of the list based on unusual traces. We evaluated the suggested method on an actual-world financial database and put it through its paces utilizing the ProM mining framework. The trials showed that the strategy works to find strange patterns of transactions while making it easier to find any fraudulent activity. The suggested process mining-based structure is better than existing methods since it is organized, scalable, and automated.

References

[1] Srivastava, S., & Bhatnagar, R. (2021). Process mining techniques for detecting fraud in banks: A study. Turkish Journal of Computer and Mathematics Education, 12(12), 3358-3375.

[2] ‏ Olivier, M. S. (2009). On metadata context in database forensics. Digital Investigation, 5(3-4), 115-123.‏

[3] Cankaya, E. C., & Kupka, B. (2016, December). A survey of digital forensics tools for database extraction. In 2016 future technologies conference (ftc) (pp. 1014-1019). IEEE.‏

[4] Van Der Aalst, W. M., Reijers, H. A., Weijters, A. J., van Dongen, B. F., De Medeiros, A. A., Song, M., & Verbeek, H. M. (2007). Business process mining: An industrial application. Information systems, 32(5), 713-732.‏

[5] Erdogan, T. G., & Tarhan, A. (2018). Systematic mapping of process mining studies in healthcare. IEEE Access, 6, 24543-24567.‏

[6] Sundari, M. S., & Nayak, R. K. (2020). Process mining in healthcare systems: a critical review and its future. International Journal of Emerging Trends in Engineering Research, 8(9).‏

[7] Cerezo, R., Bogarín, A., Esteban, M., & Romero, C. (2020). Process mining for self-regulated learning assessment in e-learning. Journal of Computing in Higher Education, 32(1), 74-88.‏

[8] Céu, H., Grilo, C., Rijo, R., & Martinho, R. (2024). Mining resource usage in molds manufacturing processes through process mining. Procedia Computer Science, 239, 2359-2368.‏

[9] Castiglione, C. (2024). Automated generation of digital models for manufacturing systems: The event-centric process mining approach. Computers & Industrial Engineering, 197, 110596.‏

[10] Maita, A. R. C., Martins, L. C., López Paz, C. R., Rafferty, L., Hung, P. C., Peres, S. M., & Fantinato, M. (2018). A systematic mapping study of process mining. Enterprise Information Systems, 12(5), 505-549.‏

[11] van der Aalst, W. M., Bolt, A., & van Zelst, S. J. (2017). RapidProM: mine your processes and not just your data. arXiv preprint arXiv:1703.03740.‏

[12] Adriansyah, A., van Dongen, B. F., & van der Aalst, W. M. (2011, August). Conformance checking using cost-based fitness analysis. In 2011 ieee 15th international enterprise distributed object computing conference (pp. 55-64). IEEE.‏

[13] Jans, M., Alles, M. G., & Vasarhelyi, M. A. (2014). A field study on the use of process mining of event logs as an analytical procedure in auditing. The Accounting Review, 89(5), 1751-1773.‏

[14] dos Santos Garcia, C., Meincheim, A., Junior, E. R. F., Dallagassa, M. R., Sato, D. M. V., Carvalho, D. R., ... & Scalabrin, E. E. (2019). Process mining techniques and applications–A systematic mapping study. Expert Systems with Applications, 133, 260-295.‏

[15] Macak, M., Daubner, L., Sani, M. F., & Buhnova, B. (2022). Process mining usage in cybersecurity and software reliability analysis: A systematic literature review. Array, 13, 100120.‏

[16] Rojas, E., Munoz-Gama, J., Sepúlveda, M., & Capurro, D. (2016). Process mining in healthcare: A literature review. Journal of biomedical informatics, 61, 224-236.‏

[17] Atlam, H. F., Ekuri, N., Azad, M. A., & Lallie, H. S. (2024). Blockchain forensics: A systematic literature review of techniques, applications, challenges, and future directions. Electronics, 13(17), 3568.‏

[18] Igonor, O. S., Amin, M. B., & Garg, S. (2025). The application of blockchain technology in the field of digital forensics: A literature review. Blockchains, 3(1), 5.‏

[19] Khalid, Z., Iqbal, F., & Saqib, M. (2025). Bridging knowledge gaps in digital forensics using unsupervised explainable AI. Forensic Science International: Digital Investigation, 53, 301924.‏

[20] Felix, A. O. (2025). Enhancing Digital Forensics Investigations Using AI Driven Anomaly Detection and Log Correlation: A Mixed Methods Approach. International Journal of Future Engineering Innovations.‏

[21] Vyas, D., Shah, M., Kothari, A., Golakia, J., & Parikh, V. (2025). Enhancing Digital Forensics: Machine Learning Techniques for Social Media Investigation. Procedia Computer Science, 258, 2290-2301.‏

[22] Andersen, D. B., Sunde, N., & Porter, K. (2025). Tool induced biases? Misleading data presentation as a biasing source in digital forensic analysis. Forensic Science International: Digital Investigation, 52, 301881.‏

[23] Hargreaves, C., van Beek, H., & Casey, E. (2025). SOLVE-IT: A proposed digital forensic knowledge base inspired by MITRE ATT&CK. Forensic Science International: Digital Investigation, 52, 301864.‏

[24] Kim, K. J., Lee, C. H., Bae, S. E., Choi, J. H., & Kang, W. (2025). Digital forensics in law enforcement: A case study of LLM-driven evidence analysis. Forensic Science International: Digital Investigation, 54, 301939.‏

[25] Selim, A., & Ali, İ. (2024). The role of digital forensic analysis in modern investigations. Journal of Emerging Computer Technologies, 4(1), 1-5.‏

[26] Mpungu, C., George, C., & Mapp, G. (2024). Digital Forensics Readiness in Big Data Networks: A Novel Framework and Incident Response Script for Linux–Hadoop Environments. Applied System Innovation, 7(5), 90.‏

[27] Choi, H., & Lee, S. (2023). Forensic analysis of SQL server transaction log in unallocated area of file system. Forensic Science International: Digital Investigation, 46, 301605.‏

[28] Mohamed, R. A., & Kassem, G. (2023, October). Development of Conceptual Model for Performing Process Mining on Blockchain Data: A Cybersecurity Approach. In 2023 2nd International Conference on Smart Cities 4.0 (pp. 174-178). IEEE.‏

[29] Van der Aalst, W. M. (2022). Process mining: a 360 degree overview. In Process mining handbook (pp. 3-34). Cham: Springer International Publishing.‏

[30] Khan, A. A., Shaikh, A. A., Laghari, A. A., Dootio, M. A., Rind, M. M., & Awan, S. A. (2022). Digital forensics and cyber forensics investigation: security challenges, limitations, open issues, and future direction. International Journal of Electronic Security and Digital Forensics, 14(2), 124-150.‏

[31] Aljahdali, A. O., Alluhaib, G., Alqarni, R., Alsharef, M., & Alsaqqaf, A. (2022). Big data analysis and forensics. International Journal of Electronic Security and Digital Forensics, 14(6), 579-593.‏

[32] Tariq, Z., Charles, D., McClean, S., McChesney, I., & Taylor, P. (2022). Anomaly detection for service-oriented business processes using conformance analysis. Algorithms, 15(8), 257.‏

[33] van Zelst, S. J., Mannhardt, F., de Leoni, M., & Koschmider, A. (2021). Event abstraction in process mining: literature review and taxonomy. Granular Computing, 6(3), 719-736.‏

[34] Broer Bahaweres, R., Trawally, J., Hermadi, I., & Imam Suroso, A. (2021, February). Forensic audit using process mining to detect fraud. In Journal of Physics: Conference Series (Vol. 1779, No. 1, p. 012013). IOP Publishing.‏

[35] Rodríguez-Quintero, J. F., Sánchez-Díaz, A., Iriarte-Navarro, L., Maté, A., Marco-Such, M., & Trujillo, J. (2021). Fraud audit based on visual analysis: A process mining approach. Applied Sciences, 11(11), 4751.‏

computer networks (ISCON) (pp. 584-590). IEEE.‏

[36] R. Broer Bahaweres, J. Trawally, I. Hermadi, and A. Imam Suroso, "Forensic Audit Using Process Mining to Detect Fraud," Journal of Physics: Conference Series, vol. 1779, no. 1, 012013, pp.1-11, 2021.

[37] S. Khan, S. Parkinson, and C. Murphy, "Context-based irregular activity detection in event logs for forensic investigations: An itemset mining approach," Expert Systems with Applications, vol. 233, 120991, pp.1-13, 2023.

[38] L. Englbrecht, S. Schönig, and G. Pernul, "Supporting Process Mining with Recovered Residual Data," In the Practice of Enterprise Modeling, pp. 389-404. Cham, Springer International Publishing, 2020.

Downloads

Published

2026-03-23

Issue

Vol. 5 No. 1 (2026): Journal of Al-Farabi for Engineering Sciences

Section

Articles