a java architecture for the internet of things noel poore, architect pete st. pierre, product...
TRANSCRIPT
A Java Architecture for the Internet of Things
Noel Poore, ArchitectPete St. Pierre, Product ManagerJava Platform Group, Internet of ThingsSeptember 29, 2014
Copyright © 2014, Oracle and/or its affiliates. All rights reserved.
Copyright © 2014, Oracle and/or its affiliates. All rights reserved.
IoT: Key requirementsDistributed app platform Integration with core
systemsSecurity Device Identity
Remote update and management
Distributed decision making
Extracting value from Big Data
Customer experience
?
Copyright © 2014, Oracle and/or its affiliates. All rights reserved.
IoT Solution Reference Architecture
Gather Enrich Stream Manage Acquire Organize & Analyze
Net
wo
rk
Fir
ewal
l
Intr
anet
F
irew
all
Ser
vice
s F
irew
all
Cap
illa
ry
Net
wo
rks
Internet-capable Device
IoT Comm. Agent
Application Framework
Sensor
IoT Comm. Agent
Application Framework
Gateway
Application Framework
IoT Comm. Agent &
Mgmt Proxy
Local Event Analysis
IoT Communication Gateway
Protocol Mediation
Web Services Security
IoT Security Management
Device Access Management
Device Identity Management
Identity Directory/Database
IoT Messaging Management
Message Store
Message Routing
IoT Devices Management
Diagnostics & Monitoring
Device Inventory
Software Provisioning & Mgmt
Device Registration & Mgmt
Big Data
Big Data Store
Data Aggregator
NoSQL DB
Key Value Data Store
Database
RDBMS
Business Intelligence
Performance Management
Alerts, Dashboards & Reports
Advanced Analysis & Data Science Tools
Data & Knowledge Discovery Tools
Enterprise Integration
Complex events processing & SOA
Business Process Management
Business process composition, execution & monitoring
IoT ServerIoT Client Enterprise Integration
Copyright © 2014, Oracle and/or its affiliates. All rights reserved.
… with Oracle Java
Net
wo
rk
Fir
ewal
l
Intr
anet
F
irew
all
Ser
vice
s F
irew
all
IoT ServerIoT Client Enterprise Integration
Java SEJava SE Embedded
Java ME Java ME Embedded
Copyright © 2014, Oracle and/or its affiliates. All rights reserved.
Overall Architecture
Endpoint Management
MessagingProxy
Oracle EventProcessing
Device Management
Oracle Database
(12c)
Java Device
Non-JavaDevice
Non-JavaDevice
3G NetworkWWAN
3rd PartyDevice Cloud
Integration Cloud Service
BusinessIntelligence Cloud
Service
Firewall
IoT Cloud Service
IoT Cloud Service Gateway
6Oracle Confidential – Internal/Restricted/Highly Restricted
DispatcherREST/JMS
CustomApp
Non-JavaDevice
Users
Copyright © 2014, Oracle and/or its affiliates. All rights reserved. 7
IoT Cloud Service Gateway• Runs on Java Embedded• Integrated with IoT Cloud Service• Fully manageable• Easy application model• Device framework for connectivity to edge devices• Event service• Messaging service with flexible data model• Secure sandboxes for applications and device adapters
Copyright © 2014, Oracle and/or its affiliates. All rights reserved. 8
IoT Cloud Service• Hosted on Oracle Public Cloud• Endpoint management• Device management• Messaging proxy• Devices and application instances exposed as RESTful resources• Data storage and retrieval• Real-time analytics• Business intelligence• Dispatcher framework
Copyright © 2014, Oracle and/or its affiliates. All rights reserved. 9
Key Challenges• Security• Scale
– Device platform must scale to small devices– Cloud service must scale to billions of endpoints
• Storage– Lots and lots of data to store and process
• Performance– Some applications will need “real time” response
• Integration with the Enterprise– How do we extract value from devices and data?
Copyright © 2014, Oracle and/or its affiliates. All rights reserved. 10
IoT PlatformSecurity• The security model ensures that all interactions within the IoT Platform are
authenticated and authorized• Protects access to devices and applications• And to the data generated by them
– In motion or at rest
• Centrally managed policies• For more information
– Internet of Things Security Architecture– BOF 3029 7pm Monday 9/29 Moscone South 270
Copyright © 2014, Oracle and/or its affiliates. All rights reserved. 11
Endpoints• An endpoint is any entity that has an independent lifecycle and needs to be
independently identified and secured– Device gateways– Edge devices– Device adapters– IoT application instances– Enterprise applications– Dispatchers– …
Copyright © 2014, Oracle and/or its affiliates. All rights reserved. 12
Endpoint Management• Endpoint lifecycle
– Onboarding & enrollment– Disable/enable/”delete”
• Endpoint repository• Creation of endpoint identities
– Can address endpoints independent of network topology & protocols
• Authentication of endpoints• Policy management• Dynamic groups
Copyright © 2014, Oracle and/or its affiliates. All rights reserved. 13
Device Management• Management of the software and configuration of devices• Software artifact repository• Deployment and updating of software artifacts to devices• Updating of device configuration
Copyright © 2014, Oracle and/or its affiliates. All rights reserved. 14
Messaging Proxy• Bi-directional, secure, store-and-forward messaging
– Not just HTTP– Devices and gateways are not always on
• Hides routing and protocol details• Provides secure access to device and application resources• Endpoint and resource discovery• All access to endpoints is subject to security policy
Copyright © 2014, Oracle and/or its affiliates. All rights reserved. 15
Data Storage and Retrieval• All incoming data is securely persisted by the cloud service• REST APIs for querying the stored data• All queries are authorized, so security of the data is maintained
Copyright © 2014, Oracle and/or its affiliates. All rights reserved. 16
Real-time Analytics• Uses Oracle Event Processing and Stream eXplorer• Allows business users to create real-time analytics – “explorations”• Security of devices and data is maintained• Real-time visualization of events• Can attach workflows to events
– Automated– Human intervention
Copyright © 2014, Oracle and/or its affiliates. All rights reserved. 17
Business Intelligence• Using the Oracle Business Intelligence Cloud Service• Turning your IoT data into business value• Interactive reporting & dashboards• Advanced analytics• Many different data visualization options
Copyright © 2014, Oracle and/or its affiliates. All rights reserved. 18
Dispatcher Framework• Secure dispatching of incoming data to enterprise applications and services• Multiple types of dispatcher
– OPC Integration Cloud Service (OSB)– JMS– Generic HTTP POST
• Each dispatcher instance will only see the data it is authorized to see• Support for secure, authenticated connections
Copyright © 2014, Oracle and/or its affiliates. All rights reserved. 19
Non-Java Devices
• It’s the Internet of Things with Java– Not just the Internet of Java Things
• Non-Java devices may use the REST APIs of the cloud service– In the same way as the IoT Client Platform
• The cloud service also provides APIs to enable device proxies– Designed for integration with 3rd party device clouds or other device gateways
Copyright © 2014, Oracle and/or its affiliates. All rights reserved. 20
Safe Harbor StatementThe preceding is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated into any contract. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. The development, release, and timing of any features or functionality described for Oracle’s products remains at the sole discretion of Oracle.