scott metzger of truecredit: policy patterns when soa services are opened as apis

Enterprise and consumer worlds colliding:

Policy and Governance Impacts of consumer access on Enterprise IT

Introduction

How is cloud computing related to SOA?

What we have learned about SOA over the last 8 years.

How we applied what we learned.

How is SOA related to the cloud?CloudLittle

controlShared

with manyUn-trusted

How is SOA related to the cloud?ServicesCore

capabilitiesCriticalMany uses

(clients)

PatternsWhat policies should be implemented

independent of the service being provided? Value of being application agnostic.Internal vs. external consumption of Services.What 3rd party solutions are avialible to

manage these policies?

5 areas of policy focusAccessRoutingCachingTransformationOperations

Access3 tiers for servicesUse of a

ServiceMethodOperational tool

Credentials

RoutingVersioningLoad balancingClient originLogic based on:

Message contentURLRequesting address

CachingImplicit Caching

PerformanceCost management

Explicit CachingData retention Data management

Translation Back-porting Switching

costs –going from one service provider to another

Bridging protocols

HTML rendering

Operations

How you are going to manage your services in production?

Is the trend your friend?

How to mitigate the root cause committee syndrome?

A summary of what we have learned.Implementing and managing an SOA has

much in common with cloud services.Discrete patterns emerge out of this

experience that are independent of the type of business you are in.

Five examples of these patterns in the form of policies.

Evaluation of API management tools and selection of ServiceNet from Sonoa for policy management.