paul c brown s o a governance
DESCRIPTION
TRANSCRIPT
1
Founding Sponsors
This Presentation Courtesy of the
International SOA Symposium
October 7-8, 2008 Amsterdam Arena
www.soasymposium.com
Gold Sponsors
Platinum Sponsors
Silver Sponsors
© 2008 TIBCO Software Inc. All Rights Reserved.
SOA Governance Essentials
Paul C. Brown
Principal Software Architect
2
© 2008 TIBCO Software Inc. All Rights Reserved.
3
Agenda
SOA Governance Overview
Run-Time Governance
Design-Time Governance
Organizational Issues
Summary
© 2008 TIBCO Software Inc. All Rights Reserved.
4
SOA Governance Overview
SOA = Sharing: the producer is not the consumer
Sharing requires Governance: rule creation and
enforcement
Run-Time
Governance
Design-Time
Governance
Service
Usage
Service
Operation
Service
Employment
Service
Creation
3
© 2008 TIBCO Software Inc. All Rights Reserved.
5
SOA Governance Overview
SOA = Sharing: the producer is not the consumer
Sharing requires Governance: rule creation and
enforcement
Run-Time
Governance
Design-Time
Governance
Service
Usage
Service
Operation
Service
Employment
Service
Creation
Enforced by
systemsEnforced by
procedures
Organizational Issues
© 2008 TIBCO Software Inc. All Rights Reserved.
6
SOA Governance Overview
SOA = Sharing: the producer is not the consumer
Sharing requires Governance: rule creation and
enforcement
Run-Time
Governance
Design-Time
Governance
Service
Usage
Service
Operation
Service
Employment
Service
Creation
Enforced by
systemsEnforced by
procedures
Organizational Issues
4
© 2008 TIBCO Software Inc. All Rights Reserved.
Run-Time Governance
© 2008 TIBCO Software Inc. All Rights Reserved.
8
Typical Types of Run-Time Rules
Access control
Authentication
Authorization
Encryption
Digital signatures
Data filtering
Logging
Statistics gathering
Invocation rate
Response times
The list is open-ended!
5
© 2008 TIBCO Software Inc. All Rights Reserved.
9
It Is Possible to Enforce Policies Within the Service
Service
Life-Cycle
Architect
Design
Implement/
Test
Deploy
Operate
Modify the service architecture
to make provision for policy
enforcement
Design the manner in
which the rule will be
implemented
Implement and test the
rule
Deploy the revised service
(may be disruptive!)
Service enforces the rule
© 2008 TIBCO Software Inc. All Rights Reserved.
10
Enforcing Policies Within the Service Is Expensive!
Service
Life-Cycle
Architect
Design
Implement/
Test
Deploy
Operate
Modify the service
architecture to make
provision for policy
enforcement
Design the manner in
which the rule will be
implemented
Implement and test the
rule
Deploy the revised
service
(may be disruptive!)
Service enforces the
rule
6
© 2008 TIBCO Software Inc. All Rights Reserved.
11
Solution: Separate Policy Enforcement From Service
Service
Consumer
Policy
Agent
Service
Provider
Policy
enforcement
Interface
must still be
guarded
© 2008 TIBCO Software Inc. All Rights Reserved.
12
Solution: Separate Policy Enforcement From Service
Service
Consumer
Policy
Agent
Service
Provider
Policy
enforcement
Interface is
now fully
protected
Single Process Space
7
© 2008 TIBCO Software Inc. All Rights Reserved.
13
Enforcing Policies with a Policy Agent
Service
Life-Cycle
Architect
Design
Implement/
Test
Deploy
Operate
Policy
Life-Cycle
Put the infrastructure in
place to use Policy Agents
Select or create the
template for the type of
rule you need
Configure the rule
Associate the rule with the
services it governs
Policy Agent enforces the
rule
© 2008 TIBCO Software Inc. All Rights Reserved.
Design-Time Governance
8
© 2008 TIBCO Software Inc. All Rights Reserved.
15
Governance During Service Development
Service
Life-Cycle
Architect
Design
Implement/
Test
Deploy
Operate
• Will the service fit multiple usages?
• Will the interface remain stable over time?
• Is the testing adequate?
• Is the documentation adequate?
• Manage service operation (start/stop)
• Manage service versioning
© 2008 TIBCO Software Inc. All Rights Reserved.
16
Governance During Solution Development
Service
Life-Cycle
Architect
Design
Implement/
Test
Deploy
Operate
Solution
Life-Cycle
• Are existing services being used?
• Are new services being built
appropriately?
• Has service capacity planning been
done?
• Have policies been put in place for
service access?
• Coordinate with service operation
• Track service versioning
9
© 2008 TIBCO Software Inc. All Rights Reserved.
Organizational Issues
© 2008 TIBCO Software Inc. All Rights Reserved.
18
Who Manages Intra-Project Dependencies?
Solution XService A
(new)
Your Project
•Project Manager
•Business Process Architect
•Systems Architect
10
© 2008 TIBCO Software Inc. All Rights Reserved.
19
Who Manages Inter-Project Dependencies?
Solution XService A
(new)
Your Project
•Project Manager
•Business Process Architect
•Systems Architect
Future Project
Service C
(future)Solution Z
•Project Manager
•Business Process Architect
•Systems Architect
Sister Project
Service B
(new)Solution Y
•Project Manager
•Business Process Architect
•Systems Architect
© 2008 TIBCO Software Inc. All Rights Reserved.
20
Enterprise Architecture Scope
Evaluate service opportunities
Participate in service specification
Provide technical coordination between projects
Provide look-ahead technical guidance (future
projects)
Enterprise
Architecture
Business Process
Architecture
Systems
Architecture
Data
Architecture
Solution
Architecture
Infrastructure
Architecture
Service
Architecture
11
© 2008 TIBCO Software Inc. All Rights Reserved.
21
Common Architecture Issues
Project level
There is no architect (i.e. nobody responsible for overall business process and systems architecture)
The architect has no authority• The project manager may ignore the advice
Architecture is treated as an after-the-fact review• Too late to make substantial changes
Enterprise Level
No participation in actual projects• No opportunity to guide them towards common goals
• No opportunity to recognize issues in standards and best practices
No authority• Projects do as they please
Project participation is at a review level• Too late to make substantial changes
© 2008 TIBCO Software Inc. All Rights Reserved.
22
Put All Architecture Under One Roof
Total Architecture
Management
Enterprise
Projects
Enterprise
Architecture
Business Process
Architecture
Systems
Architecture
Data
Architecture
Solution
Architecture
Infrastructure
Architecture
Project
Manager
Project
Manager
Project
Manager
Business
Process
Architect
Systems
Architect
Business
Process
Architect
Systems
Architect
Business
Process
Architect
Systems
Architect
Service
Architecture
Business Executive
Sponsor
12
© 2008 TIBCO Software Inc. All Rights Reserved.
Summary
© 2008 TIBCO Software Inc. All Rights Reserved.
24
SOA Governance Overview
SOA = Sharing: the producer is not the consumer
Sharing requires Governance: rule creation and
enforcement
Run-Time
Governance
Design-Time
Governance
Service
Usage
Service
Operation
Service
Employment
Service
Creation
Enforced by
systemsEnforced by
procedures
Organizational Issues
13
© 2008 TIBCO Software Inc. All Rights Reserved.
25
SOA Governance Overview
SOA = Sharing: the producer is not the consumer
Sharing requires Governance: rule creation and
enforcement
Run-Time
Governance
Design-Time
Governance
Service
Usage
Service
Operation
Service
Employment
Service
Creation
Enforced by
systemsEnforced by
procedures
Organizational Issues
• Reuse
• Isolation
• Separate policy
from service
• Checkpoints
• Coordination
© 2008 TIBCO Software Inc. All Rights Reserved.
26
Succeeding with SOA
• The business and organizational
perspective
• For:
• CIO, COO, CEO, CTO
• Managers
• Enterprise and project architects
Implementing SOA
• Creating the total architecture
• For
• Enterprise and project architects
• CTOs
www.total-architecture.com
For More Information…