The Way to SOA Concept, Architectural Components and Organization

The Way to SOA Concept, Architectural Components and Organization Eric Scholz Director Product Management Software AG Seite 1

Goals of business and IT Business Goals Increase business agility Support new market strategies IT Goals Manage continuous change and complexity Drive more value out of IT-investments Adaptive Enterprises need flexible processes Agile IT is key to achieve flexibility and adaptability SOA enables agility for business and IT Page 2

Where is SOA today? Source: Gartner 2007 Page 3

The SOA Concept and Architecture Composite Apps Business Processes Retrieve Data Verify Details Order Entry Order Review Order Management Approve Order Initiate Shipment SOA Management & Governance Business Service Orchestration Customer Information Order Management Order Compensation Legacy Integration Customer Data Customer Interaction Order History Order Policy Shipment Customer Data CRM ERP Orders Logistics SOA Components & Services Page 4

Typical SOA Adoption Path Enterprise Framework Optimized Business Services Pilot Projects First Experiments 1-5 Services What is it? Can we use it? 5-10 Services Prove it Enforce standards Non mission critical process 10-50 Services Corporate-wide approach Mission critical core process 50+ Services B2B Federated systems Large organizations Page 5

CMM describes process maturity of IT development Page 6

The technical adaptation - SOA Maturity Model Complete Lifecycle- and Change-Management Business Performance Management / BAM Runtime SOA optimization Roles, skills and organizations for SOA Cross-departmental usage of services Processes empowered by services All SOA assets and artifacts in context SOA governance and policy enforcement Metadata-based collaboration and defined roles SOA optimization SOA procedural consistency SOA lifecycle management SOA Methodologies and Blueprints Service creation and enablement Legacy modernization Definition of business domains Transformation of technical services into valuable business services Registry-based service management Basic Web-services Page 7 SOA business service SOA enablement Technology enablement

Start With Understanding Your Processes & Goals Optimize Processes Start End Customer Verification (Web screen) No Yes Enter request information Yes No Request review Delivery End Customer Info Step 1: Analyze and understand your business processes Purchase Approval Customers CRM Service CRM 3rd party Risc Management Step 2: Identify redundancies and areas for improvement Step 3: Define the Services needed to support your Optimal Business Processes Accounting Credit Limit ERP Page 8

Identify the Role of IT Systems to Support Processes Optimize Processes Start End Customer Verification (Web screen) No Yes Enter request information Yes No Request review Delivery End Customer Info Purchase Approval CRM Service Customers CRM 3rd party Risc Management Open Legacy Systems Accounting Credit Limit ERP Page 9 Step 4: Map these services to what already exists in your current systems Step 5: What do you need to build from scratch? Step 6: How granular do the services need to be?

Identify the Role of IT Systems to Support Processes Optimize Processes Start End Customer Verification (Web screen) No Yes Enter request information Yes No Request review Delivery End Customer Info Purchase Approval CRM Service Customers CRM 3rd party Risc Management Open Legacy Systems Accounting Step 7: Focus your goal on a defined set of processes to get some quick wins! Credit Limit ERP Page 10

SOA Governance topics Define authority and provide transparency Measure results and Optimize Define and enforce rules Manage change Page 11

Define authority and provide transparency Manage Change, Define Authority and Responsibilities SOA Policy Management Is Essential For SOA Usage, Evolution and Maturity Mesure results and Optimize Manage change Define and enforce rules Technical Maturity Lifecycles Of An SOA Testing & QA Deploy. Refine Analysis Data from policy enforcement is analyzed for trends & usage patterns. That data is then used to refine the SOA assets Testing & QA is done with real-time data and simulated environments based on real world scenarios Policy Enforcement happens during the deployment and usage cycles Page 12 Time Source: Gartner Group, Massimo Pezzini: SOA: Beyond the Hype

Define authority and provide transparency SOA Lifecycle Management Manage Change, Define Authority and Responsibilities Mesure results and Optimize Manage change Define and enforce rules SOA Lifecycle Management supports the change control of artifacts throughout the different stages and states from planning to production Continuous optimization of the lifecycle process Different SOA artifacts Flexible integration with different metadata stores Impact analysis in different lifecycles Page 13

Define authority and provide transparency Governance Policies Define and Enforce Rules Measure results and Optimize Manage change Define and enforce rules Design- and change-time policies Workflow (approval process) Customized meta model Artifact restrictions Security restrictions Runtime policies Monitoring, logging and tracking Availability and robustness Security Performance Page 14

Define authority and provide transparency Centralized and standardized policy management Define and Enforce Rules Measure results and Optimize Manage change Define and enforce rules Proprietary Policies Central Policy Management SOA Infrastructure AJAX Adapter Framework Notify Dispatch BPM ESB Information Integ. All transactional order systems must be available at least 99.99% during business hours. In case of a violation the owner must be notified immediately and provide a solution within one hour or less. Legacy Integration <wsp:policy> <wsp:all> <assert:qosavailabilityassertion name= NotifyOnServiceAvailability > <assert:availabilitycondition> <assert:availabilitythreshold type= percent >99.999</assert:AvailabilityT hreshold> <assert:availabilityaction type= notify target= email group= associated /> <assert:availabilitycompensation type= none /> </assert:availabilitycondition> </assert:qosavailabilityassertion> </wsp:all> </wsp:policy> Page 15

Define authority and provide transparency SOA Business Metrics Measure Results and Optimize Measure results and Optimize Manage change Define and enforce rules Development efficiency Average development time Complexity of business services Number of services combined into a new business service Service reuse Services used by application Number of calls from other services or applications during a certain period of time Level of stability New versions of a service during a certain time Policy usage Services that have policies attached Change risk Services that an application depends on Page 16

SOA Life-Cycle and Roles Page 17

SOA Approach value - Reference Governance Framework Identify & Understand Assess & Plan Implement & Deploy Measure & Optimize SOA Process Customer Specific Requirements SOA Process Maturity Model & Adoption Path Guides & templates Customer Specific Governance procedures Reference Architecture Reference Governance Framework Customer Specific Infrastructure Glossary of terms Best Practices Technology & Tools Customer Specific SOA Page 18

Overall SOA - Reference Architecture SOA Delivery Presentation Application composition Operational Management Runtime governance Business process optimization Services Registry & Repository Security and policy enforcement Operational storage Integration and Orchestration Legacy service enablement Information Integration Native services Communications Existing IT systems Modeling, Design, Development Page 19

Take Away for YOUR SOA Infrastructure SOA is not provided by ONE vendor only it is a mix and match based on standards A role based diversification and organizational adaptation is part of a base SOA infrastructure Use a reference architecture to approach YOUR individual SOA and reach your maturity levels Complement your existing infrastructure by leading SOA infrastructure Page 20

Seite 21 Software AG. Bright ideas, everywhere.

The SOA approach with Reference Governance Framework Guides Library of documented and codified experience in the form of guides, patterns, and use cases Templates Working documents associated to the guides Process for SOA projects How to carry out the whole effort of identifying, defining, delivering and optimizing a SOA SOA Reference Architecture Typical structure of a SOA: elements, roles and relationships SOA Maturity Model and Adoption Path Where a SOA is, where should it be, and how to take it there Reference Governance Framework Elements to have in place in order to make possible SOA governance Glossary of terms Concise definitions of concepts key to SOA Governance topics Lifecycle Design Maturity checklists Assessment checklists Design templates Engineering Assessment Scope of work template Service model template Page 22

Reference Architecture Detail SOA Delivery Business process user interfaces Presentation Composite application Mashup Support for HTML AJAX Web 2.0 Portal Desktop Operational Management Control Monitoring Alerts Runtime governance Configuration Reports, analysis Activity logs Policy config SLA config. Security config Common management infrastructure Endpoint management Monitoring Service discovery Logging Runtime governance Non-repudiation Certificates Authentication Confidentiality Authorization Integrity Security and policy enforcement Message logs Cache Message queues Message states Process states Operational storage Synchronous Asynchronous Reliability Publish / subscribe Protocols Communications Execution of business processes Service Orchestration Orchestration Aggregation Transformation Business process enactment Composition Routing Compensation Business rules evaluation Legacy service enablement Information integration Semantic integration MDM Existing IT systems Services Native services Java.Net Package Custom app Life cycle management Registry & Repository Third-party integration Extensible object model Versioning Open interfaces Discovery Triggers Reporting Auditing Impact analysis Service descriptions Subscription, notification Metadata & assets Business processes Governance support Documentation SLAs Dependencies Categories Orchestrations Orchestration design, test, Business process design, test, Information Integration modeling, Composite app design, test, Business rules design, test, Legacy service enablement design, test, Common development infrastructure Page 23 Modeling, Design, Development