 Issue XXI, August 2008 |
|
Enterprise Mashups Part II: Why SOA Architects Should Care by Chris Warner and John Crupi Gartner recently named Enterprise Mashups a "Top 10 Strategic Technology for 2008", noting that "by 2010 Web mashups will be the dominant model for the creation of composite enterprise applications." This should make any SOA architect sit up and wonder: Can I describe the value of mashups? Can I outline the relationship between mashups and existing enterprise technology like SOA? Knowing the answers to these questions can advance you well down the road to embracing this exciting technology in your organization. In Part 1 of this three-part series, we defined a mashup in the context of the enterprise, contrasted it against other common data integration technologies, and outlined some of the more important architectural elements of an enterprise-grade mashup solution. Now, in Part 2, we'll discuss why SOA architects should care about enterprise mashups... [view] |
|
Project-Oriented SOA
by Leo Shuster Projects are the lifeblood of an IT department. Almost everything in IT is measured through a project lens. SOA, due to its global-centric nature, is often viewed as incompatible with project-based software delivery lifecycles. Thus, most companies find themselves with the dilemma of how to effectively advance an SOA initiatives and continue to deliver projects at the same time. The solution is to combine service lifecycle management, architecture, SOA governance, funding, and SOA metrics into a single comprehensive program. The ultimate goal is to ensure that through addressing project needs services are being effectively designed and implemented and that leverage takes place and is verifiable and that the overall SOA program objectives are being achieved. This article introduces an effective technique for moving your SOA program forward through an incremental, project-based approach... [view] |
|
SOA Security 101: Patching the Firewall Hole
by Atif Ghauri Unlike conventional application architecture, service-oriented solutions that expose Web services to external users and business partners are more susceptible to unauthorized access. While traditional application architectures relied on limited external access with specific security controls, these measures are no longer sufficient for SOA. Service-oriented architectures have opened and connected "black box" software implementations across enterprises, resulting in a new set of interoperable heterogeneous solutions with the common thread of standard protocols. While this level of interoperability is unprecedented for enterprise systems, it further muddies the water for application and enterprise security. The objective of this article is to first introduce the new threats associated with services and service-oriented solutions in general, and then provide fundamental design considerations to mitigate the risks resulting from these threats with an emphasis on message-level security and firewalls... [view] |
|
|||||
|
|||||
|
|
|||||
|
|||||
|
|||||
|
|
|||||
|
|||||
|
|||||
|
|
|||||
|
|||||
|
|||||
To send feedback and contribution suggestions, use the 