Hi Robert,
I also looked briefly into your paper and have just one
question (so far):
- you use word 'client' in many places; what do
you mean by 'client' - an end-user on whose behalf the services act or it
includes both - the end-user and another service? For example, in the context of
security (Internet SOA and Enterprise SOA), do you consider that services
composing an aggregate service have to perform cross-services (cross-components)
authentication and authorization? [as known now, up to 80% of security threats
are coming from inside of the organisation...]
Cheers,
- Michael Poulin
Bob,
I read through your governance paper and had a few particular thoughts
and questions:
- Your recommended process is very heavy and requires a lot in place
before you start seeing service results. The Hartford used an
evolutionary approach with a fairly light touch initially and then added
selectively. If I take what you describe as an end state, what would an
evolutionary path look like to get there?
- You note five implementation tactics and I wonder if a sixth one isn't
to identify what a service solution would look like, see what pieces of the
current solution can be borrowed, and then build a minimize number of pieces
so that you have a parallel SOA version of the current system (or a well
defined part of it). You should be able to demonstrate how the new
structure will be better going forward while minimizing cost because you've
used what is already there. You also minimize risk because you make the
new SOA available while not initially mandating a schedule for shutting down
the old stuff.
Just some thoughts.
Ken
The document named SOA Governance
(07-04-00018.000.doc) has been submitted
by Robert Ellinger to the SOA-RM Reference
Architecture Subcommittee
document repository.
Document Description:
Some thoughts on the types of policies an
organization should draft to
create a successful Enterprise-SOA IT
environment
View Document Details:
Download Document:
PLEASE NOTE: If the above links do not work for
you, your email application
may be breaking the link into two pieces. You may be able to copy and
paste
the entire link address into the address field of
your web browser.
-OASIS Open
Administration
------------------------------------------------------------------------------------------
Ken Laskey
MITRE Corporation, M/S H305
phone: 703-983-7934
7515 Colshire Drive
fax:
703-983-1379
McLean VA 22102-7508
|