Showing papers on "SOA governance published in 2012"

Towards an Ontology for Cloud Services

Abstract: The emergence of cloud computing has created a shift in the service lifecycle, a shift meant to meet the requirements of cloud environments. Anticipating this, cloud governance, a step forward from SOA governance, tries to consolidate an environment where collaboration between various enterprises can be easily achieved. Cloud governance lays the groundwork for enabling easy application development and deployment by providing critical services that range from service management to security, monitoring and audit. As means of support for cloud computing, several ontologies have tried to bridge gaps and provide interoperability. None, however, have taken the time to analyze and define aspects that relate to service lifecycle and cloud governance. In this regard, our article proposes an ontology that is meant to complement existing ones.

Towards a Holistic Information Security Governance Framework for SOA

Abstract: Service Oriented Architecture (SOA) is a design paradigm that enables applications to be built from business processes to support enterprise architecture. This architecture introduces information security challenges that are not comprehensively addressed by current best-practices. This paper evaluates if an Information Security Management System (ISMS), defined by the international standard ISO/IEC 27001 and 27002 can be used to comprehensively support Information Security governance for SOA. As SOA governance, a separate and distinct governance framework, also addresses information security to a certain extent, managers are faced the difficult task of deciding whether their SOA sufficiently protected by the different frameworks. The conclusion is that information security for SOA needs to be addressed more holistically, following an Enterprise Information Security Architecture (EISA) approach where Enterprise Architecture (EA) is concerned with the design of the overall architectural vision of an organization. The framework chosen for this purpose is SABSA, a well-known enterprise security architecture. Using the example of access control to highlight challenges, it becomes clear that Information Security governance for SOA can benefit from an approach such as SABSA.

Towards a Service and Choreography Governance Framework for Future Internet

Abstract: The Service Oriented Architecture (SOA) Governance refers to all measures, rules, descision-making, information and evaluation that ensure the proper functioning and control of services whithin an organization. In the Future Internet vision of services and in a choreography context, many heteregenous services from several organizations need to collaborate together to achieve a common goal. In order to improve the interoperability, reuse, the good behavior, the control and the efficiency of a choreography, it is necessary to define a governance framework for services and choreographies. This paper addresses the raised issues by providing a governance framework vision. EasierGov deals with both services and choreographies.

Governance Policies for Verification and Validation of Service Choreographies .

Abstract: The Future Internet (FI) sustains the emerging vision of a software ecosystem in which pieces of software, developed, owned and run by different organizations, can be dynamically discovered and bound to each other so to readily start to interact. Nevertheless, without suitable mechanisms, paradigms and tools, this ecosystem is at risk of tending towards chaos. Indeed the take off of FI passes through the introduction of paradigms and tools permitting to establish some discipline. Choreography specifications and Governance are two different proposals which can contribute to such a vision, by permitting to define rules and functioning agreements both at the technical level and at the social (among organizations) level. In this paper we discuss such aspects and introduce a policy framework so to support a FI ecosystem in which V&V activities are controlled and perpetually run so to contribute to the quality and trustworthiness perceived by all the involved stakeholders.

Validation and verification policies for governance of service choreographies

Abstract: The Future Internet (FI) sustains the emerging vision of a software ecosystem in which pieces of software, developed, owned and run by different organizations, can be dynamically discovered and bound to each other so to readily start to interact. Nevertheless, without suitable mechanisms, paradigms and tools, this ecosystem is at risk of tending towards chaos. Indeed the take off of FI passes through the introduction of paradigms and tools permitting to establish some discipline. Choreography specifications and Governance are two different proposals which can contribute to such a vision, by permitting to define rules and functioning agreements both at the technical level and at the social (among organizations) level. In this paper we discuss such aspects and introduce a policy framework so to support a FI ecosystem in which V&V activities are controlled and perpetually run so to contribute to the quality and trustworthiness perceived by all the involved stakeholders.

A design science approach to develop a new comprehensive soa governance framework

Abstract: SOA governance has a critical role in achieving success and realizing the benefits of SOA. Without effective SOA governance, organizations will experience some significant challenges including difficulties in designing effective decision structures and managing services. To address SOA challenges, organizations require a comprehensive SOA governance framework to implement management and control mechanisms. Study of existing frameworks reveals that these frameworks are not expressive enough to cover all elements of SOA governance and also, they do not completely document underpinning structures such as processes, procedures, responsibilities and measurement metrics. In this paper, we propose a new SOA governance framework that is more comprehensive and expressive than its counterparts. In the process of developing the framework, a set of important elements for a desired SOA governance framework is proposed. Based on these elements, a new SOA governance framework is developed. The proposed framework is obtained by extending characteristics of COBIT and applying ITIL service lifecycle activities to support the SOA governance principles and requirements. It is a perceptible framework that clarifies all processes, activities, metrics and other related elements in a logical structure. Also, to simplify the application of the framework, an implementation process is proposed.

How to Design a Global SOA Infrastructure: Coping with Challenges in a Global Context

Abstract: This article demonstrates how to build a globalSOA infrastructure, using a step by step approach and Design Patterns. The proposed architecture results in a minimalistic use of the SOA concepts and a novel solution for SOA management and governance which goes beyond current vendor products.

Establishing service management in SOA

Abstract: In service-oriented architectures the management of services is a crucial task during all stages of IT operations. Based on a case study performed for a group of finance companies the different aspects of service management are presented. First, the paper discusses how services must be described for management purposes. In particular, a special emphasis is placed on the integration of legacy/non web services. Secondly, the service lifecycle that underlies service management is presented. Especially, the relation to SOA governance and an appropriate tool support by registry repositories is outlined.

CommonGOV: A consolidate approach for governance of service-oriented architecture

Abstract: Service-Oriented Architecture (SOA) is a paradigm used by organizations to reduce costs and foster agility through reuse of assets and an increase of alignment between business and IT. To achieve these benefits, a governance model is vital to ensure that technical actions and decisions of IT departments are aligned to organizations' business goals and requirements. There are several proposals of SOA governance models in academia and industry. However, there are important differences between them concerning process, elements and definitions they propose. This work analyzes the main current SOA governance models proposed by literature, and presents a consolidate approach aiming to create a governance model that addresses the most important issues for organizations.

Evaluating the Use of ITIL to Manage SOA Applications in Operations Environments

Abstract: Service Oriented Architecture (SOA) principles encourage software applications to be designed for dynamic reuse, integration and interoperability with other software applications thereby reducing time-to-market of software applications that support new or changed business processes. However, implementation of SOA applications in enterprise systems has not been as wide as would have been expected given the benefits SOA applications offer to both IT and business. One of the many reasons cited for slow adoption of SOA applications in enterprise systems are issues of Quality of Service (QoS) experienced with the applications in operations environments. Information Technology Infrastructure Library (ITIL) is the most widely used framework for management of Information Technology (IT) services that has been proven to improve customer satisfaction and operational efficiencies of services that IT departments offer to business. This research investigated the extent to which ITIL can be used to improve QoS of SOA applications in operations environments. It was observed that, ITIL version 3 offers processes that when applied in environments where SOA applications have been deployed, a significant amount of improvement in the QoS of the applications was reported by management of IT departments. IT practitioners reported several advantages of using ITIL to manage SOA applications including: performance improvement as a result of improved application monitoring, faster problem isolation and resolution, improved service quality and more controlled change to applications. Some disadvantages of using ITIL were also observed.

Supporting USDL by a Governance Framework

Abstract: The previous chapter introduced service marketplaces as fundamental tool that enables and benefits service ecosystems. The application of service marketplaces for enterprise resource planning is a growing market. The operation of such an online marketplace requires a governance approach that lies adjacent to the requirements of a SOA and the more general governance of IT. It also has requirements of its own, especially when it comes to the description of services with languages such as USDL. In this chapter, we propose four building blocks as a basis for a governance framework that is capable of supporting the operation of a service marketplace. The research is based on existing frameworks and also takes into consideration the particularities of emerging SOA Governance approaches. We emphasize the processes required for the management of service descriptions.

An ITIL v3-Based Solution to SOA Governance

Abstract: As the adoption of SOA becomes more popular, the problems of implementing SOA are becoming increasingly serious. The proposal and research on SOA governance are intended to resolve these problems and provide guidance on how to plan, design and operate SOA, as well as maximize profits. Many IT organizations have proposed their SOA frameworks, but these frameworks have some disadvantages. In this paper, we propose an ITIL v3-based solution to SOA Governance. Adopting the framework of ITIL, our solution centers around the services life cycle, defines the implementation of each phase, and provides guidance on best practice. It is therefore applicable to practice.

A Study on Software Components Governance Based on SOA Governance Elements

Abstract: Just as SOA (Service-Oriented Architecture) governance, software components management has many challenges related to promoting best practices on Software Reuse. SOA governance frameworks were elaborated in order to define and introduce SOA adoption and operation policies, as well as mechanisms to control its application. Considering the Component-based Software Engineering inhibitors, components governance is still a challenge in Software Reuse. This paper aims at analyzing whether essential elements included in SOA governance models can be applied to create a proposal of a framework for software components governance. The analysis was evaluated through an empirical study with experts from universities and companies and the results allowed to map the influence of the elements and its classification in three Software Engineering perspectives, i.e., people, process and technology.

How to Do SOA Right? An SOA Governance Framework for the ESA Space Situational Awareness Preparatory Programme

Abstract: Service Orientation is a software design paradigm, which promises increased return on IT investments and organisational agility towards business changes. In the past years, the SOA design paradigm has been adopted by a large number of new software development projects. Many organisations are however facing difficulties in demonstrating the value of their SOA projects. This has been mainly because most of early SOA initiatives have been technology driven. This setback has led to a shift in the SOA paradigm, moving the focus from technology to SOA as a design paradigm. Organisations have in the recent years come to realise that the promised benefits of SOA, come unavoidably with the need for more coordination across the traditional boundaries of individual projects and across business lines. This need is typically addressed by establishing some level of governance in an SOA environment. Without an appropriate level of governance the SOA projects can quickly spiral to chaos and end in the undesirable state of "Wild West SOA". An SOA governance is typically defined using a set of "precepts", "processes", "roles" and "metrics", which together establish the framework for making the right decisions when doing SOA. SOA adoption impacts many aspects of funding, planning, implementation and operation of software systems. A successful SOA Governance framework must accordingly cover the complete service life-cycle as well as the service portfolio management aspects; The example of the ESA's Space Situational Awareness Preparatory Programme (SSA-PP) demonstrates how SOA and SOA Governance can be successfully applied in the context of a space programme. One of the objectives of the SSA-PP has been provision of services based on federation of assets, which are owned and governed by different participants. SOA has therefore been adopted as a suitable architectural choice for realising SSA-PP software systems. The SSA services are currently being developed in multiple parallel software development projects with European industry throughout Europe. This setup represents some challenges at system level, as each project reuses services of other projects while providing in turn its own services for reuse to others. Moreover the system level SSA capabilities can only be realised through orchestration of the services of multiple projects. The interdependency of the service development projects is typical for a mature SOA and gives raise to the need to more strict coordination when it comes to introduction of new services vs service reuse, standardisation of service contracts, use of common data models, governance of service reuse, service ownership and service change management. In order to address this eminent need for coordination, The SSA Preparatory Programme SOA Governance Framework has been developed in 2011 in a joint effort by the European Space Agency (ESA) and industrial experts.

Collaboration between SOA and Cloud Computing at a Glance

Abstract: SOA (Service Oriented Architecture) is an architectural style which is about orchestration of services whereas cloud computing is an autonomic computing which delivers computing as a service rather than product. People may consider SOA and Cloud as competitors but they complement each other. Cloud computing embraces the notion of "everything as a service" and covers three categories of service: infrastructure, platform and software as a service. SOA's approach of managing and governing processes is well-defined and has a potential for being applied to everything as a service in cloud. Since SOA is a relatively mature field, than Cloud, there is a good scope for cloud computing to judiciously inherit from best practice in SOA governance.

Service-Oriented Architecture (SOA): An Empirical Evaluation of Characteristics, Adoption Determinants, Governance Mechanisms, and Business Impact in the German Service Industry

Abstract: This literature review synthesizes existing research in the field of Service-Oriented Architectures (SOA) from a business perspective and integrates results from 40 works to offer researchers an overview about the existing body of knowledge in this research field as well as a research agenda, which unifies and extends previous efforts. While the literature regarding the technologies and design principles for SOA and even Service-Oriented Enterprises (SOE) converges, especially research regarding the identification of determinants influencing SOA adoption, governance mechanisms for effectively implementing SOA, and regarding SOA’s actual business impact is needed. Previous empirical research indicated promising factors in each of these fields. However, future research should especially draw attention to cover each of the research areas holistically. Moreover, extending the use of empirical research methods will further improve our understanding regarding the importance of different adoption determinants, governance mechanisms, and the actual business value of SOA.

Governance for Service-oriented Architectures - Component Analysis and Decision Support for Process Conformance Assessment

Abstract: Times characterised by globalisation, volatile markets, and increasing numbers of legal regulations, present companies and their IT systems with new challenges. Increasing flexibility requirements and the requisite continuous adaptation of internal, IT-based processes often exceed the IT departments’ capabilities for timely reac- tion to environment changes and fast implementation of sustainable solutions. However, experts consider this very ability – adapting the business strategy as well as the IT system – an important competitive advantage. In the last decade, the paradigm of Service-oriented Computing has emerged that addresses these challenges. Based on software services, Service-oriented Architectures (SOA) represent a new concept of efficiently mapping business processes and business goals to IT, adhering to the companies’ process flexibility and adaptability requirements outlined above. Regarding IT system control and adherence to legal regulations, so far, in large companies, IT Governance proved itself as indispensable support. In recent years, SOA Governance has been recognised as an holistic discipline that is to realise this sup- port for a large SOA system, while preserving its high degree of flexibility. So-called IT Governance Frameworks serve as a basis, formulating best practices and reference pro- cesses. For the assessment of adherence to these, experts certify IT systems, for example concerning process conformance. In the case of the latter, in order to ensure process con- formance already in the early state of process design, efficient reference process retrieval techniques are beneficial. Currently, experts’ notions of SOA Governance vary consid- erably so that SOA Governance Frameworks as well as analytical support for process conformance assessment are scarcely represented in both, research and industry. In this context, this thesis contributes in the two topics of SOA Governance and Process Model Similarity. First, we elaborate, amongst others, a new operational model for SOA Governance. Second, supplementary, we develop a novel analysis technique for process conformance assessment. Regarding the first contribution, we perform a structural analysis of approaches and notions of SOA Governance, authored in consulting industry, in academia, and by soft- ware vendors. As key result, we identify 10 central components of SOA Governance. Based on the insights of the analysis, we develop a comprehensive definition, a consoli- dated service life cycle, as well as a generic operational model for SOA Governance. Regarding the second contribution of this thesis, complementing the operational mo- del, we develop a technique for comparison of reference process models with models of realised processes, as well as for their retrieval (related cluster pairs). The comparison approach performs a structural decomposition based on similar process regions. The evaluation of this approach attests a high level of accuracy, which indicates an effective assistance to manual business process conformance assessment. Additionally, based on related cluster pairs, we introduce a novel metric for process model similarity. Evaluation results show clear performance improvements compared to related approaches. Beyond the scope of SOA Governance, this approach represents a general contribution to Process Model Similarity research.

Mapping a Six Phase Lifecycle Model of SOA Governance and ITIL v3.0

Abstract: Movement of Organization to Service Oriented Architecture had those used advantages such as expense reduction by reuse, better unity by standardization and new Business Opportunity by agility. Therefore, Failure of SOA projects is expected, unless organization architecture is managed correctly. There are different model to implementation SOA Governance. One of the models considered is a six-phase lifecycle of SOA Governance. As core of Service Oriented Architecture is service. SOA governance, therefore, focuses on service management. On the other hand, ITIL v3.0 focuses on activities related to creation and service management with reuse ability. By considering service importance in these two areas and by achieving more impressive management and governance on an organization, the new map of SOA governance with ITIL v3.0 has been introduced. So that considers more details for Identification, creation and management of services. Mapping six phases of SOA governance and five phases of ITIL v3.0 are done to improve organization governance by combination of phases and processed connected to any phase in any step of map. So that towards previous work, the purpose as accurate and detailed Investigates, in order to Resolve some weaknesses in SOA governance. (Azad Shojaei and Soma shahvaysi. Mapping a Six Phase Lifecycle Model of SOA Governance and ITIL v3.0. J Am Sci 2012;8(6):462-467). (ISSN: 1545-1003). http://www.americanscience.org. 59

SOA Governance in 3-D

Abstract: SDLC and governance processes are difficult to model in a book because it is a 2-D model. This article describes how both SOA SDLC and SOA governance processes described in "SOA Governance: Governing Shared Services On-Premise & in the Cloud", can be modeled with IDEF0 to allow better visualization for the processesinputs and outputs, thereby creating a complete workflow . In this model, the SOA governance precepts are created as controls to the SOA governance and SDLC processes. The SDLC outputs feed the governance processes to establish the SDLC-to-governance chaining. The IDEF0 methodology allows drilling down the activities to create a 3-D model.