Академический Документы
Профессиональный Документы
Культура Документы
Governance for
IBM WebSphere
SOA Foundation
Table of Contents
1 Summary .................................................................................................... 2
2 Introduction ................................................................................................. 3
9 Unified SOA Governance for IBM WebSphere and IBM Rational ...........................15
SOA Softwares products provide Unified SOA Governance Automation for the IBM
WebSphere SOA Foundation. This allows customers to confidently use IBM WebSphere
products as part of a heterogeneous enterprise SOA environment sharing services with
other commercial SOA platforms like SAP, Microsoft, BEA, and Oracle, as well as RedHat
and other open source providers.
IBM WebSphere customers add SOA Softwares Unified SOA Governance Automation
solution to the IBM WebSphere SOA Foundation to:
Ensure that services they identify, design and build using their WebSphere
products are relevant and consumable to applications they plan, design, build and
deploy using other technologies like Microsoft or Oracle, or buy from other
vendors like SAP.
This whitepaper builds on the foundation created in SOA Softwares whitepaper Unified
SOA Governance, first published in December 2007. It describes how SOA Softwares
Portfolio Manager, Repository Manager, Service Manager and Policy Manager integrate
with a wide range of IBM WebSphere and Rational solutions to provide Unified SOA
Governance automation capabilities, and the reasons why those capabilities are so
important.
Some of the IBM WebSphere products include some platform-optimized SOA Governance
capabilities. This whitepaper explains what these capabilities are, and how SOA
Softwares products augment them to provide a true enterprise SOA Governance
automation solution.
This document describes the integration points and added governance capabilities for:
WebSphere Enterprise Service Bus provides Web services connectivity and JMS
messaging
WebSphere Service Registry and Repository (WSRR) helps publish, find, enrich,
manage and govern SOA services
Rational ClearQuest IBMs software defect tracking and change request platform
Unified SOA Governance ensures the applicability, integrity and usability of a wide range
of assets through all their lifecycle stages from asset identification through
deprecation. The full lifecycle is split into planning governance, lifecycle governance,
and operational governance.
Planning Governance is a new area for SOA. It allows companies to build to plan, and
build to priority modeling current and desired architecture and identifying and
prioritizing candidate services. Planning Governance solutions maximize the efficiency of
investment in SOA, solidifying the role of existing platforms as foundation service
providers.
I.T. has always struggled with balancing long term planning with addressing the
immediate and short term needs of the business, in most cases the short term
requirements take precedent over long range planning. When this is applied to
enterprise architecture, organizations end up with a bunch of services that deliver
minimal business value, instead of their goal of SOA.
The Operational Governance solution relies heavily on the Policy Governance solution for
discovery of policies for implementation and enforcement. A well architected
Operational Governance solution will fully abstract service consumers and providers from
the complexity of policy implementation and enforcement, service endpoint location,
transport, standards, message exchange pattern, and other impedances to
interoperability. It should provide agents, delegates, and a network resident
intermediary for service virtualization.
Policy Governance defines and manages policies, associates them with various assets,
and validates and reports on policy compliance. It manages a wide range of different
policy types from metadata compliance policies applied in Planning and Development
It is critical that the Policy Governance solution ensures consistent policy definition,
implementation, enforcement, validation, and audit through all stages of the lifecycle,
and across all distributed and mainframe platforms.
Unified SOA Governance promotes the core SOA governance best practices of:
Trust and Management Mediation ensures interoperability across disparate partners and
platforms, trust enablement and trust mediation complementing threat prevention
systems. It provides provide last-mile security, metric collection and reporting, SLA
monitoring and management, to ensure that services are governed, managed, and
secured, and policy implementation and mediation to allow consumers to communicate
with a wide range of mission critical business services exposed from any platform.
Change Impact Mitigation provides change management and impact analysis processes
integrated with the governance workflow to ensure that changes to services or other
assets dont cause major outages by breaking the consumption model.
Much of the benefit of SOA is derived from the promise of seamless interoperability
between platforms, with applications built using .NET and WCF consumer services
exposed from COTS, Mainframe, or Java applications. One of the core goals of SOA
Governance is to ensure that services are relevant and consumable between platforms.
As such it makes no sense to leverage governance capabilities built into the platforms
themselves, as this simple promotes silos of services within platform domains.
Not all platforms are governable, in fact platforms fall into one of 3 categories:
Unified SOA Governance solutions integrate seamlessly with the platforms providing
varying degrees of configuration, policy implementation and enforcement, message
handling, and workflow support, largely depending on the level of sophistication of the
platform itself.
All applications that expose and consume services at runtime are service platforms.
These include application services like IBM WebSphere, Microsoft IIS, Oracle/BEA
WebLogic, JBoss and others; ESBs from vendors including IBM, Microsoft Oracle/BEA,
JBoss, TIBCO and others; mainframe applications running in CICS and IMS; COTS
applications like CICS; and SaaS environments like Salesforce.com and Amazon.
Governed Development Platform status means that the development platform integrates
with an Unified SOA Governance solution to make and share decisions about assets and
artifacts.
SOA Infrastructure is the set of tools and technologies that an organization deploys to
secure and manage services and service-oriented business applications. It provides the
delivery mechanism for a comprehensive governance solution including Registry,
Repository, Management, and Security services, and intermediaries to ensure the
application and use of these services.
The SOA Infrastructure reference model shown above is published by SOA Software, the
leading provider of SOA Infrastructure software products. It provides a product and
vendor agnostic view of the concepts, components and standards that make up a
successful SOA Infrastructure. For more information see SOA Softwares whitepaper
The SOA Infrastructure Reference Model, published in May 2006.
The core elements of the Unified SOA Governance system are the Planning and
Development Repository and Registry, Policy Management System, Virtualization
System, Management and Security System, and their associated intermediaries. Also, as
described above, governance products and systems not having deep integration between
these elements would offer minimal value to an SOA implementation.
The SOA Repositories provides solutions for the governance of planning and
development assets and artifacts. Governance in this context includes registration,
lifecycle management, planning, design-time, and run-time policy invocation, and
business value visibility. The repository implements registry standards for metadata
exchange. It is the main source of SOA information for end users and applications.
The SOA Policy Management System provides a framework for defining and managing
policies that are enforced throughout the planning, lifecycle, and operational governance
processes. It ensures that policies are applied uniformly across all governed and
governable platforms.
The SOA Registry supports the categorization, classification, tagging, and publication of
services. It provides browse and search interfaces for service discovery, a publication
interface for service registration, and a subscription interface for synchronization with
other registries and repositories.
An SOA Management solution monitors and manages the reliability, availability and
performance of services.
An SOA Security solution provides service and message security capabilities including
authentication (identity assertion and token exchange), authorization, privacy, non-
repudiation and audit.
SOA intermediaries exist in a number of forms, the most important of which are stand-
alone (proxy/router), and agent (embedded in container). Intermediaries enforce and
implement policy for Management and Security solutions. The primary role of the agent
intermediary is to ensure last-mile policy enforcement, while the primary role of the
stand-alone intermediary is to provide service virtualization to isolate consumers from
service location, policy, implementation, and change.
SOA Software builds its Integrated SOA Governance solution around its Policy
Manager, Repository Manager, and Service Manager products for SOA Policy
Governance, Development Governance, and Operational Governance.
Portfolio Manager is an innovative Planning Governance product that helps ensure the
alignment of SOA Programs with strategic IT investment and business objectives and
makes sure that enterprises build the right services at the right time. It helps
customers identify candidate services and build an SOA roadmap through SOA Modeling,
Asset Identification, and a Portfolio Management process. To achieve these goals
Portfolio Manager functions as part of a unified SOA Governance automation suite with
seamless integration with Repository Manager and Policy Manager.
IBM offers several SOA Governance products in its SOA product portfolio. Most notable
are WebSphere Service Registry and Repository, and Tivoli CAM for SOA. These
products are platform optimized for the IBM product family, and are extended by an
enterprise Unified SOA Governance Automation solution.
IBM customers are adding SOA Softwares Portfolio Manager, Repository Manager,
Service Manager and Policy Manager to provide Unified SOA Governance Automation for
their IBM platform to provide a number of solutions:
SOA Softwares products support and promote common Unified SOA Governance best
practices, and enable the consistent execution of these best practices with the IBM
platform. They offer the added benefit that there is no requirement to introduce another
non-IBM platform in order to support the required architecture.
Using Portfolio Manager, Repository Manager, Policy Manager and Service Manager, SOA
Software certifies IBMs products as Governed Service Platforms, or in the case of
WSRR, a Governed Service Repository. Certified Governed Service Platform status
means that customers can be confident that their platforms will preserve the fidelity of
the governance models, structures and mechanisms supporting an enterprise SOA
program.
www.soa.com Copyright by SOA Software, Inc. 2009. All rights reserved. 15
IBM offers products supporting numerous aspects of software development, including
software configuration management (Rational ClearCase), defect tracking and change
request management (Rational ClearQuest) and many others. IBM also provides a
leading Eclipse-based Integrated Development Environment (IDE) Rational Application
Developer (RAD), providing software engineers core development tools and integrated
access to the above-mentioned underlying development systems of record. SOA
Softwares Repository Manager establishes a Governed Development Platform
environment over these and many other development systems of record. Certified
Governed Development Platform status ensures that these development systems of
record serve as coherent and consistent sources of software asset metadata and
artifacts feeding into the IT organizations SOA development governance processes.
Repository Manager automates the gathering and collection of this information and
presents it to key SDLC stakeholders throughout the development governance lifecycle.
It enables customers to respond faster than their competitors, allowing them to provide
their customers with the service and products that differentiate them from the pack.
Process Server:
Orchestrates the assets of your business to form highly optimized and effective
processes to meet your business goals, whether you need to automate processes
in the factory, process claims and financial payments, execute an efficient supply
chain, or ensure compliance with the latest industry regulations.
Ensures interoperability and flexibility as part of your service oriented
architecture (SOA) through adoption of popular standards, such as BPEL, Web
services, JMS, XML, and many more.
Uses WebSphere Integration Developer, providing a developer experience that is
second to none. One tool, one set of skills enables you to orchestrate processes,
construct mediations between services, and truly integrate the capabilities
previously locked away in your packaged business applications.
Contains WebSphere Enterprise Service Bus, which mediates disparate resources,
maximizing reuse of your assets wherever they are irrespective of vendor,
platform, or whether they are home-grown or packaged applications.
SOA Softwares Portfolio Manager, Repository Manager, Service Manager and Policy
Manager ensure that WebSphere Process Server can facilitate and benefit from the core
Unified SOA Governance Automation best practices:
SOA Software provides a fully functional Agent for Process Server. The Agent deploys
into the container hosting Process Server and provides a management application, a
policy engine, and a handler mechanism. The management application monitors Process
Servers management API for new services. When it discovers a new service, depending
on its policies it will either automatically install a Process Server primitive into the
process to intercept messages for processing by the policy engine, or simply register the
service with Policy Manager. The policy engine uses WS-MetadataExchange and WS-
Policy to discovers its policies using from Policy Manager, and reports metrics, usage,
and exceptions to Policy Manager over standard-based protocols.
SOA Software also provides a fully functional Delegate in the form of a Process Server
primitive. The Delegate deploys into Process Server processes to abstract them from
the location, transport and other policy representations of consuming services.
IBM WebSphereEnterprise Service Bus applies Web services connectivity and JMS
messaging, improving flexibility through the adoption of service-oriented interfaces. It:
SOA Software has certified IBM WebSphere Enterprise Service Bus as a Governed
Service Platform. This allows customers to use WebSphere Enterprise Service Bus to
implement and enforce governance policies for enterprise Web services providing
reporting data to enable a closed-loop audit process as part of their enterprise SOA.
SOA Softwares Portfolio Manager, Repository Manager, Service Manager and Policy
Manager ensure that WebSphere Enterprise Service Bus can facilitate and benefit from
the core Unified SOA Governance Automation best practices:
Trust & management mediation provide last-mile security, metric collection and
reporting, SLA monitoring and management, to ensure that services exposed by
WebSphere Enterprise Service Bus are governed, managed, and secured.
Provide policy implementation and mediation to allow WebSphere Enterprise
Service Bus to communicate with a wide range of mission critical business
services exposed from any platform.
Service virtualization - safely make WebSphere Enterprise Service Bus services
available to partners and consume partner services
Governance Automation automate the publishing of WebSphere Enterprise
Service Bus services, providing lifecycle workflow with approvals, collaboration
services, and consumer contract provisioning
Continuous Compliance and Validation - ensure the relevance, applicability and
suitability of WebSphere Enterprise Service Bus services
Metadata federation - ensure that WebSphere Enterprise Service Bus services are
visible to, relevant, and consumable by other platforms and make services from
other platforms visible to, relevant and consumable by WebSphere Enterprise
Service Bus. Automatically discover services in Enterprise Service Bus and
publish them into Policy Manager subject to governance policies
Change impact mitigation - make sure that changes to WebSphere Enterprise
Service Bus services dont cause major outages by breaking consumers
Uniform policy management - ensure that WebSphere Enterprise Service Bus
services can be leveraged as first-class citizens throughout an enterprise SOA by
using policies that are uniform across all platforms
SOA Software also provides a fully functional Delegate in the form of an Enterprise
Service Bus primitive. The Delegate deploys into Enterprise Service Bus applications to
abstract them from the location, transport and policy complexities of consuming
services.
SOA Softwares Policy Manager for IBM WebSphere DataPower ensures that the IBM
WebSphere DataPower SOA Appliances can facilitate and benefit from the core Unified
SOA Governance Automation best practices:
Trust & management mediation provide last-mile security, metric collection and
reporting, SLA monitoring and management, to preserve the fidelity of their
governance models and structures. Define and govern the lifecycle and
mediation of virtualization policy allowing the IBM WebSphere DataPower SOA
Appliances to virtualize a wide range of mission critical business services exposed
from any platform.
Service virtualization publish virtual services to the IBM WebSphere
DataPower SOA Appliances as part of an Unified SOA Governance Automation
solution
Governance Automation automate the publishing of the IBM WebSphere
DataPower SOA Appliance services, providing lifecycle workflow with approvals,
collaboration services, and consumer contract provisioning
Continuous Compliance and Validation - ensure the relevance, applicability and
suitability of services published by the IBM WebSphere DataPower SOA
Appliances
Metadata federation - ensure that WebSphere services published by the IBM
WebSphere DataPower SOA Appliances are visible to, relevant, and consumable
by other platforms
Change impact mitigation - make sure that changes to services published by the
IBM WebSphere DataPower SOA Appliances dont cause major outages by
breaking consumers
Uniform policy management - ensure that the IBM WebSphere DataPower SOA
Appliances can be leveraged as first-class citizens throughout an enterprise SOA
by using policies that are uniform across all platforms
SOA Softwares Policy Manager for IBM WebSphere DataPower can govern the behavior
of the IBM WebSphere DataPower SOA Appliances by publishing virtual services to
them, and specifying policies for the services they publish. These policies are specified
using WS-Policy, and discovered using WS-MetadataExchange. The IBM WebSphere
DataPower SOA Appliances report metrics, usage, and fault data to Policy Manager
according to the policies specified for published services.
WSRR is an industrial-strength tool that enables you to publish, find, enrich, manage
and govern services in enterprise SOA.
SOA Softwares Portfolio Manager, Repository Manager and Policy Manager can ensure
that WSRR can facilitate and benefit from the lifecycle governance best practices driven
by Unified SOA Governance Automation:
SOA Softwares Portfolio Manager and Repository Manager can federate with the IBM
WebSphere Service Registry and Repository. It can synchronize selected services,
WSDLs, interfaces, schemas, and taxonomies to ensure consistency between Portfolio
Manager, Repository Manager, Policy Manager and WSRR. The integration extends the
Policy Manager contract provisioning, compliance policy and workflow models to provide
consumer contract provisioning and lifecycle governance compliance and workflow
capabilities to assets published in WSRR.
It distributes information and data generated by business events in real time to people,
applications, and devices throughout your extended enterprise and beyond. Message
Broker:
Provides a smart approach to SOA, extending the reach of your business beyond
your firewall by supporting a broad range of multiple transport protocols and data
formats
Integrates multiple applications, networks, and device types using a platform-
independent based enterprise service bus that lets you conduct business reliably
and securely
Increases business agility and flexibility, extending easily to a Federated ESB
model, while reducing development costs by separating integration logic from
applications
Improves the flow of information around the business, moving away from hard-
coded point-to-point links to more flexible distribution mechanisms such as
publish/subscribe and multi-cast
Uses a simple programming model for connectivity and mediation, including a
robust set of pre-built mediation function and ways to customize mediations
Exploits the industry-leading WebSphere MQ messaging infrastructure, and
supports transformation options with graphical mapping, Java, ESQL, XSL, and
WebSphere Transformation Extender
Delivers extensive administration and systems management facilities for
developed solutions
SOA Softwares Policy Manager and Service Manager ensure that WebSphere Message
Broker can facilitate and benefit from the core Unified SOA Governance Automation best
practices:
Trust & management mediation provide last-mile security, metric collection and
reporting, SLA monitoring and management, to make services exposed by
WebSphere Message Broker business-class. Provide policy implementation and
mediation to allow WebSphere Message Broker to communicate with a wide
range of mission critical business services exposed from any platform.
Service virtualization - safely make WebSphere Message Broker services available
to partners and consume partner services
Governance Automation automate the publishing of WebSphere Message
Broker services, providing lifecycle workflow with approvals, collaboration
services, and consumer contract provisioning
Continuous Compliance and Validation - ensure the relevance, applicability and
suitability of WebSphere Message Broker services
SOA Software provides a set of custom nodes for the WebSphere Message Broker Toolkit
palette. These nodes can be dragged and dropped into the appropriate points in a
process flow and provide the full functionality of the Agent for last-mile policy
enforcement, and the Delegate for first-mile policy implementation.
Simplify the way they consume WebSphere Application Server 6.1 with new
Feature Packs. You can download the latest open standards and technical
innovations you need today.
Leverage the industry's premier Java 2 Enterprise Edition (J2EE) 1.4 and Web
services application platform to help build, run, integrate and manage dynamic,
On Demand business applications.
Build and deploy re-usable application services quickly and easily, with a simple
set of tools and interfaces.
Run services in a reliable, scalable, highly available, environment to ensure
business opportunities are not lost due to application downtime.
Secure applications and data with a resilient, standards-based security
infrastructure that will remove vulnerable threats while maximizing developer
productivity.
Reuse software assets and extend their reach with standards-based messaging
and the latest Web services standards, and manage applications effortlessly with
powerful, easy-to-use tools for administration and monitoring.
Grow as needs evolve, leveraging core assets and skills, with hundreds of IBM
and Business Partner products built on top of WebSphere Application Server.
SOA Softwares Policy Manager and Service Manager ensure that WebSphere
Application Server can benefit from the core Unified SOA Governance Automation best
practices:
SOA Software provides a fully functional Agent for WebSphere Application Server. The
Agent deploys as an application into the container providing a management application,
a policy engine, and a handler mechanism. The management application monitors
WebSphere Application Servers management API looking for new services. When it
discovers a new service it will, depending on its policies, automatically install an
appropriate handler (JAXRPC or servlet filter) into the application to intercept messages
for processing by the policy engine. The policy engine discovers its policies using WS-
MetadataExchange and WS-Policy from Policy Manager and reports metrics, usage, and
fault data back to Policy Manager.
SOA Software also provides a fully functional delegate in the form of an AXIS pivot
handler and a Java SDK. The delegate deploys into WebSphere Application Server
applications to abstract them from the location, transport and policy complexities of
consuming services.
Many of the worlds largest companies rely on z/OS for core enterprise computing and
data management. A lot of these companies will make their first steps to SOA by
exposing business logic from z/OS as Web services.
Once Y2K came and went without a computing apocalypse, companies with a significant
commitment to mainframe computing (Gartner defines a significant commitment as
more than 1000 MIPS) changed their focus from moving applications away from the
mainframe, to finding ways to better leverage the security, stability, and performance of
their mainframe environments. At the same time these companies began to face the
challenge of figuring out how to share business logic and data between the mainframe
and their emerging distributed computing environments. SOA and Web services provide
an ideal solution. Companies can expose core data and transaction services from the
mainframe, and can allow mainframe applications to consume services from the
distributed world.
SOLA integrates with SOA Softwares Portfolio Manager, Repository Manager, Service
Manager and Policy Manager to ensure that z/OS and CICS and/or IMS can benefit from
the core Unified SOA Governance Automation best practices:
SOA Softwares SOLA acts as a fully functional Agent for services exposed by z/OS and
CICS and/or IMS. SOLA automatically registers the services it creates in Policy Manager
and leverages Policy Managers lifecycle and provisioning workflow capabilities. Its
policy engine discovers policies using WS-MetadataExchange and WS-Policy from Policy
Manager and reports metrics, usage, and fault data back to Policy Manager.
SOLA also includes a fully functional delegate for z/OS and CICS and/or IMS applications
to abstract them from the location, transport and policy complexities of consuming
services.
Integration with leading IDEs allows you to work in your preferred environment
Transparent real-time access to files and directories virtually anywhere in your
organization
Sophisticated branching and graphical merge tools enable concurrent access and
efficient use of time
Lightweight, feature-rich clients allow you to work locally or remotely
Support for open source environments provides added workspace flexibility
Seamless integration with IBM Rational ClearQuest offers streamlined defect
tracking for better team coordination and tracking of project progress
Integration with IBM Rational Build Forge automates build tasks and reduces build
time
Operating systems supported: AIX, HP Unix, Linux, Other Unix, Sun Solaris, Windows
SOA Softwares Portfolio Manager and Repository Manager ensure that IBM Rational
ClearCase customers can benefit from the following core Unified SOA Governance
Automation best practices:
It provides defect tracking, process automation, reporting and lifecycle traceability for
better visibility and control of the software development lifecycle.
Real-time reporting and process enforcement improve project visibility and control
Automated workflows and e-mail notifications enhance team communication and
coordination
Test management unifies development and testing activities, from planning through
results, for improved software quality
Access control, electronic signatures, repeatable processes and audit trails simplify
compliance management
Web interface allows easy access from virtually anywhere
Integration with requirements, development, build, test, deployment and portfolio
management tools facilitates rapid response to change
Operating systems supported: AIX, HP Unix, Linux, Sun Solaris, Windows
SOA Softwares Repository Manager ensures that IBM Rational ClearCase customers can
benefit from the following core Unified SOA Governance Automation best practices:
Helps Java developers rapidly design, develop, assemble, test, profile and deploy high
quality Java/J2EE, Portal, Web, Web services and SOA applications.
Increases productivity and shortens the development and test cycles as it extends
the Eclipse 3.2 environment.
Features a flexible installation process designed to provide developers with only the
functions they need.
Is integrated and optimized for IBM WebSphere Application Server and IBM
WebSphere Portal Server products and includes test environments for these
products.
Shortens the Java learning curve through visual design, with auto-synchronized code
modeling.
Uses robust capabilities to create SOA applications, including the ability to
automatically create necessary SOA components such as WSDL and WSIL files.
Applies visual portal development techniques to speed development.
SOA Softwares Repository Manager and its RAD plug-in ensures that IBM Rational
Application Developer customers can benefit from the following core Unified SOA
Governance Automation best practices:
SOA Software, Policy Manager, Portfolio Manager, Repository Manager, Service Manager,
and SOLA are trademarks of SOA Software, Inc. All other product and company names
herein may be trademarks and/or registered trademarks of their registered owners.
Disclaimer: The information provided in this document is provided "AS IS" WITHOUT ANY WARRANTIES OF ANY KIND INCLUDING WARRANTIES OF
MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, OR NON-INFRINGEMENT OF INTELLECTUAL PROPERTY. SOA Software may make changes to
this document at any time without notice. All comparisons, functionalities and measures as related to similar products and services offered by other vendors are based on
SOA Software's internal assessment and/or publicly available information of SOA Software and other vendor product features, unless otherwise specifically stated.
Reliance by you on these assessments / comparative assessments are to be made solely on your own discretion and at your own risk. The content of this document may
be out of date, and SOA Software makes no commitment to update this content. This document may refer to products, programs or services that are not available in your
country. Consult your local SOA Software business contact for information regarding the products, programs and services that may be available to you. Applicable law
may not allow the exclusion of implied warranties, so the above exclusion may not apply to you.