> Archive > Issue XLII: August 2010

Issue XLII, August 2010

Information Security for SOA: Why the Information Security Consultancy Industry Needs a Major Overhaul - Part I

Hans Wierenga

Art Ligthart

Current conceptions of what information security is all about - such as are embodied in CRAMM, the ISO 27000 family of standards and COBIT - are too systems-centric to be effective in the Internet age. The key terms - confidentiality, integrity and availability (CIA) - describe properties of systems and do not adequately address the collective business value of information security. We suggest replacing them with a service-centered approach based on the terms trust, respect and utility (TRU), in order that the security impact of the totality of our information systems can be adequately assessed and managed from a business perspective. On the 30th of April, 2009, a lone assailant attempted to crash his car into an open bus containing the Dutch royal family. The next working day, thousands of municipal workers, driven by nothing but personal curiosity, accessed the personal details of the assailant using the national citizens registry. They could see where he was born, who his parents were, whether he had ever been married, and his current and previous residential addresses...

Modern SOA Methodology and SOA Adoption
Using Agile Practices - Part I

Vijay Narayanan

Vijay Narayanan

Enterprises large and small are adopting Service Oriented Architecture (SOA) in recent years in order to gain cost savings from streamlined processes as well as create opportunities for revenue generation. Unlike previous information technology (IT) initiatives SOA places business goals front and center of the adoption strategy. Pursuing SOA as a technology-only effort will result in tactical wins for the enterprise but obtaining effective business results will remain elusive. The importance of SOA being relevant to business drivers and strategies cannot be overstated. Success with SOA hinges on several key considerations such as the scope of the overall initiative, development methodology chosen, and the extent to which the effort is tailored to the enterprise's environment. There are a variety of SOA methodologies: All these methodologies provide specific techniques to identify, specify, and realize services that make up your enterprise's SOA. They provide guidance on analysis and design activities that can be used to model services (using business, service, and technology perspectives) and implement them. Additionally, they provide architectural guidance for implementing services using a layered approach that leverages existing capabilities in the enterprise...

Fluid Services - Part II

Ilkay Benian

Ilkay Benian

Today's service architectures lead to services that directly talk to data sources and avoid service reuse. This can be achieved either by replicating business rules into each and every isolated service, or by reusing behavior at component level While this design is acceptable in small organizations, it suffers from complexity introduced by deployment and management of reusable components. This is the approach of most component and object oriented methodologies. Data is processed by in memory reusable objects. This design also suffers from increasing response time due to increasing processing. This shows SOA's service reuse approach which basically removes the deployment and version management issues of component oriented and object oriented approaches. However, it has a chronic and terminal illness caused by the accumulating latencies at every service reuse...

Announcing the French-Translated SOA Manifesto
& Annotated SOA Manifesto

Anthony Assi Jean-Paul De Baets, Florent Georges, Yves Chaix, Mario Moreno

Anthony Assi
Jean-Paul De Baets Yves Chaix Mario Moreno

Following the release of the Spanish and Chinese versions of the SOA Manifesto, a group of French-speaking SOA experts and IT professionals have collaborated to produce fully translated versions of the SOA Manifesto and the Annotated SOA Manifesto. This team of inter-continental translators addressed many of the nuances required for the accurate interpretation of the manifesto declaration, guiding principles, and the many annotated comments added soon after the original announcement of the SOA Manifesto last October in Rotterdam as part of the 2nd International SOA Symposium. The team was comprised of Anthony Assi from Logica, Jean-Paul De Baets from FEDICT, Yves Chaix, Florent Georges, and Mario Moreno from Logica. Several of these authors will also be speaking at the 3rd International SOA Symposium, which is occurring in Berlin and is expected to have many attendees from French-speaking countries, such as France and Belgium. The French SOA Manifesto is further being adopted overseas in other French-speaking regions, such as Quebec, Canada.

Visit the French-translated pages here:

[view] (Original SOA Manifesto)

[view] (Annotated SOA Manifesto)

2017 2016 2015 2014 2013 2012 2011 2010 2009 2008 2007 2006