sca services, cloud & architecture - oracle · - develop policies and approve with workflow -...
TRANSCRIPT
1 Copyright © 2011, Oracle and/or its affiliates. All rights
reserved.
Insert Information Protection Policy Classification from Slide 7
SCA – Services, Cloud & Architecture
Branislav Majerník
Solution Architect & Technology Consultant
Month, Day, Year
Venue
City
©2011 Oracle Corporation 2
The following is intended for information purposes
only, and may not be incorporated into any contract.
It is not a commitment to deliver any material, code,
or functionality, and should not be relied upon in
making purchasing decisions.
The development, release, and timing of any
features or functionality described for Oracle’s
products remains at the sole discretion of Oracle.
Safe Harbor
<Insert Picture Here>
Program Agenda
• Accidental SOA Cloud
• Hybrid SOA Cloud:
- Challenges
- Solutions
• Products
• Next Steps
©2011 Oracle Corporation 4
Pre-Cloud – Accidental SOA Architecture Redundant, brittle and complex architecture
MAINFRAME
DeleteOrder RemoveOrder DeleteOrderService CRUDOrderService
NotifyCustomer NotifyCustomerService UpdateCustomer
CheckCredit CreditCheck CheckCreditService
Services
Service
Consumer
©2011 Oracle Corporation 5
Shared Services Infrastructure
MAINFRAME
HR Sales R&D Departments
Marketing Shipping
Pre-Cloud – SOA Solution Shared Services Infrastructure
• Internally Driven Best-Practices
– Internal “Center of Excellence”
• Single Internal Source for Services
– Simplifies security; high performance LAN
• Unified design, runtime and governance
– Across all components of SOA
©2011 Oracle Corporation 6
Shared Services Infrastructure
HR Sales R&D Departments
Marketing Shipping
SaaS CRM
PaaS
IaaS
SaaS
SaaS Logistics
MAINFRAME
Accidental SOA Cloud Architecture
Bypass On-premise
IT
HYBRID SOA CLOUD CHALLENGES & SOLUTIONS
©2011 Oracle Corporation 8
• Maintain quality of service (QoS) despite cloud provider variability
Performance & Reliability
• Prevent external service attacks SOA
Security
• Control an increasingly distributed architecture
Governance
Hybrid SOA Cloud Challenges
©2011 Oracle Corporation 9
• Maintain quality of service (QoS) despite cloud provider variability
Performance & Reliability
• Prevent external service attacks SOA
Security
• Control an increasingly distributed architecture
Governance
Hybrid SOA Cloud Challenges
©2011 Oracle Corporation 10
Challenge: Performance & Reliability Maintaining Quality-of-Service despite cloud provider variability
Payroll Credit
Check Production
Customer
Status Order
Inventory
Check Services
Shared Services Infrastructure
Firewall
Legacy
Agility,
scalability,
performance and
reliability
On-premise
Applications
©2011 Oracle Corporation 11
Payroll Credit
Check Production
Customer
Status Order
Inventory
Check Services
Solution: Optimize for the Hybrid Cloud Service Result Cache
Shared Services Infrastructure
Legacy
Agility,
scalability,
performance and
reliability
On-premise
Applications
©2011 Oracle Corporation 12
• Description
– Store service results locally
– Expiration based on
time or expression
• Benefits
– Lower demand on
back-end applications
– Results are available
even when cloud service
provider is down
– Faster response time to overcome the typically increased latency of
cloud service access across Internet (compared to on-premise LAN)
Solution: Optimize for the Hybrid Cloud Service Result Cache
Simply activate with a checkbox
©2011 Oracle Corporation 13
• Maintain quality of service (QoS) despite cloud provider variability
Performance & Reliability
• Prevent external service attacks SOA
Security
• Control an increasingly distributed architecture
Governance
Hybrid SOA Cloud Challenges
©2011 Oracle Corporation 14
Payroll Credit
Check Production
Customer
Status Order
Inventory
Check Services
Shared Services Infrastructure
Legacy
Agility,
scalability,
performance and
reliability
On-premise
Applications
Challenge: Security in the Hybrid SOA Cloud Prevent attacks
Firewall
XML Attack
Cryptographic Attack
SOAP Attack
SaaS CRM
PaaS
IaaS
SaaS
SaaS Logistics
©2011 Oracle Corporation 15
Payroll Credit
Check Production
Customer
Status Order
Inventory
Check Services
Security & XML
Acceleration
Solution: Web Service Security in the DMZ The Enterprise Gateway
Shared Services Infrastructure
Enterprise Gateway
Legacy
Agility,
scalability,
performance and
reliability
On-premise
Applications
Firewall
XML Attack
Cryptographic Attack
SOAP Attack
SaaS CRM
PaaS
IaaS
SaaS
SaaS Logistics
©2011 Oracle Corporation 16
• Description
– Intrusion detection of
cryptographic, XML, and SOAP
attachments
– Real-time monitoring
– Policy management
• Benefits
– Ensures reliability of hybrid
infrastructure
– Improves performance through
policy conformance
Solution: Web Service Security in the DMZ
©2011 Oracle Corporation 17
• Maintain quality of service (QoS) despite cloud provider variability
Performance & Reliability
• Prevent external service attacks SOA
Security
• Control an increasingly distributed architecture
Governance
Hybrid SOA Cloud Challenges
©2011 Oracle Corporation 18
Challenge: Governance in the Hybrid Cloud Increased dependence on SLAs
Payroll Credit
Check Production
Customer
Status Order
Inventory
Check Services
Security & XML
Acceleration
Shared Services Infrastructure
Enterprise Gateway
Firewall
Legacy
Agility,
scalability,
performance and
reliability
On-premise
Applications
Out of SLA Compliance
©2011 Oracle Corporation 19
Payroll Credit
Check Production
Customer
Status Order
Inventory
Check Services
Security & XML
Acceleration
Shared Services Infrastructure
Enterprise Gateway
Firewall
Legacy
Agility,
scalability,
performance and
reliability
On-premise
Applications
Registry and Repository
Solution: Governance in the Hybrid Cloud Centralized Control Across a Distributed Infrastructure
©2011 Oracle Corporation 20
• Description
- Workflow and compliance
checks prior to publication
- Develop policies and
approve with workflow
- Providers have ability to
publish to registry/repository
• Benefits
- Regulatory compliance
- Unified and centralized policy management for total control of hybrid
infrastructure
- Real-time monitoring and management of cloud and on-premise
services
Solution: Governance in the Hybrid Cloud
Enterprise Registry/Repo
sitory
On-premise
Compliance Reports
Cloud Services Agreements
Service approved with this
Organization
Public Cloud
Policy Approval
Applications
PRODUCTS
©2011 Oracle Corporation 22
JDEV
BUSINESS ACTIVITY
MONITORING
EVENT PROCESSING
ENTERPRISE
MANAGER
ENTERPRISE GATEWAY
ERP MAINFRAME SERVICES
BPEL PROCESS ORCHESTRATION
SERVICE BUS
PARTNERS DB
Registry &
Repository
Oracle SOA Suite Industry’s Most Complete, Integrated and Best-in Class Platform
©2011 Oracle Corporation 23
• Accelerators yield 30%
faster time to market
• Integrated Development =
up to 60% cost savings
• Service Bus deployments
with 300,000+ msgs/sec
Oracle Service Integration
• High Productivity, High Scalability
©2011 Oracle Corporation 24
Assembly Applications
Oracle SOA Governance
Oracle Enterprise Gateway XML Gateway for Perimeter Security; Connections to
Cloud services
Oracle Enterprise Repository and
Service Registry
Catalog of IT Services and Contracts; Governance
Workflow; Reuse Analytics; Dev/Integrator Guidance
Oracle Enterprise Manager Service Level Management; Business Transaction
Management; Monitoring and Reporting by Client
©2011 Oracle Corporation 25
Oracle SOA Governance Policing the Hybrid Cloud
Publish, Discover, Change Manage
Services
Federated Policy Manager
Provision Services & Monitor SLAs
Registry/Repository Policy Manager SOA Management
Pack
©2011 Oracle Corporation 26
Oracle SOA Governance Visibility and Control of Cloud and Hybrid Services
• XML Acceleration
- Fast processing of XML queries
- Fast XML validation
- Patented acceleration engine
• DMZ Security
- Fine grained authorization
- Authentication
- Identity propagation
Oracle Enterprise Gateway XML Acceleration and Web Service Security in the DMZ
Passed XML
Messages
Blocked XML
Messages
XML Load Speed
Broad & Deep Offering
Lower Cost, Lower Risk
Comprehensive SOA Offering
Complete
Less Effort
More Value
Designed to Work Together
Integrated
Robust, Proven Industry leading
Software
Industry Leader
Best of Breed
#1
More Choice Maximizes
Existing Investments
Standards-Based
Architecture
Open
©2011 Oracle Corporation 28
Summary Key Differentiators
©2011 Oracle Corporation 29
• Offload resource intensive XML to the DMZ
• Optimize with cloud-specific platform features Performance &
Reliability
• Migrate intrusion detection to the perimeter
• Provide real time SLA and compliance management SOA Security
• Centralize policy management
• Enable cloud providers to publish to registry/repository Governance
Summary: Benefits of Oracle SOA &
Governance In the Hybrid SOA Cloud
<Insert Picture Here>
Twitter twitter.com/OracleSOA
Facebook facebook.com/OracleSOA
LinkedIn Oracle SOA Group
Join the Community
Oracle.com/SOA
©2011 Oracle Corporation 31
Next Steps
Amazon EC2:
http://snipurl.com/soa-ec2
2. Run Oracle SOA Suite on the Cloud
3. Attend an Upcoming SOA “Lunch & Learn” Event
1. Explore Oracle’s Web Site
www.oracle.com /soa /customers
Oracle Event Site
www.oracle.com/events
4. Go through tutorial
http://snipurl.com/soa11gbook
32 Copyright © 2011, Oracle and/or its affiliates. All rights
reserved.
Insert Information Protection Policy Classification from Slide 7
Q&A
33 Copyright © 2011, Oracle and/or its affiliates. All rights
reserved.
Insert Information Protection Policy Classification from Slide 7