Sponsored Links
From stove-piped projects to unified enterprise architecture
Strategic considerations for e-authentication service development
- Feedback
- Discuss
In the last decade, many large organizations have developed numerous information systems but often times with very little coordination. As a result, information systems can be redundant and cannot interoperate, and data is repetitive and inconsistent (stove-piped information systems). In fact, one of the greatest challenges facing large organizations, such as the US federal government, is the failure of information systems to interoperate and effectively share business-critical data. Although it isn't easy, you can establish a unified enterprise architecture (EA), align projects with that enterprise architecture, and carefully plan and control your investments. I first discuss the enterprise architecture approach to an e-authentication project and then concentrate on some technical considerations.
Align the authentication service project to the enterprise architecture
First, consider how to align the e-authentication project to business objectives within an enterprise architecture. As enterprise architecture is a relatively new topic, let's discuss what an enterprise is and what it involves. According to the US Department of the Treasury's Treasury Enterprise Architecture Framework (TEAF) definition, an enterprise is an organization supporting a defined business scope and mission (see Resources). An enterprise comprises interdependent resources that should coordinate their functions and share information in support of a common mission. Enterprise architecture includes a strategic information asset base, which defines the business, information necessary to operate the business, technologies necessary to support the information systems, and the transitional processes necessary for implementing new technologies in response to changing business needs.
Enterprise architecture involves a top-down, business strategic-driven process that coordinates the development of a business architecture, an information architecture, and a technology architecture that support individual applications as well as the entire enterprise application portfolio. It represents the holistic view of the enterprise's key business, information, application, and technology strategies and their impact on business functions and processes. Since enterprise architecture development itself can be a very lengthy process, I select a small piece of an enterprise architecture closely related to application authentication for further discussion. The table below represents an enterprise architecture from 10,000-foot level. Let's use this as the starting point to talk about unification strategies.
The slice of enterprise architecture for e-authentication
|
Migration from "as is" to "to be" via service-oriented architecture and model-driven architecture
An enterprise architecture needs a detailed sequencing plan to evolve the baseline architecture to the target architecture. The plan's major elements include program/business improvement IT projects and major infrastructure and technology upgrades. The IT projects include the e-authentication project and all other projects that use the e-authentication service. The best strategy for migration involves service-oriented architecture (SOA): e-authentication will provide authentication service to all other applications that require authentication. The goal is to build a service that offers value and creates standard profiles in the enterprise architecture repository to avoid redundant development efforts.
- Feedback
Resources
- "US Department of Energy Signs On to J2EE," Jian Zhong and Mike Lehr (JavaWorld, May 2002)
http://www.javaworld.com/javaworld/jw-05-2002/jw-0524-signon.html - "A Java Case StudyThe Power of J2EE," Jian Zhong and Betty Barlow (JavaWorld, January 2002)
http://www.javaworld.com/javaworld/jw-01-2002/jw-0118-j2ee.html - "Step into the J2EE Architecture and Process," Jian Zhong (JavaWorld, September 2001)
http://www.javaworld.com/javaworld/jw-09-2001/jw-0928-rup.html - The US federal government's e-Authentication project
http://www.cio.gov/eauthentication/ - The US federal government's E-Grants project including J2EE architecture specifications
http://grants.gov/docs/ArchitectureOverview.pdf - The US Department of Health and Human Services' massive Unified Financial Management System (UFMS) project with Oracle Financials
http://www.hhs.gov/ufms/ - Object Management Group's white paper, "Aligning Enterprise Architecture and IT Investments with Corporate Goals," Richard
Buchanan and Richard Soley, on model driven architecture with a good discussion about enterprise architecture
http://www.omg.org/registration/META-OMG-WP-Public.pdf - Rational white paper, "Using Service-Oriented Architecture and Component-Based Development to Build Web Service Applications,"
Alan Brown, Simon Johnston, Kevin Kelly (October 2002)
http://www.rational.com/media/whitepapers/TP032.pdf - "The Benefits of a Service-Oriented Architecture," Michael Stevens (developer.com)
http://www.developer.com/java/ent/article.php/1041191 - An enterprise architecture community Website
http://www.eacommunity.com - Institute for Enterprise Architecture Developments
http://www.enterprise-architecture.info - International Enterprise Architecture Center
http://www.ieac.org/Knowledge_Library/index.htm - "Enterprise Architecture Special ReportOverview," Jeff Schulman and Jeff Comport (Gartner)
http://www4.gartner.com/pages/story.php.id.2230.s.8.jsp - Interoperability Clearinghouse architecture resource
http://www.ichnet.org - US Department of Housing and Urban Development's enterprise architecture effort
http://www.hud.gov/offices/cio/ea/index.cfm - US Department of Agriculture's enterprise architecture Website
http://www.ocio.usda.gov/irm/e_arch - US Department of Energy's e-signature demo
http://www.energy.gov/HQPress/releases02/octpr/plugin.html - US Department of Commerce IT enterprise architecture homepage
http://www.cio.noaa.gov/hpcc/docita - US Department of Veterans Affairs enterprise architecture effort
http://www.va.gov/oirm/architecture/default.asp - US Department of Transportation enterprise architecture effort
http://cio.ost.dot.gov/architecture - US Department of the Treasury's Treasury Enterprise Architecture Framework (TEAF)
http://www.ustreas.gov/offices/management/cio/teaf/ - More JavaWorld articles about single sign-on and Web services security:
-
- "Secure Web Services," Sang Shin (March 2003)
- "The First Taste of Liberty," Frank Sommers (March 2003)
- Browse the Java 2 Platform, Enterprise Edition (J2EE) section of JavaWorld's Topical Index
http://www.javaworld.com/channel_content/jw-j2ee-index.shtml - Browse the Security section of JavaWorld's Topical Index
http://www.javaworld.com/channel_content/jw-security-index.shtml - Visit JavaWorld's Enterprise Java discussion
http://forums.devworld.com/webx?50@@.ee6b80a - Sign up for JavaWorld's free weekly Enterprise Java email newsletter
http://www.javaworld.com/subscribe - You'll find a wealth of IT-related articles from our sister publications at IDG.net
About Us | Advertise | Contact Us | Terms of Service/Privacy
Copyright, 2006-2008 Network World, Inc. All rights reserved.
great essay!By Quinton_Hsu on August 27, 2009, 10:03 amreally specific and pragmatic
Reply | Read entire comment
View all comments