Most read:
- The case for Java modularity
- Four harmful Java idioms, and how to fix them
- iBATIS, Hibernate, and JPA - Which is right for you?
- Build the enterprise with EJB 3, JBoss Seam, and Maven 2
- Hello, OSGi, Part 1: Bundles for beginners
Popular archives:
Java Q&A Forums - Let the great migration begin
We're pleased to announce the first phase of the integration of the Java Q&A Forums with our community platform, JavaWorld's
Daily Brew. Whether you're one of our longtime forum users or a brand newbie, we hope you'll visit the Java Q&A Forums in their new home alongside JW Blogs.
Featured Whitepapers
| Enterprise AJAX - Transcend the Hype |
| Oracle Compatibility Developer's Guide |
From stove-piped projects to unified enterprise architecture
Strategic considerations for e-authentication service development
In the last decade, many large organizations have developed numerous information systems but often times with very little coordination. As a result, information systems can be redundant and cannot interoperate, and data is repetitive and inconsistent (stove-piped information systems). In fact, one of the greatest challenges facing large organizations, such as the US federal government, is the failure of information systems to interoperate and effectively share business-critical data. Although it isn't easy, you can establish a unified enterprise architecture (EA), align projects with that enterprise architecture, and carefully plan and control your investments. I first discuss the enterprise architecture approach to an e-authentication project and then concentrate on some technical considerations.
Align the authentication service project to the enterprise architecture
First, consider how to align the e-authentication project to business objectives within an enterprise architecture. As enterprise architecture is a relatively new topic, let's discuss what an enterprise is and what it involves. According to the US Department of the Treasury's Treasury Enterprise Architecture Framework (TEAF) definition, an enterprise is an organization supporting a defined business scope and mission (see Resources). An enterprise comprises interdependent resources that should coordinate their functions and share information in support of a common mission. Enterprise architecture includes a strategic information asset base, which defines the business, information necessary to operate the business, technologies necessary to support the information systems, and the transitional processes necessary for implementing new technologies in response to changing business needs.
Enterprise architecture involves a top-down, business strategic-driven process that coordinates the development of a business architecture, an information architecture, and a technology architecture that support individual applications as well as the entire enterprise application portfolio. It represents the holistic view of the enterprise's key business, information, application, and technology strategies and their impact on business functions and processes. Since enterprise architecture development itself can be a very lengthy process, I select a small piece of an enterprise architecture closely related to application authentication for further discussion. The table below represents an enterprise architecture from 10,000-foot level. Let's use this as the starting point to talk about unification strategies.
The slice of enterprise architecture for e-authentication
|
Migration from "as is" to "to be" via service-oriented architecture and model-driven architecture
An enterprise architecture needs a detailed sequencing plan to evolve the baseline architecture to the target architecture. The plan's major elements include program/business improvement IT projects and major infrastructure and technology upgrades. The IT projects include the e-authentication project and all other projects that use the e-authentication service. The best strategy for migration involves service-oriented architecture (SOA): e-authentication will provide authentication service to all other applications that require authentication. The goal is to build a service that offers value and creates standard profiles in the enterprise architecture repository to avoid redundant development efforts.
What is SOA? It is a way of designing a software system to provide services to either end-user applications or other services through published and discoverable interfaces. In many cases, services offer a better way to expose discrete business functions, and therefore, an excellent way to develop applications that support business processes. In my opinion, SOA differs from component-based architecture (CBA). SOA is CBA, but the reverse is not necessarily true. Let's use Web services and Enterprise JavaBeans (EJB) as an example. Web services is obviously an SOA. The EJB model is a CBA, but it may or may not be an SOA depending on how the EJB components are deployed. For example, if one vendor develops and sells the user management components to many customers, this model could be considered a CBA. In that case, all the customers should consider application architecture issues such as how the EJB components will be deployed and technology architecture issues like the necessary hardware and software to support EJB deployment. If a company uses SOA, the user management EJB components and related databases will be centrally hosted and made accessible enterprisewide. Only EJB clients—the calling stubs—will be distributed to projects that need to access user management functionality.
SOA requires well-defined interfaces. And this in turn requires a model-driven architecture (MDA). The most important ideas behind the Object Management Group (OMG)'s MDA are the concepts of the platform-independent model (PIM) and the platform-specific model (PSM). PIM is independent of any actual implementation details, while PSM can be converted into language code designed for a specific platform. If you read my article "Step Into the J2EE Architecture and Process," you perhaps will notice that PIM and PSM resemble the object-oriented analysis and design concepts I proposed about two years ago. MDA raises the level of abstraction and helps to unify the enterprise by maximizing reuse and promoting information sharing across different technology stacks like Java 2 Platform, Enterprise Edition (J2EE) and .Net. Figure 1 shows the MDA development process.
- "US Department of Energy Signs On to J2EE," Jian Zhong and Mike Lehr (JavaWorld, May 2002)
http://www.javaworld.com/javaworld/jw-05-2002/jw-0524-signon.html - "A Java Case StudyThe Power of J2EE," Jian Zhong and Betty Barlow (JavaWorld, January 2002)
http://www.javaworld.com/javaworld/jw-01-2002/jw-0118-j2ee.html - "Step into the J2EE Architecture and Process," Jian Zhong (JavaWorld, September 2001)
http://www.javaworld.com/javaworld/jw-09-2001/jw-0928-rup.html - The US federal government's e-Authentication project
http://www.cio.gov/eauthentication/ - The US federal government's E-Grants project including J2EE architecture specifications
http://grants.gov/docs/ArchitectureOverview.pdf - The US Department of Health and Human Services' massive Unified Financial Management System (UFMS) project with Oracle Financials
http://www.hhs.gov/ufms/ - Object Management Group's white paper, "Aligning Enterprise Architecture and IT Investments with Corporate Goals," Richard
Buchanan and Richard Soley, on model driven architecture with a good discussion about enterprise architecture
http://www.omg.org/registration/META-OMG-WP-Public.pdf - Rational white paper, "Using Service-Oriented Architecture and Component-Based Development to Build Web Service Applications,"
Alan Brown, Simon Johnston, Kevin Kelly (October 2002)
http://www.rational.com/media/whitepapers/TP032.pdf - "The Benefits of a Service-Oriented Architecture," Michael Stevens (developer.com)
http://www.developer.com/java/ent/article.php/1041191 - An enterprise architecture community Website
http://www.eacommunity.com - Institute for Enterprise Architecture Developments
http://www.enterprise-architecture.info - International Enterprise Architecture Center
http://www.ieac.org/Knowledge_Library/index.htm - "Enterprise Architecture Special ReportOverview," Jeff Schulman and Jeff Comport (Gartner)
http://www4.gartner.com/pages/story.php.id.2230.s.8.jsp - Interoperability Clearinghouse architecture resource
http://www.ichnet.org - US Department of Housing and Urban Development's enterprise architecture effort
http://www.hud.gov/offices/cio/ea/index.cfm - US Department of Agriculture's enterprise architecture Website
http://www.ocio.usda.gov/irm/e_arch - US Department of Energy's e-signature demo
http://www.energy.gov/HQPress/releases02/octpr/plugin.html - US Department of Commerce IT enterprise architecture homepage
http://www.cio.noaa.gov/hpcc/docita - US Department of Veterans Affairs enterprise architecture effort
http://www.va.gov/oirm/architecture/default.asp - US Department of Transportation enterprise architecture effort
http://cio.ost.dot.gov/architecture - US Department of the Treasury's Treasury Enterprise Architecture Framework (TEAF)
http://www.ustreas.gov/offices/management/cio/teaf/ - More JavaWorld articles about single sign-on and Web services security:
-
- "Secure Web Services," Sang Shin (March 2003)
- "The First Taste of Liberty," Frank Sommers (March 2003)
- Browse the Java 2 Platform, Enterprise Edition (J2EE) section of JavaWorld's Topical Index
http://www.javaworld.com/channel_content/jw-j2ee-index.shtml - Browse the Security section of JavaWorld's Topical Index
http://www.javaworld.com/channel_content/jw-security-index.shtml - Visit JavaWorld's Enterprise Java discussion
http://forums.devworld.com/webx?50@@.ee6b80a - Sign up for JavaWorld's free weekly Enterprise Java email newsletter
http://www.javaworld.com/subscribe - You'll find a wealth of IT-related articles from our sister publications at IDG.net