Workshop on Web of Services for Enterprise Computing

Similar documents
Lesson 5 Web Service Interface Definition (Part II)

Implementing a Ground Service- Oriented Architecture (SOA) March 28, 2006

Goal: Offer practical information to help the architecture evaluation of an SOA system. Evaluating a Service-Oriented Architecture

Service-Oriented Architecture

Lesson 3 SOAP message structure

Overview SENTINET 3.1

SUN. Java Platform Enterprise Edition 6 Web Services Developer Certified Professional

Lesson 14 SOA with REST (Part I)

Introduction to Web Services & SOA

Web Services Development for IBM WebSphere Application Server V7.0

Service Interface Design RSVZ / INASTI 12 July 2006

Global Reference Architecture: Overview of National Standards. Michael Jacobson, SEARCH Diane Graski, NCSC Oct. 3, 2013 Arizona ewarrants

Oracle Developer Day

Services Oriented Architecture and the Enterprise Services Bus

Introduction to Web Services & SOA

DHANALAKSHMI COLLEGE OF ENGINEERING, CHENNAI

Oracle Exam 1z0-478 Oracle SOA Suite 11g Certified Implementation Specialist Version: 7.4 [ Total Questions: 75 ]

Using JBI for Service-Oriented Integration (SOI)

Web Services Architecture Directions. Rod Smith, Donald F Ferguson, Sanjiva Weerawarana IBM Corporation

WWW, REST, and Web Services

SOFTWARE ARCHITECTURES ARCHITECTURAL STYLES SCALING UP PERFORMANCE

JBI Components: Part 1 (Theory)

BEAAquaLogic. Service Bus. Interoperability With EJB Transport

Managing Exceptions in a SOA world

Deployment Profile Template Version 1.0 for WS-Reliability 1.1

Web Services Interoperability Organization. Accelerating Web Services Adoption May 16, 2002

Artix Building Service Oriented Architectures Using Artix

Quality - The Key to Successful SOA. Charitha Kankanamge WSO2 February 2011

IEC Implementation Profiles for IEC 61968

Oracle. Exam Questions 1z Java Enterprise Edition 5 Web Services Developer Certified Professional Upgrade Exam. Version:Demo

Cisco Application Policy Infrastructure Controller Data Center Policy Model

ActiveVOS Technologies

Service Oriented Architectures Visions Concepts Reality

Next-Generation SOA Infrastructure. An Oracle White Paper May 2007

BEAAquaLogic. Service Bus. JPD Transport User Guide

International Journal of Computer Science Trends and Technology (IJCST) Volume 3 Issue 6, Nov-Dec 2015

Incorporating applications to a Service Oriented Architecture

Semantic Web. Semantic Web Services. Morteza Amini. Sharif University of Technology Spring 90-91

Enterprise Data Architecture: Why, What and How

The Impact of SOA Policy-Based Computing on C2 Interoperation and Computing. R. Paul, W. T. Tsai, Jay Bayne

J2EE APIs and Emerging Web Services Standards

This presentation is a primer on WSDL Bindings. It s part of our series to help prepare you for creating BPEL projects. We recommend you review this

Realizing the Army Net-Centric Data Strategy (ANCDS) in a Service Oriented Architecture (SOA)

Position Paper for Workshop on Web Services for Enterprise Computing

PUTING SOAP TO REST. Internet APIs. In fact, REST currently represents about 69% of

Legacy Transaction Integration TM In a Service-oriented Architecture (SOA)

XML Web Services Basics

Java Web Service Essentials (TT7300) Day(s): 3. Course Code: GK4232. Overview

CAS 703 Software Design

describe the functions of Windows Communication Foundation describe the features of the Windows Workflow Foundation solution

Simplifying Federation Management with the Federation Router

SOACertifiedProfessional.Certdumps.S90-05A.v by.Andres.40q. Exam Code: S90-05A. Exam Name: SOA Technology Lab

Lesson 19 Software engineering aspects

IEC Overview CIM University UCAIug Summit Austin, TX. 18 November 2011

5.3 Using WSDL to generate client stubs

Identity-Enabled Web Services

What Is Service-Oriented Architecture

Distribution and web services

: ESB Implementation Profile

Sentinet for BizTalk Server SENTINET

Simple Object Access Protocol (SOAP) Reference: 1. Web Services, Gustavo Alonso et. al., Springer

SOA-20: The Role of Policy Enforcement in SOA Management

Artix ESB. Building Service Oriented Architectures Using Artix ESB. Making Software Work Together. Version 5.0 July 2007

CmpE 596: Service-Oriented Computing

Profiling of Standards A Necessary Step toward Interoperability

Using IBM DataPower as the ESB appliance, this provides the following benefits:

Shavlik Protect: Simplifying Patch, Threat, and Power Management Date: October 2013 Author: Mike Leone, ESG Lab Analyst

Apache Synapse. Paul Fremantle.

Application Oriented Networks: An SOA Perspective

Semantic Web. Semantic Web Services. Morteza Amini. Sharif University of Technology Fall 94-95

20. Business Process Analysis (2)

Developing an Enterprise Extranet Service

Oracle SOA Suite 11g: Build Composite Applications

RESTful Web services

ReST 2000 Roy Fielding W3C

1Z Oracle. Java Platform Enterprise Edition 6 Web Services Developer Certified Expert

Web service design. every Web service can be associated with:

Scalable Microservice Based Architecture For Enabling DMTF Profiles

6. The Document Engineering Approach

Application Decommissioning in Digital Transformation

Enterprise Integration Patterns: Designing, Building, and Deploying Messaging Solutions

Web Services in Cincom VisualWorks. WHITE PAPER Cincom In-depth Analysis and Review

A Methodology for Constructing WS-Policy Assertions

We recommend you review this before taking an ActiveVOS course or before you use ActiveVOS Designer.

Middleware. Adapted from Alonso, Casati, Kuno, Machiraju Web Services Springer 2004

Announcements. Next week Upcoming R2

ICENI: An Open Grid Service Architecture Implemented with Jini Nathalie Furmento, William Lee, Anthony Mayer, Steven Newhouse, and John Darlington

2 Background: Service Oriented Network Architectures

Agent-Enabling Transformation of E-Commerce Portals with Web Services

Executive Summary...1 Chapter 1: Introduction...1

Your Data Demands More NETAPP ENABLES YOU TO LEVERAGE YOUR DATA & COMPUTE FROM ANYWHERE

IP Mobility vs. Session Mobility

ebusiness Suite goes SOA

Motivation and Intro. Vadim Ermolayev. MIT2: Agent Technologies on the Semantic Web

Semantic Web Systems Web Services Part 2 Jacques Fleuriot School of Informatics

<Insert Picture Here> Click to edit Master title style

Applying Microservices in Webservices, with An Implementation Idea

Sentinet for Microsoft Azure SENTINET

SOA = Same Old Architecture?

Chapter 1: Distributed Information Systems

Transcription:

Workshop on Web of Services for Enterprise Computing Fujitsu Submission v0.2 Authors: Jacques Durand Tom Rutt Hamid BenMalek Acknowledgements: Masahiko Narita Paul A. Knapp 1. The Great Divide The fundamental schism that has to be overcome for the Web to further enable enterprise business processes, is not so much between the Web of documents and the Web of Services, than it is between the Web-as-an-open-publishing-medium and the Web-as-a-cross-enterprisecommunication-medium. Page 1 of

In the Web-as-an-open-publishing-medium: Both documents and services are resources directly exposed to the world, either for free or in a business model where more visibility, more users and easier access is better. The resources document or service - being published are usually assets that have an intrinsic value : themselves are the goods being sold or offered and are not intermediates to further back-office operations of the publishing enterprise. - with the exception of the on-line stores (see below). The resource-providing company acts as a host, not a partner: E.g. Amazon mechanical turk or simple storage two services invoked by applications -, are hosted services. Using these services even from a client business process is not motivated by cross-enterprise trading or business it simply means outsourcing some function. Generic interfaces and protocols suffice. In the Web-as-a-cross-enterprise-communication-medium: Both documents and services are resources that are only intended to a selected set of users and have their visibility and access controlled by contracts that may greatly between users. Not surprisingly, the documents and services have significant ties to the back-end business processes, which implies integration constraints, significant change management issues, on both ends. The resource-providing company is a business partner in the sense of the core business being conducted by the enterprise. The service or document has an effect on some core business process. Heterogeneity of needs and practices reigns. HTTP is not always the best protocol associated with this usage pattern. Bulk transfer of documents is sometimes necessary. Various levels of reliability, security or transfer control are needed. In other words, the real barrier does not reside so much in the different natures of the resources - document or service -, than it resides in the often underplayed differences between two Web usage patterns. It just happens that the publishing usage pattern the most successful and most understood as of today - overwhelmingly handles documents, as this is where the bulk of the demand is today. To be sure, some practices don't fall neatly in one or the other category. The on-line store model has ties in business processes but can be seen as an extension of the publishing pattern, adding an input channel. In the Software-as-a-Service model a service is hosted and sold per use but the outsourcing of vital business functions is more akin to cross-enterprise communication in a strong contractual context. The point here, is that enabling the deployment of services for the publishing-medium Web usage pattern, and enabling services for the cross-enterprise usage pattern, are two different things. Similarly, business documents as consumed by business processes call for a different Web handling than documents for publishing. Page 2 of

2. Challenges from the Cross-Enterprise-Communication Web Usage Pattern Consider the following use case from medical applications (HL7-related): On server side: several health provider applications that may be specialized (Medical, Pharmacy, Dental, Information, etc.) or may just handle different books of business (Medical for company A, Medical for company B, etc.). These provider applications are deployed as internal servers. Requests to these providers are either document inputs or inquiries. They are mediated by a single front component that handles all external communications and related properties (security, quality of service, user management, initial validation, error detection and recovery exchanges) but also internal communication (content-based internal dispatching/routing, store-and-forward, message pre-processing). This front gateway acts as a server-side intermediary to health provider applications. Symmetric design may occur on client side, with a client-side intermediary. The above server-side intermediary usually needs to operate as a Web service itself, in the absence of adequate intermediation technology at lower level (e.g. For content-based internal routing, initial validations, etc.). This model may cause all sorts of inefficiencies: in the handling of documents being forwarded, or due to the loss of header-level information, e.g. In case security credentials may need to be propagated beyond the intermediary, for fine-grained authorization at provider-level. In addition, managing change in this front service definition gets more complicated due to dependencies with many providers. Yet when the provider applications on the back-end are themselves wrapped as Web services like in SOA environments -, the service-based intermediation either introduces redundancies or mismatches. In short, the Web deployment of above enterprise services lacks support for the internal message process flow that takes place on either side. This is where cross-enterprise communication requirements meet back-end integration, and the plumbing technology on the back-end SOA or other has often been mistaken as the solution, while it is only the framework for it. Page 3 of

More generally, the challenges posed by cross-enterprise communication to the Web as a medium are: Transactions governed by contracts (as negotiated policies) affecting middleware functions (QoS...) in a way possibly tied to business content or to service specifics. Diversity of communication requirements (intermittent connectivity, bulk transfer, flow-control...) Legacy practices to deal with (in document representations, receipts, service response time and granularity) no clean slate. Business-disruptive transitions and upgrades, high organizational impact. Robustness to upgrades needs change management, notification and multi-version support. Server-side as well as client-side message flows and intermediaries. Back-end integration constraints and variety Documents may have several levels of validation and authorization along the message flow. Some lessons learned from use cases similar to the one above are: (a) When binding a business document with a service interface, the later is often the better. In RPC-style service invocation, the XML schema associated with a request message for a service operation, is used in a type checking pattern by most Web service stacks: if the document inside the request does not match the declared schema, the request is simply rejected as an invalid message. While this sounds like a smart engineering principle, in practice this is often a horrible way to handle a business document. In many cases, schema violation should not be handled differently from semantic rule violation in a business document. When many complex, customizable document types are involved, the interface contracts associated with services (WSDL definitions) are a maintenance liability, creating more interoperability hurdles on the long run. (b) Contracts are fragmented and too service-centric. In the Web-as-cross-enterprise-communication the notion of contract here governing interoperability and QoS - is key. Support for contracts is however fragmented: the interface contract (WSDL) refers to document contracts (XML schema) that only cover a format XML and some syntactic and semantic rules, the rest of which is represented somewhere else. Other contract elements involve Policies. SOAP headers often express other forms of contract affecting QoS. This fragmentation becomes problematic in an intermediary model where different nodes do different validations, or may need to reuse or correlate contract elements. (c ) Message flow and pre-processing often require access to business data. Internal routing, as well as quality of service may be dependent on payload content, E.g. The routing decision on server side for a Pharmacy form to the correct provider application, may be decided dynamically based on content. The privacy level of a Medical document may similarly vary with content. Validating compliance to these dependency rules is often necessary on the receiver side e.g. associating requester credentials with the use of the right document or the right destination, is an entitlement issue that will affect routing. Page 4 of

3. Getting a REST or a Break? REST is clearly the protocol of choice for the Web-as-publishing-medium pattern, while the situation is more complicated in the light of the cross-enterprise communication requirements. A look at the emerging third generation of Web services stacks gives valuable clues about what is in demand. In particular, consider Axis2 1.1: Either REST or SOAP may be used to connect to the same service, WSDL-based or not. AXIOM technology reduces greatly the parsing overhead of complex XML business documents, allows for partial or incremental processing, more immune to schema variations (versioning...). It also helps the selective extraction of headers during message flow. Services without WSDL. These document-centric services with SWA supported in 1.1 - provide great binding flexibility on the back-end, and leave the communication contract to whatever agreement is attached to the document itself. Similar evolution can be seen in other stacks. REST gets better integrated than in previous versions. With better support from SOAP 1.2 (and WSDL2) for REST style (e.g. HTTP GET), it is fair to say that future Web services are getting more REST. And what about documents? To be sure, the concept of service has often been over-emphasized in the past to the detriment of document-centric processing. The new stacks appear to bring back more balance here. Whether using REST or SOAP, business documents are definitely getting a break here. 4. Conclusion So doesn't all that speak in favor of REST? Not necessarily. While HTTP reigns in the Web-aspublishing-medium pattern, it is being challenged in some cross-enterprise cases. More importantly when considering the previous requirements, the future value of SOAP may be not so much about binding to a service interface, than in supporting message process flow and intermediaries - paramount in the cross-enterprise usage pattern of the Web. Although more remains to do on the intermediary model and composition of related functions, this is an area where the apparent simplicity of REST does not help much, while SOAP already laid the groundwork. How SOAP will fare in enabling message flow and service brokerage within coming SOA fabrics might be critical to confirm this advantage. As for the Web-as-cross-enterprise-communication, two of the main challenges remain in our opinion: Better support for a robust local intermediary model supportive of message flow on each enterprise endpoint. SOAP provides the framework, current stacks the enabling mechanisms for this. (But where are the standards?) Better support for contracts, which means better integration of various elements (policies service contexts, rules..). Beyond a policy container and attachment mechanism (WS-Policy and related) more can be done in policy processing (negotiation, intersection, ) before hitting the domain-specific barrier. A policy model (a la XACML) could help. Page 5 of

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback