- ホーム
- > 洋書
- > 英文書
- > Computer / General
Full Description
"This book provides an indispensable guide for establishing a firm SOA governance foundation. Easy to read, comprehensive, pragmatic...excellent job."--Nick Laqua, Enterprise SOA Architect, Cathay Pacific Airways "SOA Governance is a must-read that provides an in-depth look at the organizational, managerial, procedural, and technical aspects that any SOA project needs to consider. If you're investing in SOA, you'll benefit greatly by having this excellent resource available to you as you contend with the many challenges of creating your own SOA governance." --David E. Michalowicz, Principal, Information Systems Engineer, The MITRE Corporation "With this book Thomas Erl [and his team] do a great job in outlining a framework to implement an SOA governance program. For each stage of the project lifecycle, necessary governance precepts and processes are described concretely by referring to the service-orientation principles and SOA patterns. This makes it an indispensable source of information for any SOA practitioner or any professional who plans to start an SOA initiative."--Jean-Paul De Baets, Principal SOA Architect, Fedict (Belgian Federal Government Information and Communication Technology Service) "This book on SOA governance provides both thoughtful and carefully crafted narrative and the supplementation of poignant real-world case studies that will help practitioners calibrate guidance to realities on the ground. This is a terrific book that will be heavily used--with tab stickers, dog-ears, highlighting, and column notes abounding to show for it--as practitioners strategize and subsequently iterate through organizational learnings on their journeys to SOA maturity." --David S. Rogers, Manager, IEEE Conferences Business and Technology Solutions Office "Thomas Erl's SOA Governance clarifies the principles behind this crucial capability for SOA adoption. Finally, a contribution that serves as a guide for project managers, architects, and any related role that has a common goal: the establishment, administration, and vision behind a service-enabled enterprise. Accenture sees this book as a milestone that will support the rationale behind selling and delivering SOA governance projects around the world." --Dr. Matthias Ziegler, Accenture; Dr. Jure Zakotnik, Accenture; Thomas M. Michelbach, Accenture "Thomas Erl's SOA Governance book fills in an important missing piece for any organization wanting to move to--and succeed with--an enterprise commitment to implement SOA and realize its overarching benefits. Of equal importance, however, is the fact that the basic concepts and frameworks that the book instantiates in the context of SOA can also be productively applied in other contexts that are not formally `SOA-esque,' but where complexity is in need of formal governance." --Charles N. Mead, MD, MSc., Senior Technical Advisor to the Director, National Cancer Institute Center for Bioinformatics and Information Technology (NCI CBIIT) Chair, Architecture Board, Health Level 7 (HL7) "SOA Governance is the best read on governance and software delivery processes since the publication of RUP; it is the book that defines the standard Service Delivery Processes for all project lifecycle models and defines the necessary conditions and roadmap to reach SOA in the IT organization."--Filippos Santas, IT Architect, Credit Suisse Private Banking, Switzerland, and Certified SOA Trainer "Achieving your service-oriented goals requires controlled growth and change, which are best accomplished through rigorous governance. The authors of this work drive to the heart of governance and show you how to manage your portfolio of services."--Kevin P. Davis, Ph.D., Software Architect The Definitive Guide to Governing Shared Services and SOA Projects SOA Governance: Governing Shared Services On-Premise and in the Cloud is the result of a multi-year project to collect proven industry practices for establishing IT governance controls specific to the adoption of SOA and service-orientation. Authored by world-renowned experts in the fields of SOA, IT governance, and cloud computing, this comprehensive book provides clear direction as to what does and does not constitute SOA governance and then steps the reader through the most important industry governance practices, as they pertain to individual SOA project lifecycle stages. With a consistent, vendor-neutral focus, and with the help of case study examples, the authors demonstrate how to define and position precepts, organizational roles, processes, standards, and metrics. Readers benefit from thorough and visually depicted cross-references and mapping between roles, processes, precepts, and project stages, enabling them to fully explore dynamics and dependencies and thereby learn how to use these governance controls to create their own custom SOA governance systems. This important title will be valuable to every practitioner concerned with making SOA work, including senior IT managers, project managers, architects, analysts, developers, administrators, QA professionals, security specialists, and cloud computing professionals. Topic AreasDefining SOA governance Establishing an SOA governance office and programWorking with proven SOA governance precepts and processesIdentifying organizational roles and relating them to SOA governanceAssociating design-time and runtime SOA project stages with SOA governance controlsGovernance considerations specific to shared servicesRoles, precepts, and factors specific to cloud-based servicesUnderstanding and categorizing SOA governance products and technologies Applying governance controls as early as the planning stages and measuring their success in subsequent stagesUsing vitality triggers to govern shared services on an on-going basisSOA governance controls that pertain to business information documents and policies
Contents
Foreword by Massimo Pezzini xxxiForeword by Roberto Medrano xxxiiiAcknowledgments xxxvCHAPTER 1: Introduction 11.1 About this Book 3Who this Book is For 3What this Book Does Not Cover 4This is Not a Book About SOA Management 4This is Not a Book About Cloud Computing Governance 41.2 Recommended Reading 51.3 How this Book is Organized 6Part I: Fundamentals 6Part II: Project Governance 7Part III: Strategic Governance 10Part IV: Appendices 111.4 Symbols, Figures, and Style Conventions 12Symbol Legend 12Mapping Diagrams 12SOA Principles & Patterns Sections 13Capitalization 141.5 Additional Information 14Updates, Errata, and Resources (www.soabooks.com) 14Master Glossary (www.soaglossary.com) 15Referenced Specifications (www.soaspecs.com) 15SOASchool.com SOA Certified Professional (SOACP) 15CloudSchool.com Cloud Certified Professional (CCP) 15The SOA Magazine (www.soamag.com) 15Notification Service 16CHAPTER 2: Case Study Background 172.1 How Case Studies are Used 182.2 Raysmoore Corporation 18History 18IT Environment 18Business Goals and Obstacles 192.3 Case Study Continuation 20PART I: FUNDAMENTALSCHAPTER 3: Service-Oriented Computing Fundamentals 233.1 Basic Terminology 24Service-Oriented Computing 25Service-Orientation 26Service-Oriented Architecture (SOA) 29Services 31Services as Components 32Services as Web Services 32Services as REST Services 34SOA Manifesto 34Cloud Computing 35IT Resources 35Cloud 36On-Premise 37Cloud Deployment Models 37Cloud Consumers and Cloud Providers 38Cloud Delivery Models 38Service Models 38Agnostic Logic and Non-Agnostic Logic 39Service Composition 40Service Inventory 41Service Portfolio 41Service Candidate 42Service Contract 43Service-Related Granularity 44SOA Design Patterns 463.2 Further Reading 47CHAPTER 4: SOA Planning Fundamentals 494.1 The Four Pillars of Service-Orientation 51Teamwork 52Education 52Discipline 52Balanced Scope 534.2 Levels of Organizational Maturity 56Service Neutral Level .57Service Aware Level 57Service Capable Level 57Business Aligned Level 58Business Driven Level 58Service Ineffectual Level 58Service Aggressive Level 594.3 SOA Funding Models 60Platform (Service Inventory) Funding 60Project Funding Model (Platform) 61Central Funding Model (Platform) 64Usage Based Funding Model (Platform) 66Service Funding 69Project Funding Model (Service) 69Central Funding Model (Service) 71Hybrid Funding Model (Service) 72Usage Based Funding Model (Service) 74CHAPTER 5: SOA Project Fundamentals 795.1 Project and Lifecycle Stages 81SOA Adoption Planning 82Service Inventory Analysis 82Service-Oriented Analysis (Service Modeling) 84Service-Oriented Design (Service Contract) 85Service Logic Design 87Service Development 87Service Testing 88Service Deployment and Maintenance 89Service Usage and Monitoring 90Service Discovery 90Service Versioning and Retirement 915.2 Organizational Roles 92Service Analyst 96Service Architect 96Service Developer 97Service Custodian 98Cloud Service Owner 98Service Administrator 100Cloud Resource Administrator 100Schema Custodian 102Policy Custodian 104Service Registry Custodian 105Technical Communications Specialist 105Enterprise Architect 106Enterprise Design Standards Custodian (and Auditor) 107SOA Quality Assurance Specialist 109SOA Security Specialist 110SOA Governance Specialist 111Other Roles 112Educator 112Business Analyst 113Data Architect 113Technology Architect 113Cloud Technology Professional 114Cloud Architect 114Cloud Security Specialist 114Cloud Governance Specialist 114IT Manager 1155.3 Service Profiles 115Service-Level Profile Structure 117Capability Profile Structure 118Additional Considerations 119Customizing Service Profiles 119Service Profiles and Service Registries 119Service Profiles and Service Catalogs 119Service Profiles and Service Architecture 120CHAPTER 6: Understanding SOA Governance 1216.1 Governance 101 122The Scope of Governance 123Governance and Methodology 124Governance and Management 124Methodology and Management 125Comparisons 125The Building Blocks of a Governance System 127Precepts 128People (Roles) 128Processes 129Metrics 129Governance and SOA 1306.2 The SOA Governance Program Office (SGPO) 1316.3 SGPO Jurisdiction Models 133Centralized Enterprise SGPO 133Centralized Domain SGPO 134Federated Domain SGPOs 135Independent Domain SGPOs 1366.4 The SOA Governance Program 137Step 1: Assessing the Enterprise (or Domain) 137Current Governance Practices and Management Styles 138SOA Initiative Maturity 138Current Organizational Model 139Current and Planned Balance of On-Premise and Cloud-based IT Resources 139Step 2: Planning and Building the SOA Governance Program 139SOA Governance Precepts 139SOA Governance Processes 141SOA Governance Roles 143Additional Components 146Step 3: Running the SOA Governance Program (Best Practices and Common Pitfalls) 146Collect the Right Metrics and Have the Right People Use Them 146Provide Transparency and Foster Collaboration 147Ensure Consistency and Reliability 147Compliance and Incentives 147Education and Communication 148Common Pitfalls 148PART II: PROJECT GOVERNANCECHAPTER 7: Governing SOA Projects 1537.1 Overview 155Precepts, Processes, and People (Roles) Sections 1567.2 General Governance Controls 157Precepts 157Service Profile Standards 157Service Information Precepts 158Service Policy Precepts 158Logical Domain Precepts 159Security Control Precepts 160SOA Governance Technology Standards 163Metrics 164Cost Metrics 164Standards-related Precept Metrics 165Threshold Metrics 165Vitality Metrics 166Case Study Example 1677.3 Governing SOA Adoption Planning 169Precepts 169Preferred Adoption Scope Definition 169Organizational Maturity Criteria Definition 171Standardized Funding Model 172Processes 173Organizational Governance Maturity Assessment 173Adoption Impact Analysis 176Adoption Risk Assessment 178People (Roles) 179Enterprise Architect 179SOA Governance Specialist 181Case Study Example 182CHAPTER 8: Governing Service Analysis Stages 1878.1 Governing Service Inventory Analysis 192Precepts 193Service Inventory Scope Definition 193Processes 195Business Requirements Prioritization 195People (Roles) 197Service Analyst 197Enterprise Design Standards Custodian 198Enterprise Architect 199SOA Governance Specialist 200Case Study Example 2018.2 Governing Service-Oriented Analysis (Service Modeling) 206Precepts 206Service and Capability Candidate Naming Standards 206Service Normalization 207Service Candidate Versioning Standards 209Processes 210Service Candidate Review 210People (Roles) 212Service Analyst 212Service Architect 213Enterprise Design Standards Custodian 214Enterprise Architect 215SOA Governance Specialist 216Case Study Example 217CHAPTER 9: Governing Service Design and Development Stages 2219.1 Governing Service-Oriented Design (Service Contract) 223Precepts 223Schema Design Standards 223Service Contract Design Standards 225Service-Orientation Contract Design Standards 228SLA Template 229Processes 231Service Contract Design Review 231Service Contract Registration 234People (Roles) 236Service Architect 236Schema Custodian 237Policy Custodian 238Technical Communications Specialist 239Enterprise Design Standards Custodian 241Enterprise Architect 242SOA Security Specialist 243SOA Governance Specialist 245Case Study Example 2469.2 Governing Service Logic Design 249Precepts 249Service Logic Design Standards 249Service-Orientation Architecture Design Standards 252Processes 253Service Access Control 253Service Logic Design Review 255Legal Data Audit 257People (Roles) 259Service Architect 259Enterprise Design Standards Custodian 260Enterprise Architect 261SOA Security Specialist 262SOA Governance Specialist 263Case Study Example 2659.3 Governing Service Development 267Precepts 267Service Logic Programming Standards 267Custom Development Technology Standards 268Processes 270Service Logic Code Review 270People (Roles) 272Service Developer 272Enterprise Design Standards Custodian 273Enterprise Architect 274SOA Governance Specialist 275Case Study Example 276CHAPTER 10: Governing Service Testing and Deployment Stages 27710.1 Governing Service Testing 278Precepts 279Testing Tool Standards 279Testing Parameter Standards 280Service Testing Standards 281Cloud Integration Testing Standards 283Test Data Usage Guidelines 285Processes 286Service Test Results Review 286People (Roles) 287Service Administrator 287Cloud Resource Administrator 288Enterprise Architect 289SOA Quality Assurance Specialist 290SOA Security Specialist 291SOA Governance Specialist 292Case Study Example 29410.2 Governing Service Deployment and Maintenance 298Precepts 298Production Deployment and Maintenance Standards 298Processes 301Service Certification Review 301Service Maintenance Review 303People (Roles) 304Service Administrator 304Cloud Resource Administrator 305Service Custodian 307Enterprise Architect 308SOA Quality Assurance Specialist 309SOA Security Specialist 310SOA Governance Specialist 311Case Study Example 312Chapter 11: Governing Service Usage, Discovery, and Versioning Stages 31511.1 Governing Service Usage and Monitoring 317Precepts 317Runtime Service Usage Thresholds 317Service Vitality Triggers320Processes 323Service Vitality Review 323People (Roles) 325Enterprise Architect 325Service Architect 326Service Administrator 327Cloud Resource Administrator 328Service Custodian 329SOA Security Specialist 331SOA Governance Specialist 332Case Study Example 33311.2 Governing Service Discovery 335Precepts 335Centralized Service Registry 335Processes 337Service Registry Access Control 337Service Registry Record Review 339Service Discovery 340Shared Service Usage Request 342Shared Service Modification Request 343People (Roles) 345Service Custodian 345Service Registry Custodian 346Technical Communications Specialist 348SOA Governance Specialist 348Case Study Example 35011.3 Governing Service Versioning and Retirement 352Precepts 352Service Versioning Strategy 352SLA Versioning Rules 354Service Retirement Notification 356Processes 357Service Versioning 357Service Retirement 359People (Roles) 360Enterprise Design Standards Custodian 60Service Administrator 362Cloud Resource Administrator 363Schema Custodian 364Policy Custodian 364SOA Governance Specialist 365PART III: STRATEGIC GOVERNANCECHAPTER 12: Service Information and Service Policy Governance 36912.1 Overview 371Service Data vs. Service Information 371Policies 101 37312.2 Governance Controls 375Precepts 375Enterprise Business Dictionary/Domain Business Dictionary 375Service Metadata Standards 377Enterprise Ontology/Domain Ontology 380Business Policy Standards 382Operational Policy Standards 384Policy Centralization 386Processes 389Data Quality Review 389Communications Quality Review 391Information Alignment Audit 393Policy Conflict Audit 395People (Roles) 397Business Analyst 397Data Architect 399Schema Custodian 399Policy Custodian 401Service Registry Custodian 402Technical Communications Specialist 403SOA Quality Assurance Specialist 405SOA Governance Specialist 40612.3 Guidelines for Establishing Enterprise Business Models 408Establish a Service Information Governance Council 408Assign Business Information Custodians 408Assign Value to Business Information 409Relate Service Information Governance to Master Data Management 409CHAPTER 13: SOA Governance Vitality 41113.1 Vitality Fundamentals 41213.2 Vitality Triggers 414Business vs. Technology Changes 415Types of Vitality Triggers 416Strategic Adjustments 416Strategic Business Adjustment 416Strategic IT Adjustment 417Industry Shifts 417Business Shift 417Technology Shift 418Metrics 418Performance Metrics 419Compliance Metrics 419Organizational Shifts 419Periodic 420Milestone 420Time 42013.3 SOA Governance Vitality Process 421Identify Activity 421Assess Activity 422Refresh Activity 422Approve Activity 423Communicate Activity 423CHAPTER 14: SOA Governance Technology 42514.1 Understanding SOA Governance Technology 426SOA Governance Task Types 427Manual Governance 427Automated Governance 427Design-time Governance 428Runtime Governance 428On-Premise Governance 428Cloud Governance 428Passive Governance 428Active Governance 429SOA Governance Technology Types 429Administrative 429Monitoring 429Reporting 430Enforcement 43014.2 Common SOA Governance Technology Products 431Service Registries 431Task Types 432Technology Types 432SOA Project Stages 433Repositories 433Task Types 434Technology Types 434SOA Project Stages 435Service Agents 435Task Types 436Technology Types 437SOA Project Stages 437Policy Systems 437Task Types 438Technology Types 438SOA Project Stages 439Quality Assurance Tools 439Task Types 440Technology Types 440SOA Project Stages 441SOA Management Suites 441Other Tools and Products 442Technical Editors and Graphic Tools 442Content Sharing and Publishing Tools 442Configuration Management Tools 443Custom SOA Governance Solutions 44314.3 Guidelines for Acquiring SOA Governance Technology 444Acquisition Strategies 444Single Vendor 444Multiple Vendors 445Open Source 446Leased from Cloud Vendor 447Best Practices 448Establish Criteria Based on Your Specific Requirements 448Investigate Customizability 448Investigate APIs 448Understand Both Initial and Long-Term Costs 448Understand Actual Governance Support 449Take the Time to Create a Quality RFP 449PART IV: APPENDICESAPPENDIX A: Case Study Conclusion 453APPENDIX B: Master Reference Diagrams for Organizational Roles 457Service Analyst 458Service Architect 459Service Developer 460Service Custodian 460Service Administrator 461Cloud Resource Administrator 462Schema Custodian 463Policy Custodian 464Service Registry Custodian 465Technical Communications Specialist 466Enterprise Architect 467Enterprise Design Standards Custodian (and Auditor) 468SOA Quality Assurance Specialist 469SOA Security Specialist 470SOA Governance Specialist (precepts) 471SOA Governance Specialist (processes) 472APPENDIX C: Service-Orientation Principles Reference 473APPENDIX D: SOA Design Patterns Reference 489APPENDIX E: The Annotated SOA Manifesto 577APPENDIX F: Versioning Fundamentals for Web Services and REST Services 591F.1 Versioning Basics 593Versioning Web Services 593Versioning REST Services 594Fine and Coarse-Grained Constraints 595F.2 Versioning and Compatibility 596Backwards Compatibility 596Backwards Compatibility in Web Services 596Backwards Compatibility in REST Services 597Forwards Compatibility 599Compatible Changes 602Incompatible Changes 604F.3 REST Service Compatibility Considerations 605F.4 Version Identifiers 608F.5 Versioning Strategies 611The Strict Strategy (New Change, New Contract) 611Pros and Cons 612The Flexible Strategy (Backwards Compatibility) 612Pros and Cons 613The Loose Strategy (Backwards and Forwards Compatibility) 613Pros and Cons 614Summary Table 614F.6 REST Service Versioning Considerations 615APPENDIX G: Mapping Service-Orientation to RUP 617Compatibility of RUP and SOA 618Overview of RUP (and MSOAM) 619The Pillars of Service-Orientation and the RUP Principles 620Breadth and Depth Roles and Role Mapping 623Enterprise and Governance Roles 624Mapping Service Delivery Project Stages to Disciplines 625Mapping MSOAM Analysis and Design Stages to RUP Disciplines 626Service-Orientation and RUP: Gaps 628Related Reading 628Bibliography 629APPENDIX H: Additional Resources 631About the Authors 635About the Contributors 641About the Foreword Contributors 643Index 645
