 |
Page History
...
| Children Display |
|---|
| Page info | ||||
|---|---|---|---|---|
|
Governance Policies Functional Profile
Service Oriented Architecture is an architectural paradigm for organizing and utilizing distributed capabilities that may be under the control of different ownership domains. Consequently, it is important that organizations that plan to engage in service interactions adopt governance policies and procedures sufficient to ensure that there is standardization across both internal and external organizational boundaries to promote the effective creation and use of SOA-based services.
SOA governance requires numerous architectural capabilities on the Semantic Infrastructure:
Governance is expressed through policies and assumes multiple use of focused policy modules that can be employed across many common circumstances. This is provided by
From inherited abstract Artifact Functional Profile
An artifact is a managed resource within the Semantic Infrastructure.
An artifact is associated with the following capabilities:
- descriptions to enable the policy modules artifact to be visible, where the description includes a unique identifier for the policy artifact and a sufficient, and preferably a machine process-ableprocessible, representation of the meaning of terms used to describe the policyartifact, its functions, and its effects;
- one or more discovery mechanisms that enable searching for policies artifacts that best meet the search criteria specified by the service participant; where the discovery mechanism will have access to the individual policy artifact descriptions, possibly through some repository mechanism;
- accessible storage of policies artifacts and policy artifact descriptions, so service participants can access, examine, and use the policies as defined.artifacts as defined.
From inherited abstract Change Functional Profile
Artifact descriptions change over time and their contents will reflect changing needs and context.
Architectural implications of change on the Semantic Infrastructure are reflected in the following capabilities:
- mechanisms to support the storage, referencing, and access to normative definitions of one or more versioning schemes that may be applied to identify different aggregations of descriptive information, where the different schemes may be versions of a versioning scheme itself;
- configuration management mechanisms to capture the contents of the each aggregation and apply a unique identifier in a manner consistent with an identified versioning scheme;
- one or more mechanisms to support the storage, referencing, and access to conversion relationships between versioning schemes, and the mechanisms to carry out such conversions.
From inherited abstract Composition Functional Profile
Artifact Descriptions may capture very focused information subsets or can be an aggregate of numerous component descriptions. Service description is an example of a likely aggregate for which manual maintenance of all aspects would not be feasible.
Architectural implications of composition on the Semantic Infrastructure are reflected in the following capabilities:
- tools to facilitate identifying description elements that are to be aggregated to assemble the composite description;
- tools to facilitate identifying the sources of information to associate with the description elements;
- tools to collect the identified description elements and their associated sources into a standard, referenceable format that can support general access and understanding;
- tools to automatically update the composite description as the component sources change, and to consistently apply versioning schemes to identify the new description contents and the type and significance of change that occurred.
From inherited abstract Governance Functional Profile
Service Oriented Architecture is an architectural paradigm for organizing and utilizing distributed capabilities that may be under the control of different ownership domains. Consequently, it is important that organizations that plan to engage in service interactions adopt governance policies and procedures sufficient to ensure that there is standardization across both internal and external organizational boundaries to promote the effective creation and use of SOA-based services.
Governance is expressed through policies and assumes multiple use of focused policy modules that can be employed across many common circumstances.
SOA governance requires numerous architectural capabilities on the Semantic Infrastructure:
Governance requires Governance requires that the participants understand the intent of governance, the structures created to define and implement governance, and the processes to be followed to make governance operational. This is provided by the following capabilities:
- an information collection site, such as a Web page or portal, where governance information is stored and from which the information is always available for access;
- a mechanism to inform participants of significant governance events, such as changes in policies, rules, or regulations;
- accessible storage of the specifics of Governance Processes;
- SOA services to access automated implementations of the Governance Processes
capabilities specialized from the inherited Management Profile.
Governance Governance policies are made operational through rules and regulations. This is provided by the following capabilities, most of which are specializations of the inherited Artifact Profile:
- descriptions to enable the rules and regulations to be visible, where the description includes a unique identifier and a sufficient, and preferably a machine process-able, representation of the meaning of terms used to describe the rules and regulations;
- one or more discovery mechanisms that enable searching for rules and regulations that may apply to situations corresponding to the search criteria specified by the service participant; where the discovery mechanism will have access to the individual descriptions of rules and regulations, possibly through some repository mechanism;
- accessible storage of rules and regulations and their respective descriptions, so service participants can understand and prepare for compliance, as defined.
- SOA services to access automated implementations of the Governance Processes.
From inherited abstract Interaction Functional Profile
Descriptions of interactions are important for enabling auditability and repeatability, thereby establishing a context for results and support for understanding observed change in performance or results.
Architectural implications of interactions on the Semantic Infrastructure are reflected in the following capabilities:
- one or more mechanisms to capture, describe, store, discover, and retrieve interaction logs, execution contexts, and the combined interaction descriptions;
- one or more mechanisms for attaching to any results the means to identify and retrieve the interaction description under which the results were generated.
From inherited abstract Interoperability Functional Profile
Descriptions provide up-to-date information on what a resource is, the conditions for interacting with the resource, and the results of such interactions. As such, the description is the source of vital information in establishing willingness to interact with a resource, reachability to make interaction possible, and compliance with relevant conditions of use.
Architectural implications of interoperability on the Semantic Infrastructure are reflected in the following capabilities:
- one or more discovery mechanisms that enable searching for described resources that best meet the criteria specified by a service participant, where the discovery mechanism will have access to individual descriptions, possibly through some repository mechanism;
- tools to appropriately track users of the descriptions and notify them when a new version of the description is available.
From inherited abstract Management Functional Profile
Governance implies management to define and enforce rules and regulations.
Management is provided by the following capabilities:
- an information collection site, such as a Web page or portal, where management information is stored and from which the information is always available for access;
- a mechanism to inform participants of significant management events, such as changes in rules or regulations;
- accessible storage of the specifics of processes followed by management.
From inherited abstract Metrics Functional Profile
Artifact Descriptions include references to metrics which describe the operational characteristics of the subjects being described
Architectural implications of metrics on the Semantic Infrastructure are reflected in Governance relies on metrics to define and measure compliance. This is provided by the following capabilities:
- the access to platform infrastructure monitoring and reporting information on SOA resources;
- possible interface requirements to make accessible metrics information generated or most easily accessed by the service itself.
- capabilities
- access to metrics information generated or accessible by related services
- mechanisms to catalog and enable discovery of which metrics are available for a described artifact and information on how these metrics can be accessed;
- mechanisms to catalog and enable discovery of compliance records associated with policies, contracts, and constraints that are based on these metrics.
From inherited abstract Policy Functional Profile
Artifact Descriptions include references to policies defining conditions of use and optionally contracts representing agreement on policies and other conditions.
Architectural implications of policy on the Semantic Infrastructure are reflected in the following capabilities:
- descriptions to enable the policy modules to be visible, where the description includes a unique identifier for the policy and a sufficient, and preferably a machine processible, representation of the meaning of terms used to describe the policy, its functions, and its effects;
- one or more discovery mechanisms that enable searching for policies that best meet the search criteria specified by the service participant; where the discovery mechanism will have access to the individual policy descriptions, possibly through some repository mechanism;
- accessible storage of policies and policy descriptions, so service participants can access, examine, and use the policies as defined.
Policy capabilities are specialization of Artifact capabilities.
From inherited abstract PolicyAndContract Functional Profile
While policy and contract descriptions have much of the same architectural implications as Service Descriptions, mechanisms supporting policies and contracts also have the following architectural implications:
- decision procedures which must be able to measure and render decisions on constraints;
- enforcement of decisions;
- measurement and notification of obligation constraints;
- auditability of decisions, enforcement, and obligation measurements;
- administration of policy and contract language artifacts;
- storage of policies and contracts;
- distribution of policies/contracts;
- conflict resolution or elevation of conflicts in policy rules;
- delegation of policy authority to agents acting on behalf of a client;
- decision procedures capable of incorporating roles and/or attributes for rendered decisions.
From inherited abstract PolicyAndContractLanguage Functional Profile
While policy and contract descriptions have much of the same architectural implications as Service Descriptions, languages supporting policies and contracts also have the following architectural implications:
- expression of assertion and commitment policy constraints;
- expression of positive and negative policy constraints;
- expression of permission and obligation policy constraints;
- nesting of policy constraints allowing for abstractions and refinements of a policy constraint;
- definition of alternative policy constraints to allow for the selection of compatible policy constraints for a consumer and provider;
- composition of policies to combine one or more policies.
Capability Elaborations
This Functional Profile includes, but is not limited to, the following capability elaborations:
- assembly
- complianceDiscovery
- componentAcquisition
- compositionArchive
- compositionChange
- configurationManagement
- discovery
- governanceModel
- governanceService
- identity
- interactionLog
- interactionResults
- interoperabilityDiscovery
- managementInformation
- managementNotification
- managementProcesses
- metadata
- metrics
- metricsDiscovery
- monitor
- policyAdministration
- policyAlternative
- policyAssertion
- policyAudit
- policyAuthorityDelegation
- policyComposition
- policyConflictResolution
- policyConstraint
- policyDecision
- policyDecisionProcedures
- policyDistribution
- policyEnforcement
- policyMetrics
- policyObligation
- policyRefinement
- policyStore
- serviceChangeNotification
- store
- transition
- versioning
Derived From Requirements
- Semantic Infrastructure Requirements::Service Discovery and Governance::Service Policies Service policies help establish constraints on the service specifications and mandate an approach. Policies can be specified around governance, access control and other design and runtime constraints.
| Anchor | ||||
|---|---|---|---|---|
|
Tools to facilitate identifying description elements that are to be aggregated to assemble the composite description.
| Anchor | ||||
|---|---|---|---|---|
|
Mechanisms to catalog and enable discovery of compliance records associated with policies, contracts, and constraints that are based on these metrics.
| Anchor | ||||
|---|---|---|---|---|
|
Tools to facilitate identifying the sources of information to associate with the description elements.
| Anchor | ||||
|---|---|---|---|---|
|
Tools to collect the identified description elements and their associated sources into a standard, referenceable format that can support general access and understanding.
| Anchor | ||||
|---|---|---|---|---|
|
Tools to automatically update the composite description as the component sources change, and to consistently apply versioning schemes to identify the new description contents and the type and significance of change that occurred.
| Anchor | ||||
|---|---|---|---|---|
|
Mechanisms to support the storage, referencing, and access to normative definitions of one or more versioning schemes that may be applied to identify different aggregations of descriptive information, where the different schemes may be versions of a versioning scheme itself.
| Anchor | ||||
|---|---|---|---|---|
|
One or more discovery mechanisms that enable searching for artifacts that best meet the search criteria specified by the service participant; where the discovery mechanism will have access to the individual artifact descriptions, possibly through some repository mechanism.
| Anchor | ||||
|---|---|---|---|---|
|
Governance Model with capabilities to create, destroy, edit, maintain governance policy.
...
- unique identification for each policy the Governance meta-model describing term representations, functions, and effects of a policy description (model)
- one or more discovery mechanisms that enable searching for policies that best meet the search criteria specified by the service participant; where the discovery mechanism will have access to the individual policy descriptions through some repository mechanism;
- services enabling access, examination, and use of the policies.
- notifications to inform participants of significant governance events, such as changes in policies, rules, or regulations;
- comprehensive, accessible, Governance Model;
- services to access implementations of the Governance Processes
- Rules and regulation models are accessible from the Governance model; they all have meta-models describing their terms, functions, effects; they all have discovery and search mechanisms accessible through some repository
- Utilize platform monitoring and notification capabiities to monitor, report, and make accessible metrics related to compliance
- expression of assertion and commitment policy constraints;
- expression of positive and negative policy constraints;
- expression of permission and obligation policy constraints;
- nesting of policy constraints allowing for abstractions and refinements of a policy constraint; definition
| Anchor | ||||
|---|---|---|---|---|
|
SOA services to access automated implementations of the Governance Processes.
| Anchor | ||||
|---|---|---|---|---|
|
Descriptions which include a unique identifier for the artifact.
| Anchor | ||||
|---|---|---|---|---|
|
One or more mechanisms to capture, describe, store, discover, and retrieve interaction logs, execution contexts, and the combined interaction descriptions.
| Anchor | ||||
|---|---|---|---|---|
|
One or more mechanisms for attaching to any results the means to identify and retrieve the interaction description under which the results were generated.
| Anchor | ||||
|---|---|---|---|---|
|
One or more discovery mechanisms that enable searching for described resources that best meet the criteria specified by a service participant, where the discovery mechanism will have access to individual descriptions, possibly through some repository mechanism.
| Anchor | ||||
|---|---|---|---|---|
|
An information collection site, such as a Web page or portal, where management information is stored and from which the information is always available for access.
| Anchor | ||||
|---|---|---|---|---|
|
A mechanism to inform participants of significant management events, such as changes in rules or regulations.
| Anchor | ||||
|---|---|---|---|---|
|
Accessible storage of the specifics of processes followed by management.
| Anchor | ||||
|---|---|---|---|---|
|
A representation of the meaning of terms used to describe the artifact, its functions, and its effects.
| Anchor | ||||
|---|---|---|---|---|
|
Access to metrics information generated or accessible by related services
| Anchor | ||||
|---|---|---|---|---|
|
Mechanisms to catalog and enable discovery of which metrics are available for a described artifact and information on how these metrics can be accessed.
| Anchor | ||||
|---|---|---|---|---|
|
Access to platform infrastructure monitoring and reporting capabilities.
| Anchor | ||||
|---|---|---|---|---|
|
Administration of policy and contract language artifacts.
| Anchor | ||||
|---|---|---|---|---|
|
Definition of alternative policy constraints to allow for the selection of compatible policy constraints for a consumer and provider
...
.
| Anchor | ||||
|---|---|---|---|---|
|
Expression of assertion and commitment policy constraints.
| Anchor | ||||
|---|---|---|---|---|
|
Auditability of decisions, enforcement, and obligation measurements.
| Anchor | ||||
|---|---|---|---|---|
|
Delegation of policy authority to agents acting on behalf of a client.
| Anchor | ||||
|---|---|---|---|---|
|
Composition of policies to combine one or more policies.
...
| Anchor | ||||
|---|---|---|---|---|
|
Conflict resolution or elevation of conflicts in policy rules.
| Anchor | ||||
|---|---|---|---|---|
|
Expression of positive and negative policy constraints.
| Anchor | ||||
|---|---|---|---|---|
|
Decision
...
procedures which must be able to measure and render decisions on constraints
...
.
| Anchor | ||||
|---|---|---|---|---|
|
Decision procedures capable of incorporating roles and/or attributes for rendered decisions.
| Anchor | ||||
|---|---|---|---|---|
|
Distribution of policies/contracts.
| Anchor | ||||
|---|---|---|---|---|
|
Enforcement of decisions.
| Anchor | ||||
|---|---|---|---|---|
|
Measurement and notification of obligation constraints.
| Anchor | ||||
|---|---|---|---|---|
|
Expression of permission and obligation policy constraints.
| Anchor | ||||
|---|---|---|---|---|
|
Nesting of policy constraints allowing for abstractions and refinements of a policy constraint.
| Anchor | ||||
|---|---|---|---|---|
|
Storage of policies and contracts.
| Anchor | ||||
|---|---|---|---|---|
|
Tools to appropriately track users of the descriptions and notify them when a new version of the description is available.
| Anchor | ||||
|---|---|---|---|---|
|
Accessible storage of artifacts and artifact descriptions, so service participants can access, examine, and use the artifacts as defined.
| Anchor | ||||
|---|---|---|---|---|
|
One or more mechanisms to support the storage, referencing, and access to conversion relationships between versioning schemes, and the mechanisms to carry out such conversions.
| Anchor | ||||
|---|---|---|---|---|
|
Configuration management mechanisms to capture the contents of the each aggregation and apply a unique identifier in a manner consistent with an identified versioning scheme
...
.
| Scrollbar |
|---|
