NIH | National Cancer Institute | NCI Wiki  

Error rendering macro 'rw-search'

null

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Version 1 Next »

Governance Policies Functional Profile

Service policies help establish constraints on the service specifications and mandate an approach. Policies can be specified around governance constraints.

This Functional Profile includes, but is not limited to, the following capability elaborations:

Derived From Requirements

  • Semantic Infrastructure Requirements::Service Discovery and Governance::Service Policies Service policies help establish constraints on the service specifications and mandate an approach. Policies can be specified around governance, access control and other design and runtime constraints.

governanceModel

Governancel Model create, destroy, edit, maintain.

Service policies help establish constraints on the service specifications and mandate an approach. Policies can be specified around governance constraints.

The Reference Model defines Service Oriented Architecture as an architectural paradigm for organizing and utilizing distributed capabilities that may be under the control of different ownership domains. Consequently, it is important that organizations that plan to engage in service interactions adopt governance policies and procedures sufficient to ensure that there is standardization across both internal and external organizational boundaries to promote the effective creation and use of SOA-based services.

The description of SOA governance indicates numerous architectural requirements on the SOA ecosystem:

  • Governance is expressed through policies and assumes multiple use of focused policy modules that can be employed across many common circumstances. This requires the existence of:
  • descriptions to enable the policy modules to be visible, where the description includes a unique identifier for the policy and a sufficient, and preferably a machine process-able, representation of the meaning of terms used to describe the policy, its functions, and its effects;
  • one or more discovery mechanisms that enable searching for policies that best meet the search criteria specified by the service participant; where the discovery mechanism will have access to the individual policy descriptions, possibly through some repository mechanism;
  • accessible storage of policies and policy descriptions, so service participants can access, examine, and use the policies as defined.
  • Governance requires that the participants understand the intent of governance, the structures created to define and implement governance, and the processes to be followed to make governance operational. This requires the existence of:
  • an information collection site, such as a Web page or portal, where governance information is stored and from which the information is always available for access;
  • a mechanism to inform participants of significant governance events, such as changes in policies, rules, or regulations;
  • accessible storage of the specifics of Governance Processes;
  • SOA services to access automated implementations of the Governance Processes
  • Governance policies are made operational through rules and regulations. This requires the existence of:
  • descriptions to enable the rules and regulations to be visible, where the description includes a unique identifier and a sufficient, and preferably a machine process-able, representation of the meaning of terms used to describe the rules and regulations;
  • one or more discovery mechanisms that enable searching for rules and regulations that may apply to situations corresponding to the search criteria specified by the service participant; where the discovery mechanism will have access to the individual descriptions of rules and regulations, possibly through some repository mechanism;
  • accessible storage of rules and regulations and their respective descriptions, so service participants can understand and prepare for compliance, as defined.
  • SOA services to access automated implementations of the Governance Processes.
  • Governance implies management to define and enforce rules and regulations. Management requires the existence of:
  • an information collection site, such as a Web page or portal, where management information is stored and from which the information is always available for access;
  • a mechanism to inform participants of significant management events, such as changes in rules or regulations;
  • accessible storage of the specifics of processes followed by management.
  • Governance relies on metrics to define and measure compliance. This requires the existence of:
  • the infrastructure monitoring and reporting information on SOA resources;
  • possible interface requirements to make accessible metrics information generated or most easily accessed by the service itself.
  • No labels