NIH | National Cancer Institute | NCI Wiki  

Error rendering macro 'rw-search'

null

  • Created by Unknown User (digret), last modified on Sep 05, 2010

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 4 Next »

Governance Policies Functional Profile

Service Oriented Architecture is an architectural paradigm for organizing and utilizing distributed capabilities that may be under the control of different ownership domains. Consequently, it is important that organizations that plan to engage in service interactions adopt governance policies and procedures sufficient to ensure that there is standardization across both internal and external organizational boundaries to promote the effective creation and use of SOA-based services.

Governance is expressed through policies and assumes multiple use of focused policy modules that can be employed across many common circumstances.

From inherited abstract Artifact Functional Profile

An artifact is a managed resource within the Semantic Infrastructure.

An artifact is associated with the following capabilities:

  • descriptions to enable the artifact to be visible, where the description includes a unique identifier for the artifact and a sufficient, and preferably a machine processible, representation of the meaning of terms used to describe the artifact, its functions, and its effects;
  • one or more discovery mechanisms that enable searching for artifacts that best meet the search criteria specified by the service participant; where the discovery mechanism will have access to the individual artifact descriptions, possibly through some repository mechanism;
  • accessible storage of artifacts and artifact descriptions, so service participants can access, examine, and use the artifacts as defined.
From inherited abstract Change Functional Profile

Artifact descriptions change over time and their contents will reflect changing needs and context.

Architectural implications of change on the Semantic Infrastructure are reflected in the following capabilities:

  • mechanisms to support the storage, referencing, and access to normative definitions of one or more versioning schemes that may be applied to identify different aggregations of descriptive information, where the different schemes may be versions of a versioning scheme itself;
  • configuration management mechanisms to capture the contents of the each aggregation and apply a unique identifier in a manner consistent with an identified versioning scheme;
  • one or more mechanisms to support the storage, referencing, and access to conversion relationships between versioning schemes, and the mechanisms to carry out such conversions.
From inherited abstract Composition Functional Profile

Artifact Descriptions may capture very focused information subsets or can be an aggregate of numerous component descriptions. Service description is an example of a likely aggregate for which manual maintenance of all aspects would not be feasible.

Architectural implications of composition on the Semantic Infrastructure are reflected in the following capabilities:

  • tools to facilitate identifying description elements that are to be aggregated to assemble the composite description;
  • tools to facilitate identifying the sources of information to associate with the description elements;
  • tools to collect the identified description elements and their associated sources into a standard, referenceable format that can support general access and understanding;
  • tools to automatically update the composite description as the component sources change, and to consistently apply versioning schemes to identify the new description contents and the type and significance of change that occurred.
From inherited abstract Governance Functional Profile

Service Oriented Architecture is an architectural paradigm for organizing and utilizing distributed capabilities that may be under the control of different ownership domains. Consequently, it is important that organizations that plan to engage in service interactions adopt governance policies and procedures sufficient to ensure that there is standardization across both internal and external organizational boundaries to promote the effective creation and use of SOA-based services.

Governance is expressed through policies and assumes multiple use of focused policy modules that can be employed across many common circumstances.

SOA governance requires numerous architectural capabilities on the Semantic Infrastructure:

Governance requires that the participants understand the intent of governance, the structures created to define and implement governance, and the processes to be followed to make governance operational. This is provided by capabilities specialized from the inherited Management Profile.

Governance policies are made operational through rules and regulations. This is provided by the following capabilities, most of which are specializations of the inherited Artifact Profile:

  • descriptions to enable the rules and regulations to be visible, where the description includes a unique identifier and a sufficient, and preferably a machine process-able, representation of the meaning of terms used to describe the rules and regulations;
  • one or more discovery mechanisms that enable searching for rules and regulations that may apply to situations corresponding to the search criteria specified by the service participant; where the discovery mechanism will have access to the individual descriptions of rules and regulations, possibly through some repository mechanism;
  • accessible storage of rules and regulations and their respective descriptions, so service participants can understand and prepare for compliance, as defined.
  • SOA services to access automated implementations of the Governance Processes.
From inherited abstract Interaction Functional Profile

Descriptions of interactions are important for enabling auditability and repeatability, thereby establishing a context for results and support for understanding observed change in performance or results.

Architectural implications of interactions on the Semantic Infrastructure are reflected in the following capabilities:

  • one or more mechanisms to capture, describe, store, discover, and retrieve interaction logs, execution contexts, and the combined interaction descriptions;
  • one or more mechanisms for attaching to any results the means to identify and retrieve the interaction description under which the results were generated.
From inherited abstract Interoperability Functional Profile

Descriptions provide up-to-date information on what a resource is, the conditions for interacting with the resource, and the results of such interactions. As such, the description is the source of vital information in establishing willingness to interact with a resource, reachability to make interaction possible, and compliance with relevant conditions of use.

Architectural implications of interoperability on the Semantic Infrastructure are reflected in the following capabilities:

  • one or more discovery mechanisms that enable searching for described resources that best meet the criteria specified by a service participant, where the discovery mechanism will have access to individual descriptions, possibly through some repository mechanism;
  • tools to appropriately track users of the descriptions and notify them when a new version of the description is available.
From inherited abstract Management Functional Profile

Governance implies management to define and enforce rules and regulations.

Management is provided by the following capabilities:

  • an information collection site, such as a Web page or portal, where management information is stored and from which the information is always available for access;
  • a mechanism to inform participants of significant management events, such as changes in rules or regulations;
  • accessible storage of the specifics of processes followed by management.
From inherited abstract Metrics Functional Profile

Artifact Descriptions include references to metrics which describe the operational characteristics of the subjects being described

Architectural implications of metrics on the Semantic Infrastructure are reflected in the following capabilities:

  • access to platform infrastructure monitoring and reporting capabilities
  • access to metrics information generated or accessible by related services
  • mechanisms to catalog and enable discovery of which metrics are available for a described artifact and information on how these metrics can be accessed;
  • mechanisms to catalog and enable discovery of compliance records associated with policies, contracts, and constraints that are based on these metrics.
From inherited abstract Policy Functional Profile

Artifact Descriptions include references to policies defining conditions of use and optionally contracts representing agreement on policies and other conditions.

Architectural implications of policy on the Semantic Infrastructure are reflected in the following capabilities:

  • descriptions to enable the policy modules to be visible, where the description includes a unique identifier for the policy and a sufficient, and preferably a machine processible, representation of the meaning of terms used to describe the policy, its functions, and its effects;
  • one or more discovery mechanisms that enable searching for policies that best meet the search criteria specified by the service participant; where the discovery mechanism will have access to the individual policy descriptions, possibly through some repository mechanism;
  • accessible storage of policies and policy descriptions, so service participants can access, examine, and use the policies as defined.

Policy capabilities are specialization of Artifact capabilities.

From inherited abstract PolicyAndContract Functional Profile

While policy and contract descriptions have much of the same architectural implications as Service Descriptions, mechanisms supporting policies and contracts also have the following architectural implications:

  • decision procedures which must be able to measure and render decisions on constraints;
  • enforcement of decisions;
  • measurement and notification of obligation constraints;
  • auditability of decisions, enforcement, and obligation measurements;
  • administration of policy and contract language artifacts;
  • storage of policies and contracts;
  • distribution of policies/contracts;
  • conflict resolution or elevation of conflicts in policy rules;
  • delegation of policy authority to agents acting on behalf of a client;
  • decision procedures capable of incorporating roles and/or attributes for rendered decisions.
From inherited abstract PolicyAndContractLanguage Functional Profile

While policy and contract descriptions have much of the same architectural implications as Service Descriptions, languages supporting policies and contracts also have the following architectural implications:

  • expression of assertion and commitment policy constraints;
  • expression of positive and negative policy constraints;
  • expression of permission and obligation policy constraints;
  • nesting of policy constraints allowing for abstractions and refinements of a policy constraint;
  • definition of alternative policy constraints to allow for the selection of compatible policy constraints for a consumer and provider;
  • composition of policies to combine one or more policies.
Capability Elaborations

This Functional Profile includes, but is not limited to, the following capability elaborations:

Derived From Requirements

  • Semantic Infrastructure Requirements::Service Discovery and Governance::Service Policies Service policies help establish constraints on the service specifications and mandate an approach. Policies can be specified around governance, access control and other design and runtime constraints.

assembly capability elaboration

Tools to facilitate identifying description elements that are to be aggregated to assemble the composite description.

complianceDiscovery capability elaboration

Mechanisms to catalog and enable discovery of compliance records associated with policies, contracts, and constraints that are based on these metrics.

componentAcquisition capability elaboration

Tools to facilitate identifying the sources of information to associate with the description elements.

compositionArchive capability elaboration

Tools to collect the identified description elements and their associated sources into a standard, referenceable format that can support general access and understanding.

compositionChange capability elaboration

Tools to automatically update the composite description as the component sources change, and to consistently apply versioning schemes to identify the new description contents and the type and significance of change that occurred.

configurationManagement capability elaboration

Mechanisms to support the storage, referencing, and access to normative definitions of one or more versioning schemes that may be applied to identify different aggregations of descriptive information, where the different schemes may be versions of a versioning scheme itself.

discovery capability elaboration

One or more discovery mechanisms that enable searching for artifacts that best meet the search criteria specified by the service participant; where the discovery mechanism will have access to the individual artifact descriptions, possibly through some repository mechanism.

governanceModel capability elaboration

Governance Model with capabilities to create, destroy, edit, maintain governance policy.

The Governance Model implementation includes the following capabilities:

  • unique identification for each policy the Governance meta-model describing term representations, functions, and effects of a policy description (model)
  • services enabling access, examination, and use of the policies.
  • notifications to inform participants of significant governance events, such as changes in policies, rules, or regulations;
  • comprehensive, accessible, Governance Model;
  • services to access implementations of the Governance Processes
  • Rules and regulation models are accessible from the Governance model; they all have meta-models describing their terms, functions, effects; they all have discovery and search mechanisms accessible through some repository

governanceService capability elaboration

SOA services to access automated implementations of the Governance Processes.

identity capability elaboration

Descriptions which include a unique identifier for the artifact.

interactionLog capability elaboration

One or more mechanisms to capture, describe, store, discover, and retrieve interaction logs, execution contexts, and the combined interaction descriptions.

interactionResults capability elaboration

One or more mechanisms for attaching to any results the means to identify and retrieve the interaction description under which the results were generated.

interoperabilityDiscovery capability elaboration

One or more discovery mechanisms that enable searching for described resources that best meet the criteria specified by a service participant, where the discovery mechanism will have access to individual descriptions, possibly through some repository mechanism.

managementInformation capability elaboration

An information collection site, such as a Web page or portal, where management information is stored and from which the information is always available for access.

managementNotification capability elaboration

A mechanism to inform participants of significant management events, such as changes in rules or regulations.

managementProcesses capability elaboration

Accessible storage of the specifics of processes followed by management.

metadata capability elaboration

A representation of the meaning of terms used to describe the artifact, its functions, and its effects.

metrics capability elaboration

Access to metrics information generated or accessible by related services

metricsDiscovery capability elaboration

Mechanisms to catalog and enable discovery of which metrics are available for a described artifact and information on how these metrics can be accessed.

monitor capability elaboration

Access to platform infrastructure monitoring and reporting capabilities.

policyAdministration capability elaboration

Administration of policy and contract language artifacts.

policyAlternative capability elaboration

Definition of alternative policy constraints to allow for the selection of compatible policy constraints for a consumer and provider.

policyAssertion capability elaboration

Expression of assertion and commitment policy constraints.

policyAudit capability elaboration

Auditability of decisions, enforcement, and obligation measurements.

policyAuthorityDelegation capability elaboration

Delegation of policy authority to agents acting on behalf of a client.

policyComposition capability elaboration

Composition of policies to combine one or more policies.

policyConflictResolution capability elaboration

Conflict resolution or elevation of conflicts in policy rules.

policyConstraint capability elaboration

Expression of positive and negative policy constraints.

policyDecision capability elaboration

Decision procedures which must be able to measure and render decisions on constraints.

policyDecisionProcedures capability elaboration

Decision procedures capable of incorporating roles and/or attributes for rendered decisions.

policyDistribution capability elaboration

Distribution of policies/contracts.

policyEnforcement capability elaboration

Enforcement of decisions.

policyMetrics capability elaboration

Measurement and notification of obligation constraints.

policyObligation capability elaboration

Expression of permission and obligation policy constraints.

policyRefinement capability elaboration

Nesting of policy constraints allowing for abstractions and refinements of a policy constraint.

policyStore capability elaboration

Storage of policies and contracts.

serviceChangeNotification capability elaboration

Tools to appropriately track users of the descriptions and notify them when a new version of the description is available.

store capability elaboration

Accessible storage of artifacts and artifact descriptions, so service participants can access, examine, and use the artifacts as defined.

transition capability elaboration

One or more mechanisms to support the storage, referencing, and access to conversion relationships between versioning schemes, and the mechanisms to carry out such conversions.

versioning capability elaboration

Configuration management mechanisms to capture the contents of the each aggregation and apply a unique identifier in a manner consistent with an identified versioning scheme.

  • No labels