A summary of an enterprise SOA architecture - The Rings of the Enterprise [link]
Ring Zero: WS/RMI/.NET Remoting, Java/C#, business logic + processes, databases, no security
Ring One: Messaging middleware, business system, application security, secure sockets
Ring Two: B2B collaboration, security is a big issue, firewalls, encrypted comms
Ring Three: The world, unsafe
Since Ring Zero has no security, I would expect a business process to be implemented to ensure that staff are unable to interfere with the live system / ring zero. In the simpest of applications, this would imply that a developer doesnot imbed some sort of backdoor or "feature". The security process would be code review. In a larger enterprise system it would be complete network isolation of ring zero allowing only ring zero and ring one to communicate. A deployment process that ensures only certain individuals have access to the live system and a QA review and testing process independant of the developers.
skip to main |
skip to sidebar
The edge of my mind.
Blog Archive
-
▼
2005
(42)
-
▼
March
(8)
- When designing systems or preparing presenations i...
- Pick Two(a) Reliable(b) Cheap(c) Fast
- An XML namespace is not a URL, its a URI. If it l...
- I keep on reading about SOA (Service Oriented Arch...
- My house got hit by lightening last night... Happi...
- A summary of an enterprise SOA architecture - The ...
- When using IEEE Software Engineering Process, you ...
- The problem with investing great amounts of time i...
-
▼
March
(8)
2 comments:
Nice site!
[url=http://dmhovlcy.com/aoet/frgj.html]My homepage[/url] | [url=http://xijpyyls.com/fbxa/alvy.html]Cool site[/url]
Well done!
http://dmhovlcy.com/aoet/frgj.html | http://enodjyum.com/ugww/cnod.html
Post a Comment