Application architects have heard about the increased importance of security,
but in many cases they really don't know how to approach this issue. In this
article, I'll share my experience and define a few basic steps and
checkpoints for building application architecture with security in mind.
This year, architects have started to face several domestic (SOX and HIPPA)
and even international (Basel II) regulations that require a certain level of
protection of the personal and financial data that's processed and owned by
the companies. Though network and operating system security solutions have
done a great job in their domains, there is still one weakly protected path
to corporate data - it's a spectrum of commercial and homegrown applications.
I won't discuss why security is important and what is required by the
regulations because you can find a lot of related mater... (more)
From the first days of Rich Internet Application (RIA) technology, many
enthusiasts found an analogy between RIA and service-oriented architecture
(SOA). Some of them talked about the benefits of a would-be-wonderful use of
SOA in RIA; others saw RIA as a SOA face. Nonetheless, there are experts who
see a discrepancy between RIA and SOA concepts.
The major disagreement between RIA and SOA is in the fine-grained operations
in RIA and the coarse-grained type of interfaces of SOA business services.
Let's take a closer look at this problem.
In a glance we can see that the RIA spectr... (more)
(Found in a blog, "Versioning is as inevitable as security.") SOA development
practice isn't much different from other software development practices
except for design and maintenance. Multiple self-containing and aggregated
services that interact with others have their own lifecycle and evolution.
The loosely coupling model of SOA services significantly simplifies design
but creates additional difficulties in maintenance, especially in the
interoperability of different service versions.
To better understand the requirements of SOA service versioning, let me ask
several question... (more)
In this article I'll share my experience in using the new features in Java 5
for solving an old industry problem, the problem of collecting constantly
published financial data in reliable way. The business case example I'm going
to discuss relates to the acquisition of some sort of market data published
by a financial data source system like Reuters.
Data Source Publishing Conditions
Assume a Data Source allows for a consumer subscription that results in
publishing market data messages via a DataFeed Channel. The consumer can
listen to the messages, get them from the Event Queue, ... (more)
What could be easier than to take your application, wrap it with a Web
Service, announce it or register it in the UDDI and get a SOA Service? Even
better - take a data warehouse, cover a SQL executing code with a Web Service
and expose it to SOA, isn't it simple? This article is for those architects
and managers who like such "simplicity." If you believe that a Web Service
itself doesn't convert an application into the SOA Service, you might read
the article just out of curiosity.
A Service or Not a Service
Discussions about Service Oriented Architecture (SOA) initiated by people ... (more)
Michael Poulin works as an enterprise-level solution architect in the financial industry in the UK. He is a Sun Certified Architect for Java Technology, certified TOGAF Practitioner, and Licensed ZapThink SOA Architect. Michael specializes in distributed computing, SOA, and application security.
Sue Poremba
Scott Sellers
Anthony Franco
Daniel Morris
Wayne Walls
Niki Acosta
Jereme Hancock
Oren Michels
Marvin Wheeler
Douglas Kim
