Simple, Secure SOA for HP NonStop Applications

944 views

Published on

0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
944
On SlideShare
0
From Embeds
0
Number of Embeds
2
Actions
Shares
0
Downloads
15
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Simple, Secure SOA for HP NonStop Applications

  1. 1. Simple, Secure SOA for HP NonStop Applications M A Y 2 0 0 6
  2. 2. Agenda <ul><li>What is Service Oriented Architecture </li></ul><ul><li>ACI’s Secure SOA Enabler </li></ul><ul><ul><li>ACI Web Access Services </li></ul></ul><ul><ul><li>ACI Enterprise Security Services </li></ul></ul><ul><ul><li>ACI WorkPoint </li></ul></ul>
  3. 3. What is Service Oriented Architecture? <ul><li>An architectural style whose goal is to achieve loose coupling among interacting software agents </li></ul><ul><ul><li>The communication can involve either simple data passing or it could involve two or more services coordinating some activity. Some means of connecting services to each other is needed. </li></ul></ul><ul><li>The technology of Web services is the most likely connection technology of service-oriented architectures. Web services essentially use XML to create a robust connection. </li></ul>
  4. 4. Benefits of SOA <ul><li>Application and infrastructure reuse </li></ul><ul><li>Improved business agility / flexibility </li></ul><ul><li>Decrease in development time and cost </li></ul><ul><li>SOA more closely aligns business and IT and in so doing, makes organizations themselves more agile, flexible and thus more competitive </li></ul>
  5. 5. Industry Technologies <ul><li>XML </li></ul><ul><li>SOAP </li></ul><ul><li>WSDL </li></ul><ul><li>WS-Security </li></ul><ul><li>WS-Addressing </li></ul>
  6. 6. What is ACI’s Secure SOA Enabler? <ul><li>A bundle of ACI products providing NonStop users with the ability to expose their Pathway and BASE24 applications as SOA Web Services </li></ul><ul><ul><li>ACI Web Access Services (nee WebGate) </li></ul></ul><ul><ul><li>ACI Enterprise Security Services (nee SafeTGate) </li></ul></ul><ul><ul><li>ACI WorkPoint (nee WorkPoint) </li></ul></ul>
  7. 7. What does Secure SOA Enabler do? <ul><li>Creates XML Schemas from application message DDLs </li></ul><ul><li>Creates Industry Standard SOAP WSDL </li></ul><ul><ul><li>“ Self-Describing” message services </li></ul></ul><ul><li>Secures Web Services </li></ul><ul><li>Allows services to be used as building blocks for more complex transactions </li></ul><ul><ul><li>Orchestration of Web Services </li></ul></ul><ul><li>Supports BASE24, Pathway applications and homegrown </li></ul>
  8. 8.   You are Here
  9. 9. Using ACI Web Access Services to Create a Web Service
  10. 10. ACI Web Services Tool Kit <ul><li>PC based utility application which generates industry standard WSDL from NonStop application message DDLs </li></ul><ul><li>Also creates proprietary ACI server-side files </li></ul><ul><ul><li>SOAP Configuration files </li></ul></ul><ul><ul><li>Data Service Repository (DSR) files </li></ul></ul>
  11. 11. WAS Pathway and XPNET SOA Services <ul><li>A Guardian NonStop process with interfaces to </li></ul><ul><ul><li>WAS HTTP Server (synchronous services) </li></ul></ul><ul><ul><li>WebSphere MQ (asynchronous services) </li></ul></ul><ul><li>Industry standard SOAP header processing </li></ul><ul><ul><li>WS-Addressing </li></ul></ul><ul><ul><li>WS-Security </li></ul></ul><ul><li>XML message transformation </li></ul><ul><ul><li>Pathsend message structures </li></ul></ul><ul><ul><li>ISO 8583 message structures </li></ul></ul>
  12. 12. Step 1- Convert Message structures to XML ACI WAS ACI WAS HTTP Server ACI Web Services Tool Kit FTP to PC ACI WAS SOAPCONF ACI WAS DSR WSDL BASE24 Pathway Server RQ/SV COBOL Pathsend DDL DDLGISO HISO/RBSI SCOBOL requester BASE24 Pathway XPNET ACI WAS SOA Services
  13. 13. Step 2- Distribute the generated files WSDL ACI WAS ACI WAS HTTP Server ACI WAS SOA Services ACI Web Services Tool Kit FTP to PC ACI WAS SOAPCONF ACI WAS DSR BASE24 Pathway Server RQ/SV COBOL Pathsend DDL DDLGISO HISO/RBSI BASE24 Pathway XPNET
  14. 14. Step 3- Build a client using Industry IDEs WSDL
  15. 15. Step 3- Build a client using Industry IDEs WSDL HTTP(SOAP(XML)) ACI WAS ACI WAS HTTP Server ACI WAS SOA Services BASE24 Pathway Server BASE24 Pathway XPNET TCP/IP ACI WAS SOAPCONF ACI WAS DSR
  16. 16. WSDL is supported by numerous IDE vendors ACI WAS ACI WAS HTTP Server ACI WAS SOAP ACI WAS SOAPCONF ACI WAS DSR ACI Web Services Tool Kit
  17. 17. Using Enterprise Security Services to Secure a Web Service
  18. 18. <ul><li>1. No Security </li></ul>Methods of Securing Web Services 2. SSL only, with no user details 3. HTTP Basic Authentication without SSL 4. HTTP Basic Authentication over SSL 5. SOAP WS-Security Username profile without SSL 6. SOAP WS-Security Username profile over SSL
  19. 19. <ul><li>Application Firewall </li></ul><ul><ul><li>SSL </li></ul></ul><ul><ul><li>HTTP Basic Authentication </li></ul></ul><ul><ul><li>WS-Security </li></ul></ul>ACI Enterprise Security Services
  20. 20. Enterprise Security Services – Application Firewall ACI ESS Application Firewall Credentials Database HTTPS ACI WAS SOA Services Web service Protected, User authenticated/ authorized? 4 3 ACI WAS HTTP/S 1 SOAP Request (Web Service + Operation) + Username and Password 7 Result of Web service returned to User 2 6 Pathway or BASE24 5
  21. 21. Using ACI WorkPoint to Orchestrate Web Services
  22. 22. ACI WorkPoint <ul><li>ACI WorkPoint is a comprehensive Business Process Management solution which enables design, execution, monitoring, and management of enterprise business processes and Web services </li></ul><ul><li>Now available on NonStop! </li></ul>
  23. 23. Orchestration with ACI WorkPoint Add/Update terminals (PTDF) Validate Retailer ID (PRDF) Validate FIID (IDF) Pathway BASE24 IDF PRDF PTDF ACI WorkPoint Business Process Management ACI Enterprise Security Services Authentication, Authorization, Auditing ACI Web Access Services SOA Pathway Services Logon IDF: Institution PRDF: Retailer PTDF: Terminal Logon IDF: Institution PRDF: Retailer PTDF: Terminal
  24. 24. Questions? or…. Come by the ACI stand for a demo

×