API Management and OAuth forWeb, Mobile and the CloudK Scott MorrisonCTO & Chief ArchitectNov 30, 2011
“Change has a considerable psychologicalimpact on the human mind.To the fearful it is threatening because itmeans that thi...
This talk isabout change
Our basic problemhas not changed:                       Access to                    information
But things outside ofour control that are      changing
We are interconnected
We are leveraging clouds
Mobility is exploding
You already  know theunderpinnings
But SOA needs  to change
And that iswhat this talk is   about.
Let me tell you a secret…
(it’s a gold rush)
Quote App
Proposal Generator Product Model: No. Units:          Next
Proposal Generator Product Model:    API Portal No. Units:        NextNetworking GatewayAPI PortalXML Accelerator
Proposal Generator Product Model:    API Portal No. Units:    21         Next23
Proposal Generator Product Model:    API Portal No. Units:    2          Next
Proposal Generator Discount Recipient         Submit
Proposal Generator Discount   5% Recipient0%       Submit5%10%
Proposal Generator Discount   5% Recipient   bobama@whitehouse.gov         Submit
Proposal Generator Discount   5% Recipient   @whitehouse.gov         Submit
Proposal Generator Processing…          Cancel
Proposal Generator …Done.   Proposal submitted       for review       Reference no L7-ABC123
API
ApplicationProgrammingInterface
APIs transform the Web into an   integration platform                                                  Cloud              ...
The API is the glue for the NewEnterprise Web                 Enterprise                  Network
Why did the web work so well?
Very loose coupling…              5           Approximate number of global web pages
But haven’t we heard this story before?
Let’s consider the developerexperience using SOAP                                  Web                                  Se...
http://api.layer7.com/getPerson?Name=Scott
http://api.layer7.com/getPerson?Name=Scott{    "firstName": ”Scott",    "lastName" : ”Morrison",    ”title" : “CTO”,    "a...
Low Barrier to Entry
Frictionless
Agility
Not Convinced Yet? Take a look at XML<!DOCTYPE x [ <!ENTITY y "a]>b"> ]><x>  <a b="&y;>" />  <![CDATA[[a>b <a>b <a]]>  <?x...
The new alternative is JSON     Structure            Name/Value
JSON is simple     {         "firstName": ”Scott ",         "lastName" : ”Morrison",         ”title" : “CTO”,         "add...
XML giving way to JSONillustrates the theme of thechange •   Complex                   •   Simple •   Highly standardized ...
What about governance?
Contracts
Old way: WSDL
New way: Just write a web page
Design time governance:  the integrated reg/rep
The new design-timegovernance leveragessuccessful communicationtools           •   Portal           •   Wiki           •  ...
What about run time governance?
Rules are only good with           enforcement
Consider WS-Security         <?xml version="1.0" encoding="utf-8" ?>         <soap:Envelope xmlns:soap="http://schemas.xml...
http s                ://api.layer7.com/getPerson?Name=Scott{    "firstName": ”Scott",    "lastName" : ”Morrison",    ”tit...
What about identity and access          control?
SAML is complex
OAuth by example
So what was SOA governance again?Old Governance New Governance • People            • People • Process           • Process ...
To Summarize:                    Old            NewDocumentation       WSDL           Wiki/BlogDiscovery           Reg/Rep...
The new way to manageThe new people to manage
These are the new people to manage
“Technology is dominated by two types ofpeople: those who understand what they do notmanage, and those who manage what the...
So how can youunderstand completely and   manage effectively?
IT is sick ofpiecemeal solutions
That’s why we built the Layer 7 APIDeveloper Portal                                  App                   Firewall       ...
Let’s Summarize:    • Simple wins every time    • SOA is changing      • and so is SOA governance    • The new enterprise ...
For further information:                K. Scott Morrison                Chief Technology Officer & Chief Architect       ...
Picture Credits   Big Ben by meanone97 – stock.exchg   Whiz Kids by Ron S. Gejman – ron.gejman.com   World Puzzle by ju...
API Management and OAuth for Web, Mobile and the Cloud: Scott Morrison's Presentation at Gartner AADI 2011
API Management and OAuth for Web, Mobile and the Cloud: Scott Morrison's Presentation at Gartner AADI 2011
API Management and OAuth for Web, Mobile and the Cloud: Scott Morrison's Presentation at Gartner AADI 2011
API Management and OAuth for Web, Mobile and the Cloud: Scott Morrison's Presentation at Gartner AADI 2011
Upcoming SlideShare
Loading in …5
×

API Management and OAuth for Web, Mobile and the Cloud: Scott Morrison's Presentation at Gartner AADI 2011

1,263 views

Published on

Published in: Technology, Business
0 Comments
1 Like
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total views
1,263
On SlideShare
0
From Embeds
0
Number of Embeds
118
Actions
Shares
0
Downloads
18
Comments
0
Likes
1
Embeds 0
No embeds

No notes for slide
  • Everyone here needs to choose.Ignore the middle groundAre you fearfulOr are you confident?
  • 2 Drivers. #1 is cloud, #2 is mobile
  • Let me tell you all a secret
  • The new enterprise web is about integration
  • 19.2B pages yahoo 2005346Mweb sites netcraft June 2011
  • Psych term, but look at examples
  • Psych term, but look at examples
  • Boil to its essence
  • Autobinding
  • Psych term, but look at examples
  • RUN TIME ESSENTIAL!
  • Developers hate these things
  • Run time governance is a first order problem now
  • What about identity?
  • But also internal users too
  • The new enterprise web is about integration
  • The new enterprise web is about integration
  • The new enterprise web is about integrationAsk yourself now, given the right tools, which side are you on?
  • API Management and OAuth for Web, Mobile and the Cloud: Scott Morrison's Presentation at Gartner AADI 2011

    1. 1. API Management and OAuth forWeb, Mobile and the CloudK Scott MorrisonCTO & Chief ArchitectNov 30, 2011
    2. 2. “Change has a considerable psychologicalimpact on the human mind.To the fearful it is threatening because itmeans that things may get worse.To the hopeful it is encouraging becausethings may get better.To the confident it is inspiring because thechallenge exists to make things better.” - King Whitney Jr.
    3. 3. This talk isabout change
    4. 4. Our basic problemhas not changed: Access to information
    5. 5. But things outside ofour control that are changing
    6. 6. We are interconnected
    7. 7. We are leveraging clouds
    8. 8. Mobility is exploding
    9. 9. You already know theunderpinnings
    10. 10. But SOA needs to change
    11. 11. And that iswhat this talk is about.
    12. 12. Let me tell you a secret…
    13. 13. (it’s a gold rush)
    14. 14. Quote App
    15. 15. Proposal Generator Product Model: No. Units: Next
    16. 16. Proposal Generator Product Model: API Portal No. Units: NextNetworking GatewayAPI PortalXML Accelerator
    17. 17. Proposal Generator Product Model: API Portal No. Units: 21 Next23
    18. 18. Proposal Generator Product Model: API Portal No. Units: 2 Next
    19. 19. Proposal Generator Discount Recipient Submit
    20. 20. Proposal Generator Discount 5% Recipient0% Submit5%10%
    21. 21. Proposal Generator Discount 5% Recipient bobama@whitehouse.gov Submit
    22. 22. Proposal Generator Discount 5% Recipient @whitehouse.gov Submit
    23. 23. Proposal Generator Processing… Cancel
    24. 24. Proposal Generator …Done. Proposal submitted for review Reference no L7-ABC123
    25. 25. API
    26. 26. ApplicationProgrammingInterface
    27. 27. APIs transform the Web into an integration platform Cloud Servers Legacy Third party web appsDirectory Mobile devices Applications Browsers Database
    28. 28. The API is the glue for the NewEnterprise Web Enterprise Network
    29. 29. Why did the web work so well?
    30. 30. Very loose coupling… 5 Approximate number of global web pages
    31. 31. But haven’t we heard this story before?
    32. 32. Let’s consider the developerexperience using SOAP Web Services Server WSDL
    33. 33. http://api.layer7.com/getPerson?Name=Scott
    34. 34. http://api.layer7.com/getPerson?Name=Scott{ "firstName": ”Scott", "lastName" : ”Morrison", ”title" : “CTO”, "address" : { "streetAddress": ”405-1100 Melville", "city" : ”Vancouver", ”prov" : ”BC", "postalCode" : ”V6E 4A6" }, "phoneNumber": [ { "type" : ”office", "number": ”605 681-9377" }, { "type" : ”home", "number": ”604 555-4567" } ]}
    35. 35. Low Barrier to Entry
    36. 36. Frictionless
    37. 37. Agility
    38. 38. Not Convinced Yet? Take a look at XML<!DOCTYPE x [ <!ENTITY y "a]>b"> ]><x> <a b="&y;>" /> <![CDATA[[a>b <a>b <a]]> <?x <a> <!-- <b> ?> c --> d</x>
    39. 39. The new alternative is JSON Structure Name/Value
    40. 40. JSON is simple { "firstName": ”Scott ", "lastName" : ”Morrison", ”title" : “CTO”, "address" : { "streetAddress": ”405-1100 Melville", "city" : ”Vancouver", ”prov" : ”BC", "postalCode" : ”V6E 4A6" }, "phoneNumber": [ { "type" : ”office", "number": ”605 681-9377" }, { "type" : ”home", "number": ”604 555-4567" } ] }
    41. 41. XML giving way to JSONillustrates the theme of thechange • Complex • Simple • Highly standardized • Informal • Vendor driven • Grassroots • Barriers • Frictionless
    42. 42. What about governance?
    43. 43. Contracts
    44. 44. Old way: WSDL
    45. 45. New way: Just write a web page
    46. 46. Design time governance: the integrated reg/rep
    47. 47. The new design-timegovernance leveragessuccessful communicationtools • Portal • Wiki • Forum • Blog • Email workflow
    48. 48. What about run time governance?
    49. 49. Rules are only good with enforcement
    50. 50. Consider WS-Security <?xml version="1.0" encoding="utf-8" ?> <soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"> <soap:Header/> <soap:Body xmlns:m=“http://www.example.org/stock”> <m:GetStockPrice> <m:StockName>ABC</m:StockName> </m:GetStockPrice> </soap:Body> </soap:Envelope>
    51. 51. http s ://api.layer7.com/getPerson?Name=Scott{ "firstName": ”Scott", "lastName" : ”Morrison", ”title" : “CTO”, "address" : { "streetAddress": ”405-1100 Melville", "city" : ”Vancouver", ”prov" : ”BC", "postalCode" : ”V6E 4A6" }, "phoneNumber": [ { "type" : ”office", "number": ”605 681-9377" }, { "type" : ”home", "number": ”604 555-4567" } ]}
    52. 52. What about identity and access control?
    53. 53. SAML is complex
    54. 54. OAuth by example
    55. 55. So what was SOA governance again?Old Governance New Governance • People • People • Process • Process • Technology • I have lots of this already…
    56. 56. To Summarize: Old NewDocumentation WSDL Wiki/BlogDiscovery Reg/Rep SearchApproval G10 Platform EmailEnforcement Gateway GatewayUser Provisioning IAM PortalCommunity What’s that? Forum
    57. 57. The new way to manageThe new people to manage
    58. 58. These are the new people to manage
    59. 59. “Technology is dominated by two types ofpeople: those who understand what they do notmanage, and those who manage what they do notunderstand.” - Archibald Putt
    60. 60. So how can youunderstand completely and manage effectively?
    61. 61. IT is sick ofpiecemeal solutions
    62. 62. That’s why we built the Layer 7 APIDeveloper Portal App Firewall API Developer Gateway API Portal API Server Enterprise Network
    63. 63. Let’s Summarize: • Simple wins every time • SOA is changing • and so is SOA governance • The new enterprise web is about APIs • Driven by cloud and mobility • Solutions like Layer 7’s API Portal integrate all the familiar tools to effectively manage your APIs
    64. 64. For further information: K. Scott Morrison Chief Technology Officer & Chief Architect Layer 7 Technologies 1100 Melville St, Suite 405 Vancouver, B.C. V6E 4A6 Canada (800) 681-9377 smorrison@layer7tech.com http://www.layer7tech.comNovember 2011
    65. 65. Picture Credits Big Ben by meanone97 – stock.exchg Whiz Kids by Ron S. Gejman – ron.gejman.com World Puzzle by juancho17 – stock.exchg Rack Server by Pazado – stock.exchg Analogue Erosion Control Device, Fall & wheat by Kevin Hudkins - Flickr

    ×