all-ibm-cloud-architecture-icons-October2019.pptx

© Copyright IBM Corporation 2016
IBM Cloud Architecture Center
Diagram Template
Using the Diagram Template
This template is for use in creating a visual representation of your architecture.
Create your diagram by copying the required icons into one of the frameworks provided on page 35 of this
template. Use standard arrows to show the runtime flow.
You may add numbers (which are provided on page 32) to the diagram to correspond to the runtime flow
steps in your architecture.
Steps for graying out icons that are not being used in the runtime flow can be found on page: 33
This template may be updated periodically with new icons. Get the latest version at
developer.ibm.com/architecture/DiagramTemplate.pptx.

Table of Contents
May 2019
3………Blockchain Icons
5………User Icons
7………Application Icons
10………Infrastructure Icons
13……... Data Store Icons
15……... Management Icons
17……... DevOps Icons
19……... Security Icons
20……... Social Icons
21……... Analytics Icons
22……... Service Management Icons
24…....... Digital Business Automation
27……… Watson Icons
28……… Virtual Private Cloud Groups & Icons
32……… Runtime Numbers
33……… Gray out instructions
34……… IBM Cloud Service Icons
35……... Cloud Background Templates
43……… Diagram Design Standards

Block Chain Icons
Mechanism enabling
network members to
approve proposed
transactions, which in turn
make changes to the
ledger.
Manages identity,
certificates, and aspects of
permissioned access. The
service is part of the
blockchain cloud service.
Contains the current world
state of the ledger and a
blockchain of transaction
invocations. The service is
part of the blockchain
cloud service.
INDENTITY &
ACCESS
MANAGEMENT
WALLET
EVENT
LISTNER
MESSAGE
BUS
MEMBERSHIP
CONSENSUS
LEDGER
EVENTS COMMUNICATION
DATA STORE
Publish/subscribe systems
that send and receive
messages, and that are
reliable, scalable, and
operate in near real time.
Service that listens for and
reacts to events emanating
from a blockchain system
or application.
A cloud-based security
service that provides
lifecycle management for
encryption keys that are
used in IBM Cloud
services or customer-built
applications.
Identifies (authenticates)
and authorizes users,
providing user-specific
access to resources,
services, and applications.
NODE
Network of blockchain
nodes that collectively
maintain the distributed
ledger system.
An IBM Cloud service
captures alerts.
A representation of a
database or data source that
is hosted on premises.
A service within the
blockchain application that
receives messages from
the message bus and
invokes smart contracts in
the blockchain network.
TRANSACTION
MANAGER

Block Chain Icons (Continued)
Encapsulates business
transactions in code.
Transaction invocations
result in gets and sets of
ledger state. The smart
contract, also known as
chain code, is developed
by the application owner
and deployed in the
network.
Provides the ability to create,
change, and monitor
blockchain components. The
services are part of the
blockchain cloud service.
BLOCKCHAIN
Admin & Ops Services
SMART
CONTRACT
DATA STORE
OFF CHAIN
Any data store outside the
blockchain system that can
hold data related to the
blockchain system in some
way. An example is a
database that holds
additional data related to
transactions held on the
ledger.

Users Icons
USER
A role that describes an
enterprise user or third
party user.
A user or user agent.
A customer who uses various
channels to access the commerce
solutions on the cloud provider
platform or enterprise network.
A user who has access to the
commerce solutions on the
enterprise network. If the business
user is a merchant, supplier, or
other third-party to the
organization, their access might
require VPN or some other
secure, direct connection.
Business user operates in a
business network interacting
with the blockchain using an
application.
Person or automated
system that makes use of
one or more user
applications.
enterprise user or third-
party user.
User connected to a web
application or using a mobile
application.
Users of the cloud-hosted
applications.
A role that describes a
service provider.
END
USER
e-COMMERCE
USER
BUSINESS
USER
BUSINESS
USER
CLOUD
USER
MOBILE
USER
APPLICATION
USER
USER
DEVICE
Contains sensors and/or
actuators and firmware plus
a network connection; may
have a user interface.
PHYSICAL
ENTITY
Real-world object that is of
interest and subject to
sensor measurements
and/or actuator behavior.
IoT
USER

Users Icons (continued)
enterprise user or third
party user.
The browser runs web
applications
SERVICE
PROVIDER
A role that describes a
service provider.
BROWSER
OFFLINE
CAPABILITIES
PEER
CLOUD
INTEGRATED DIGITAL
EXPERIENCES
Third-party cloud system
that provides services to
bring data and capabilities
to the IoT platform.
Aggregate applications
and content into a single
unified omnichannel
experience.
BUSINESS
ARCHITECT
Subject matter expert and
domain expert who
understands the data in
depth and helps define
the requirements and
specifications of the
overall solution.
CLOUD
DEVELOPER
Cloud application
developers, platform
developers, and
application publishers.

Application Icons
APPLICATION
Domain specific or device
specific application.
ACTIONABLE
INSIGHT
Data collected, processed and
stored in data repositories used by
business applications to drive
insights and actions.
VISUALIZATION
Lets users explore and interact
with data from the data
repositories and actionable insight
or enterprise applications.
APPLICATION
LOGIC
Workflow logic. Coordinates
domain and infrastructure
components according to
the requirements of the
application.
Applications on cloud
platform.
WORKLOAD
Actual work that your instance of
a set of instances are going to
perform.
MANAGED
SOLUTION
PAYMENT
MERCHANDISING
SUPPLY CHAIN
& LOGISTICS
MANAGEMENT
DIGITAL
EXPERIENCE
e-COMMERCE
APPLICATIONS
Acts as mediator between
the e-commerce
transaction and the
payment processing
service.
Capability to manage end-
to-end supply chain and
logistics with complete
business process
automation and insights.
Involves marketing the
right merchandise or
service at the right place,
at the right time, in the
right quantities, and at the
right price with the goal of
optimizing margins, gross
revenue, or shelf life.
Manages the presentation of
product catalog, shopping
cart, order placement
functionality.
Provides a scalable full-
feature content
management system for
multisite and multidevice
e-commerce solutions. IoT
PLATFORM
IoT Platform is a managed,
cloud-hosted service
designed to make it simple
to derive value from your
IoT devices.

Application Icons (continued)
CUSTOMER
CARE
MARKETING
Manages marketing
campaigns, offers, and
targeting rules.
Supports customer care
across the entire transaction
lifecycle and all commerce
channels, where customer
care personnel can see the
behaviors of a customer in
more than one channel.
Includes CRM and loyalty
management.
Supports inventory, order
processing, and order
visibility.
Enables efficient
management of warehouse
operations. Includes
warehouse inventory
management, inventory
optimization, and inventory.
Program or tool whose
source code is openly
published in order to use
free of charge.
OPEN SOURCE
Able to block calls to
services that are not
working and to provide
alternative actions.
CONTAINERIZED
APPS
Containerized JEE
application workload running
in an elastic and resilient
Kubernetes cluster.
INGESTION
APPLICATION
Ingests data using
discovery service APIs.
DISCOVERY
APPLICATIONS
Responsible for receiving
the call request from the
user, invoking calls further
downstream to access
discovery search results,
and invoking execution of
analytical model.
MICROSERVICES
Running instance of your
code inside of a container.
CIRCUIT
BREAKER
Provides the environment to
hide the underlying
container and server layer
and to allow developers to
deploy code as event
handlers to run in a
managed fashion.
SERVERLESS
COMPUTING
DISTRIBUTED ORDER
MANAGEMENT
WAREHOUSE
MANAGEMENT
The output for application
development is a container
that can be built once and
deployed on multiple
platform environments.
APPLICATION
CONTAINER
IMAGE

Customized software-as-a-
service applications,
typically mobile and web
applications.
Tools that automate
repetitive but necessary
tasks in a formalized
testing process, or that
perform additional testing.
Tool that permits a database
to access secure services
by passing the credentials.
Server that is specialized
to run certain applications;
also known as runtime.
SaaS
APPLICATIONS
AUTOMATION
TOOLS
SERVICE
BROKER
APP
SERVER
Application Icons (continued)
A standard definition for
the composition of a
container image increases
the developer's efficiency
and ensures that
operations are managed
consistently.
Project templates for a
variety of frameworks and
runtimes accelerate the
time to create new
microservice applications.
ACCELERATORS
OPINIONATED
CONTAINER
TEMPLATES

SERVICE DISCOVERY
INTERSERVICE
COMMUNICATION
VPN
MONITORING &
LOGGING
MOBILE PROVIDER
NETWORK
LOAD BALANCER
BACKEND
TRANSFORMATION &
CONNECTIVITY
EDGE SERVICES
Infrastructure Icons
Services needed to allow
data to flow safely from
the Internet.
Connect securely between micro-
services running in the cloud and
data/applications running on-
premises or in other clouds.
Provides foundational capabilities
(e.g. mobile app logic, API
implementation, operational
analytics, push notifications,
location services, application
security, data synch).
Manage load and availability
across multiple microservices
instances.
Monitoring and logging
across all microservices.
Network constructed by
public wires to connect to a
private network, such as a
company’s internal network.
Synchronous and
asynchronous (message
bus) communication among
microservices.
Enables lookup of available
microservices.
Wireless service provider,
carrier or cellular company.
Provider of wireless
communications.
VIRTUAL
INFRASTRUCTURE
Reflects the physical
infrastructure with three different
components: compute
virtualization, storage
virtualization, and network
virtualization.
PHYSICAL
INFRASTRUCTURE
Includes compute, storage, and
network. The compute and
storage areas are combined in
the cluster architecture.
INFRASTRUCTURE
MANAGEMENT
Manages compute, network, and
storage virtual resources
provided by the lower layer. It
also provides consolidation
services to the upper layers for
operational services.

Infrastructure Icons (continued)
Provides monitoring, patching,
log consolidation, log analysis,
disaster recovery, and backup
services for the cloud
management platform.
PEER
SERVICES
IBM or third-party cloud
system that provides
services to bring data and
capabilities to the social
platform.
An IBM Cloud service
captures alerts.
Provides network services.
CLOUD
MESSAGING
NETWORK
CLOUD & PARTNER
SERVICES
OPERATIONAL
SERVICES
IBM Cloud infrastructure
provides bare metal,
physical networking, and
NFS storage. Additional
options include the
automation service that
builds the design.
BARE METAL
SERVERS
Infrastructure resources
used to run workloads.
COMPUTE
NODE
EVENT
FEED
Provides both the current
state and the historical
progression of the
associated metrics.
DASHBOARD
MONITORING
Cloud-based computing
environment offerings that
provide users with a cloud
environment in which they
can develop, manage, and
deploy applications.
SERVICES
Any on-premises
technologies, such as
mainframes, databases,
LDAP servers.
EXISTING
ENTERPRISE
SYSTEMS
Asynchronous communication
among cloud applications and
components.
Cloud and business partner
services that require highly
available and secure access to
your VMware workloads.
Monitoring and logging tools are
connected to managed solutions
or enterprise applications to
detect issues early. Alerts are
sent to the event correlation tool
and unified dashboard. Incident
owners match the client reports
to incidents.

Infrastructure Icons (continued)
Catalog that includes
the Helm charts.
CONTAINER
CATALOG
Platform and framework that
allows for internal
communication and network
policies for monitoring, logging,
and deploying containers.
.
MICROSERVICES
MESH
MESSAGE
BUS
EVENT
LISTNER
Service that listens for and reacts
to events emanating from a
blockchain system or application.
Publish/subscribe systems that
send and receive messages, and
that are reliable, scalable, and
operate in near real time.
VISUALIZATION
RUNTIME
APPLICATION
RUNTIME
Supports application logic,
which is part of an IoT solution
built on the IoT platform in the
data lake, external services
and workflow as needed
.
Runtime for the IoT Solution
user interface, which lets users
explore and interact with data
from the data repositories and
actionable insight applications
or enterprise applications.
.
Scalable, high-throughput event
hub. It allows you to wire
microservices together using
open protocols and connect
stream data to analytics to
realize powerful insights.
EVENT
STREAMING
Provides predictable, reliable,
and secure delivery regardless
of file size, transfer distance
and network conditions across
the WAN. .
HIGH SPEED
DATA TRANSFER

FILE
REPOSITORY
CACHES
DATA SOURCES
ENTERPRISE DATA
DEVICE IDENTITY
SERVICE
DEVICE
REGISTRY
USER DIRECTORY
DATA STORE
Data Store Icons
Repository for storing and
managing collections of data.
Provides storage and access
to user info for authentication,
authorization or profile data.
Stores info about devices that the
IoT system may read, communicate
with, control, provision, or manage.
Identifies the device services after
the user registers a device.
Systems of record and
metadata about the data for
enterprise applications.
Includes different information
sources that may contain data of
interest.
Stores recently used information
so that it can be quickly
accessed at a later time.
Provides devices or
applications that store info,
data, and more in the form
of files.
CHANNEL
Channel retail solutions aim
to provide a seamless,
personalized brand
experience whether the
customer shops on the web,
over the phone, using a
mobile device, or a
connected IoT device.
DATA
SERVICE
Provides the persistence
layers to power the cloud
app to store, collaborate,
visualize, share, and gain
insights from data.
INTERNAL
CHANNEL
Provides an interactive
customer experience
whether the customer shops
in the store, over the
telephone with a customer
service representative, or
using a web-based call
center, in order to improve
revenues and customer
service in all channels.

Data Store Icons (continued)
Platform-provided services
from the service and
software catalog.
PLATFORM
SERVICES
PUBLIC DATA
SOURCES
Structured and unstructured
data sources from the public
Internet domain.
COLLECTION
A grouping of content within
the environment. You must
create at least one collection
to be able to upload your
content.
CONTENT
STORAGE
Includes object and file based
storage delivered as a service
to store content that is moved
from the enterprise network to
cloud. Provides capability to
encrypt the content that is
moved to the cloud.
The set of artifacts used to
train the conversation API.
GROUND TRUTH
ANSWER
STORAGE
Stores answers to be provided
to the user once the intent and
entities have been
understood. It also can
include references or links to
multimedia content.
PUBLIC
APIs
Exposes information that is in
other public clouds that can be
accessed via API.
EXTERNAL DATA
SOURCES
Information that is residing in
public domain, including social,
news, documentation, and
more.
CURATED DATA
SORUCES
Includes pre-built data feeds
from news and social media.
Mobile data synchronization and
ability to have a persistent data
storage.
DATA
SYNC
MODEL
REPOSITORY
Mobile data synchronization and
ability to have a persistent data
storage.

MOBILE DEVICE
AGENT
MONITORING &
LOGGING
INFORMATION
GOVERNANCE
API
MANAGEMENT
PROCESS
MANAGEMENT
MOBILE BACKEND
APPLICATION
Management Icons
Advertises available services
endpoints (discovery and
management).
Enforces appropriate in-service
lifespan for devices for non-
disruptive and secure changeover
as new systems are introduced.
Monitoring and logging across all
microservices.
Collects statistics about user
experience quality to enable the
operator to act on service
degradation.
Manages device endpoint.
Manages the process workflow.
Provides foundational
capabilities (e.g. mobile app
logic, API implementation,
operational analytics, push
notification, location services,
app security, data synch).
Provides the primary interface for
users to consume cloud services
and for the orchestration engines
to process requests.
CLOUD MANAGEMENT
SERVICES
BUSINESS
SERVICES
Provides the service provider
with analytics on IT financials,
business management, and
benchmarking aspects of the
cloud.
DEVICE
MANAGEMENT
PROVIDER CLOUD
PORTAL SERVICE
The service for the IBM
Cloud console that people
use to connect to blockchain
service running on public
IBM Cloud using a browser.
Provides the ability to
externalize configuration
data from your applications.
CONFIGURATION
MANAGEMENT
Management of container
environments as a service.
CONTAINER
CLUSTER
MANAGEMENT

Management Icons (continued)
The administration of the
information technology systems in
an enterprise data center.
SYSTEMS
MANAGEMENT
Launch features to mobile
applications at speed and
measure the impact by
controlling the targeted
audience.
APP
CONFIG
Sends personalized and
segmented real-time
notifications to mobile and
web applications.
PUSH
NOTIFICATION
Develop simple and safe
mobile cloud applications with
a powerful mobile back-end
infrastructure, powerful
application management, and
insights into application usage.
APP
LIFECYCLE
Use the Alert Notification
Service to ensure that the right
people on the team or
systems are notified when
issues occur.
ALERT
NOTIFICATION
The cloud container platform
collects and reports on fine-
grained usage measurements
of running applications. The
metering metrics can be used
for chargebacks, detailed
audits, and analysis.
METERING
Provides unified operations
management of the platform
and its components.
Facilitates the organization
and virtualization of software
containers, automates the
deployment, management,
scaling, networking, and
availability of container-based
applications.
COMMON
MANAGEMENT
SERVICES
MANAGED
CONTAINER
PLATFORM

PROVISION
CONTINUOUS
RELEASE
CONTINUOUS BUSINESS
PLANNING
CONTINUOUS
FEEDBACK
CONTINUOUS
TESTING
CONFIGURATION
MANAGEMENT
CONTINUOUS
DEPLOYMENT
COLLABORATIVE
DEVELOPMENT
DEVOPS
DevOps Icons (continued)
Software development
method to bring
Development and
Operations closer.
Team members and
stakeholders continually
communicate plans, tasks,
issues, and feedback.
Automated deployment of apps,
middleware, test data, and utilities
to test and production
environments on demand.
Test cases are executed
automatically and continuously
after deployments have
completed in production-like
circumstances.
App performance metrics
and user experience data is
continuously collected and
used to make corrections
and plan changes.
Continually reviewing
planned work and updating
priorities.
Apps are released into
production on an as-needed
basis or coordinated in a
scheduled, planned release.
Systems are provisioned using
software defined environment
templates and automated, self-
service utilities.
(Icon utilized in Service
Management to represent
DEVOPS)
Detailed recording and updating of
information that describes an
enterprise’s hardware and
software.
DEVOPS
Application migration
analysis and automation
tool.
TRANSFORMATION
ADVISOR
Provides automating for
deployment of multiple
containers.
CONTAINER
ORCHESTRATION

DevOps Icons (continued)
Continuously building
Docker images is required
for development.
Tools that automatically pull
in dependencies during a
build process.
DEPENDENCY
MANAGEMENT
A component of IBM Cloud
Private that enables existing
WebSphere Application
Server applications to run in
a private cloud as a virtual
machine.
WAS VM
QUICKSTARTER
The container platform
automates the
deployment of new
application containers to
upgrade the deployment
while maintaining
application availability.
Kubernetes, as the
container platform,
orchestrates the
deployment of pods
containing the application
container image.
Kubernetes manages the
execution of an
application deployment
and uses Helm charts and
Operators to automate
the deployment of the
application containers as
needed. .
DEPLOYMENT
AUTOMATION
DEPLOYMENT
ORCHESTRATION
UPGRADE &
ROLLBACK
CONTINUOUS
BUILD

FIREWALL
GATEWAY
SECURITY
Security Icons
Enable identity and access
management and data and app
protection. Provides actionable
security intelligence across
cloud and enterprise
environments.
Network point that acts as
an entrance to another
network.
Network that is designed to block
unauthorized access while permitting
outward communication.
REVERSE
PROXY
Brokers all access to API
management platform
components with a common
SSO portal to orchestrate the
authentication process. Acts as
a proxy to all interactions
between the users and the API
platform components.
Infrastructure security protects
against network-level threats and
attacks with intrusion prevention
and detection, including those that
tunnel through encrypted web
transactions and web applications
that are deployed within the
system.
INFRASTRUCTURE
SECURITY
Continues to monitor assets and
information for advanced threat.
SECURITY MONITORING
& INTELLIGENCE
Manages user id lifecycle,
authentication, and authorization
to the cloud and to the
applications hosted on it.
INDENTITY &
ACCESS MANAGEMENT
Encrypts and decrypts sensitive
data.
IBM FILE
ENCRYPTION
SERVICE
A cloud based security service to
provide key life cycle managemen
(key creation, usage, deletion) for
encryption keys used in cloud
services or customer-built
applications, with root of trust"
backed by a hardware security
module (HSM)."
KEY
MANAGEMENT
SERVICE
Operators automate the
packaging, installation, and
lifecycle of the container image
when it is deployed in a
Kubernetes cluster.
OPERATORS

Social Icons
Social networking capabilities to
find and discover connections
between content and people. Ability
to maintain and connect social
profiles, form networks, share
knowledge and insights; including
status updates.
Electronic mail (email) solution
that enables users to access
their email and calendaring with
a browser, rich client, or mobile
application.
Provides tools to engage I
n real-time with individuals,
teams, or large groups.
Includes web conferencing,
audio/video, and various
instant messaging services.
Spaces used for community
building, team collaboration, and
collecting of knowledge
repositories.
COMMUNITIES
NETWORKING
MESSAGING
LIVE
COLLABORATION
FILE
SYNC
Provides the capability to store,
share, and distribute documents
which can be owned by individuals
or managed as collections. Includes
ability to synch to various devices
and perform live group editing.

DATA
INTEGRATION
STREAMING
COMPUTING
Analytics Icons
Guides and automates
data analysis, discovery,
and visualization.
Includes real-time capture of
video streams.
Copies and correlates information
from disparate sources.
BUSINESS
PERFORMANCE
Enables optimization of the
shopper's journey and
improves the sales and
revenue for the business.
Enables describing and
understanding the alerts,
metrics, and key
performance indicators
(KPIs) that an organization
uses to monitor day-to-day
commerce activity.
DATA
CRAWLER
Crawls data sources and
ingests into discovery
service collection.
KNOWLEDGE
STUDIO
Domain-specific text and
content analytics using
machine learning and
rules-based annotators.
Gain insight into how your
mobile applications are
performing. Monitor trends
and anomalies.
DEVICE
ANALYTICS
SaaS or on-premises
applications that are used
to derive information from
the data upon which an
organization can take an
action. Cognitive
technology can be used
here.
ANALYTICS
ACTIONABLE
INSIGHTS
COMMERCE
ANALYTICS
APPLICATION
SCANNER
ANNALYSIS &
RECOMENDATIONS
AUTOMATED
MIGRATION
Application migration analysis
and automation tool that scans
existing applications and
middleware, provides analysis
and recommendations, and
automates migration and
deployment to cloud platforms.
analysis and automation tool
that scans existing
applications and
middleware, provides
analysis and
recommendations, and
deployment to cloud
platforms.
analysis and automation
tool that scans existing
applications and
middleware, provides
analysis and
recommendations, and
deployment to cloud
platforms.

Service Management Icons
The client or request
fulfillment system reports an
incident, requests a change,
or seeks the status of an
application.
OPERATIONS
INCIDENT
MANAGEMENT
REQUEST
FULFILLMENT
DASHBOARD
COLLABORATION
NOTIFICATION
LOG
MONITORING
RUNBOOK
SLACK
Operations handles the
integration, usage, and
delivery of key services to
business applications and
the enterprise.
(Restores normal service
operation as quickly as
possible and minimizes the
adverse effect on business
operations.
Knowing the current state of
the services that are offered
to users is a key
requirement
On the cloud, you can
enhance collaboration by
setting up tools to participate
in the conversation.
A notification system alerts
on-call personnel based on
notification rules for the
triggered incidents.
Script-based operational
tasks are defined, built,
orchestrated, automated,
and managed as runbooks.
With Slack, teams can
integrate development and
operations tools to post
updates and alerts as new
builds are completed and
deployed and as
performance is monitored.
Log files are an important
way to understand the
status of applications and
services.
ALERT
NOTIFICATION
EVENT
CORRELATION
Notifies the right people on
the team or systems when
issues occur.
An event-correlation tool can
correlate events from
monitoring sources.
Ensures that standardized
methods and procedures
are used for efficient
handling of all changes.
CHANGE
MANAGEMENT

MONITORING
CONFIGURATION
MANAGEMENT
Service Management Icons (continued)
Monitoring and logging tools
are connected to managed
solutions or enterprise
applications to detect issues
early.
If a configuration change is
needed, the incident owner
or client opens a change
ticket in the change
management system, which
is eventually adopted in the
configuration system.
API
Use APIs to collect status,
key performance metrics,
event information,
configuration information,
resource monitoring data,
and more.
PROBLEM
MANAGEMENT
After the service is restored,
problem management
investigates the root cause
of the problem by using
techniques such as 5
Whys".
TICKETING &
TRENDING
Records incidents that are
received, both resolved and
unresolved, in the form of
tickets
Identifies the root cause of
the problem.
5 WHY
ANALYSIS
Records analyzed known
issues for history.
KNOWN ERROR
DATABASE
Tools used to diagnose the
problem.
SERVICE
MANAGEMENT
TOOLING
Incorporates change
requests into the change
management pipeline.
BACKLOG/
CHANGE REQUEST
Prioritizes list of problems
for resolution.
PRIORITIZATION

Digital Business Automation Icons
Supports a governed
change process for business
workflows, including
authoring, testing, and
deployment activities.
The process of sharing
content to an external entity
for review, comments, and
updates. The entity can also
upload content.
Any content that exists in
the form of paper or digital
documents.
Enables users to access,
manage, and use enterprise
content from nearly any
device, at any time, and
from anywhere across the
enterprise.
Uses business decisions to
support routing or
calculations within a
business process.
Capability to capture
documents and information
from various input sources.
Provides the application
interfaces, APIs, and web
services to access the
capture functional
components.
User process that
determines whether
captured data complies with
the data integrity rules
defined by the capture
process or application.
The process or step in the
capture workflow in which
specified fields from the
document are converted into
character-based data.
Methods for page
identification, which is also
known as document
classification.
PROCESS
AUTHORING
EXTERNAL
COLLABORATION
PAPER & DIGITAL
CONTENT
WORKFLOW
USER
INTERFACE
MULTICHANNEL
CAPTURE
CAPTURE
SERVICES
VALIDATION
DATA
EXTRACTION
DOCUMENT
RECOGNITION
Supports the design,
development, testing, and
administration of the capture
application in which
documents are classified
and data extraction rules are
applied.
DESIGN
STUDIO
A background processing
engine to monitor the job
queue and start the
designated background
tasks automatically, where
batches are pending.
CAPTURE
RULES

Digital Business Automation Icons (continued)
Provides the capability to
define and run test suites
that are collections of test
scenarios to validate the
implementation of decision
operations.
Provides the capability to
evaluate a decision
operation against user-
defined metrics on a number
of scenario in order to
compute key performance
indicators KPIs)
Supports a governed
change process for business
decisions, including
authoring, testing, and
deployment activities.
Supports the design and
instrumentation of the object
model where the business
rules are applied, the
definition of the decision
operation, and the
orchestration of the rule
execution.
Centralized repository
where business rule artifacts
are organized into
manageable, versioned
decision service projects
and persisted in a database.
Automates decisions by
capturing and executing
business rules or complex
event processing.
Enables you to model,
automate, change, monitor,
and optimize core business
processes to improve
consistency across tasks
and processes.
Automates highly repetitive
tasks normally performed by
humans with robotic
software agents, allowing
employees to focus on
higher value knowledge
work.
The digital business
automation (DBA) products
all provide a model-driven
approach with tools that
allow both developers and
users to interact on artifacts
managed in repositories.
Extracts data from
unstructured documents
such as scanned forms,
faxes, or images, usually by
optical character
recognition.
Provides highly secure and
compliant management of
most types of content.
Automates repetitive tasks
such as manual entries in
user interfaces by using
programmable robots, or
robotic process automation
DECISION
TESTING
DECISION
SIMULATION
DECISION MODELING
& MANAGEMENT
DECISION
REPOSITORY
DECISION
DESIGN
DECISION
SERVICE
WORKFLOW
APPLICATION
ROBOT
GOVERNANCE
DATA
CAPTURE
CONTENT
MANAGEMENT
TASK
AUTOMATION

Digital Business Automation Icons (continued)
Each digital business
automation (DBA) product
provides artifacts that the
business can visualize or
modify.
Each digital business
automation (DBA) product
offers the ability to connect
to enterprise directories to
ensure proper authentication
of users across the whole
lifecycle
Collects events and data
from the execution of your
business operations in order
to build management
dashboards and key
performance indicators
(KPIs)
Executes the logic of the
agents, identifying situations
defined as complex event
occurrence combinations
and reacting to these
situations by emitting new
events.
Supports the design of the
entity and the event models,
as well as the agents
associated with these
entities and that process
these events.
BUSINESS
MODELING
ENTERPRISE USER
MANAGEMENT
OPERATIONAL
INTELLIGENCE
SITUATIONAL
DECISION
DESIGN
SITUATIONAL
PROCESSING
SERVICE
Supports the design of robot
templates, in particular by
allowing the capture of
keystrokes and mouse
clicks you want the robot to
replicate.
Provide version management
for robot templates and
scheduling capability for robot
runner.
Executes the sequence of
actions prescribed by a
robot template.
ROBOT
DESIGNER
ROBOT
CONTROLLER
ROBOT
RUNNER

Watson Icons
DISCOVERY
SERVICES
Ingests, parses, indexes,
and annotates content
using cognitive functions.
TONE ANALYZER
Leverages cognitive
linguistic analysis to
identify a variety of tones
at both the sentence and
document level.
TEXT TO
SPEECH
The Text to Speech
service processes text
and natural language to
generate synthesized
audio
WATSON
ASSISTANT
Add a natural language
interface to your
application to automate
interactions with your
end users
SPEECH TO TEXT
The Speech to Text
service converts the
human voice into the
written word
EXTEND
Components that add
value to the cognitive
applications.
Applies cognitive
computing techniques to
return the best matching
classes for a sentence or
phrase.
NATURAL LANGUAGE
CLASSIFIER
Unlock hidden value in
data to find answers,
monitor trends and
surface patterns with the
world’s most advanced
cloud-native insight
engine.
DISCOVERY
SERVICES

VPC Groups
IBM Cloud
VPC
Cloud Universe
Region Zone
Group representing
components in IBM
Cloud.
Group representing
virtual network tied to
customer account that
provides security and
scalability with fine-
grain control over
infrastructure and
segmenting network
traffic.
Group representing
geographical locations
within IBM Cloud.
Group representing
one of the multiple
datacenters with
independent fault
domains within a
region.
VPC
Top-level group with multiple sections
showing architecture across networks
that can include public network, cloud
network, enterprise network, etc.
IBM Cloud
Public Enterprise
IBM Cloud
Region Zone

VPC Groups (continued)
Security Group
Group representing a
virtual firewall that
controls traffic for one
or more instances and
can span subnets and
zones with the VPC.
Subnet
Group representing an
IP address range
bound to a single zone.
ACL is associated with
one or more subnets
and manages inbound
and outbound traffic
for the subnet.
Security Group
Classic
Infrastructure
Classic
Infrastructure
Group representing
classic infrastructure
(non-VPC).
Other Group
Other Group
Miscellaneous group
(services, networks,
etc).
Subnet
ACL

VPC Icons
Enables instances to
communicate outbound to
the public internet.
Distribute network traffic
across instances to improve
performance and HA within
same region as the VPC.
Site-to-site private tunnel
connection between VPC
and on-premise private
network or another VPC.
Virtual server instance.
Public IP addresses that
are reachable to and from
the public internet.
Private access from on-premise
to cloud.
Persistent iSCSI based storage.
PUBLIC
GATEWAY
LOAD
BALANCER
FLOATING IP
BLOCK
STORAGE
INSTANCE
Gateway for site-to-site
private tunnel connections.
VPN
GATEWAY
VPN
CONNECTION
Cloud storage for unstructured
data.
Provides DNS, GLB, DDoS
protection, WAF, TLS, and
Caching.
CLOUD INTERNET
SERVICES
OBJECT
STORAGE
DIRECT
LINK
Network bridge.
Network router.
ROUTER BRIDGE

VPC Icons (continued)
Designation of a ruleset for
ACLs and Security Groups.
RULES
OS image used to provision
instances.
SSH key used with OS image.
VPN
POLICY
Policy for site-to-site private
tunnel connections.
LOAD
BALANCER
POOL
LOAD
BALANCER
LISTENER
Load balancer back-end pool
attached to back-end application
server instances.
Load balancer front-end
listener (application ports)
mapped to respective
back-end pools.
KEY
SERVICE
IMAGE
SERVICE
IBM CLOUD
TAG
VPC TAG REGION
TAG
ZONE TAG SUBNET
TAG
CLASSIC
INFRASTRUCTURE
TAG
ENTERPRISE
TAG
CLOUD
SERVICES
Cloud-based service
offerings/endpoints.
PUBLIC
TAG
INTERNET ENTERPRISE
DATACENTER

Runtime numbers
1 2 3 4 5
6 7 8 9 10
11 12 13 14 15
16 17 18 19 20

Gray Icons and Arrows for Background
1. Select icon and ungroup.
2. Select the icon background and change the fill color to R221, G221, B221.
This is a standard color. See the picture.
3. Change the text to the same color.
4. Regroup the icon.
5. Change background arrows to the same color.
OFFLINE
CAPABILITIES

Selection of IBM Cloud Service Icons
For full set of IBM Cloud Services Icons please visit:
https://l2fprod.github.io/myarchitecture/

Architecture Background Example
Template
• The following backgrounds are for creating architectural backgrounds.
• The cross boundary box on the bottom is for components like Security, Governance and DevOps that
support multiple tiers.
October 22nd 2019
PAGE 36
- Microservices
- Data & Analytics
- DevOps
- Mobile
- e-Commerce
PAGE 37 - Private Cloud
PAGE 38
- Cognitive
- APIs
- Blockchain
PAGE 39 - Mobile
PAGE 40 - Resilience
PAGE 41 - IoT
PAGE 42 - Hybrid

PUBLIC NETWORK PROVIDER CLOUD ENTERPRISE NETWORK
EDGE SERVICES TRANSFORMATION &
CONNECTIVITY

PUBLIC NETWORK IBM CLOUD PRIVATE ENTERPRISE NETWORK
EDGE SERVICES
TRANSFORMATION &
CONNECTIVITY

PUBLIC NETWORK CLOUD NETWORK ENTERPRISE NETWORK
TRANSFORMATION &
CONNECTIVITY
EDGE
SERVICES

TRANSFORMATION &
CONNECTIVITY
MOBILE DEVICE PUBLIC NETWORK ENTERPRISE NETWORK
PROVIDER CLOUD
EDGE
SERVICES

PUBLIC NETWORK ENTERPRISE or CLOUD
EDGE
SERVICES

USER LAYER PROXIMITY NETWORK ENTERPRISE NETWORK
EDGE
SERVICES
TRANSFORMATION &
CONNECTIVITY
PUBLIC NETWORK
IoT
GATEWAY
PROVIDER CLOUD

PUBLIC NETWORK CLOUD PROVIDER NETWORK ENTERPRISE NETWORK
EDGE SERVICES
TRANSFORMATION &
CONNECTIVITY

Diagram Design Standards
July 15th 2017
Group Borders 1 pt width
Connecting Lines 2 pt width
Object Text Calibri 8 pt
Blue 4376BB 67,120,187
Red FF0000 255,0,0
Green 00882B 0,136,43
Yellow EDC11C 237,193,28
COLORS
SIZES

all-ibm-cloud-architecture-icons-October2019.pptx

More Related Content

Similar to all-ibm-cloud-architecture-icons-October2019.pptx

Recently uploaded

all-ibm-cloud-architecture-icons-October2019.pptx