Bob Schumm | An insider's thoughts on SOA

 

Connecting state and local government leaders

Just what the heck is a service-oriented architecture anyway? One of the biggest IT buzzwords today, SOA nonetheless suffers from a lack of formal definition.

Just what the heck is a service-oriented architecture anyway? One of the biggest IT buzzwords today, SOA nonetheless suffers from a lack of formal definition. Advocates tend to extoll SOA's benefits without actually explaining what it is, or how an agency could go about procuring one. To get some clarity, we consulted with Bob Schumm, director of Federal Business Development for BEA Systems Inc. of San Jose, Calif.Perhaps best known for its WebLogic application server software, BEA has been a strong champion for organizational use of SOA. Earlier this summer, the company released its AquaLogic suite of software products, which is specifically designed to help large organizations create an SOA framework. The suite includes an enterprise service bus, a data services platform, a services registry and an enterprise security toolkit.As director of federal business development, Schumm shepherds BEA's products through government certifications such as Section 508 and Common Criteria Validation.He holds a bachelor's degree in economics from Fairfield University, Conn. GCN associate writer Joab Jackson spoke to Schumm by phone.Schumm: An SOA is an IT strategy that aligns IT with the business processes. It allows you to reuse existing components to improve productivity.Schumm: Web services are just one way to implement an SOA. SOA is an architecture, not a specific technology. SOA usually uses [Extensible Markup Language] and the Internet to tie Web services together, but you could do it with Java 2 Enterprise Edition components, such as remote Enterprise Java Beans.Schumm: The Office of Management and Budget requires all agencies to develop their business cases to align to the FEA language and taxonomy. OMB reviews the submittal against the reference model, looking for duplication in business functionality, technology investments and services redundancy.So in one sense, FEA is a diagnostic tool that allows OMB to discover applications, data repositories or other components that would be good candidates for reuse.The FEA gives you a road map [to] implement an SOA. If you were to look at the Data Reference Model, you could quickly identify redundancy in data repositories. You could look at the technical reference model to find compatibilities between standards and technologies used in [separate] areas. So you could later use an SOA model to consolidate the data sources and the systems they are connected to.Schumm: I can answer using examples from BEA. With our development environment, WebLogic Workshop, you simply would right mouse-click on the object in development, and ask it to generate a service, and [Workshop] would create all the artifacts around the Web service. Once you've done that, you need to record it to whatever Universal Description Discovery and Integration registry you're using.Schumm: An SOA is only secure as the least-secured area. So if you don't secure all the services you have in your registry, you would create a hole. Security is on multiple levels, so you could do things such as authentication and authorization on a Secure Sockets Level, you could do it at the message level, with Web Services Security [communication protocols]. And then there is policy-based access control to applications and services.Schumm: We've met with [OMB chief architect] Richard Burk and talked a bit about this. It is through the Exhibit 300 submission [in an agency's business case] and review process. You want to make a service available, in your Exhibit 300 form request, you would point out that you would need the additional resources. OMB would do the cost-benefit analysis.Schumm: Grants.gov is an SOA implementation. What they have done fundamentally is create a data schema and repository, and built some core services needed in the grants processing space. There are some standard pieces of business logic involved in grants processing. So by providing the services, other agencies that are developing grants services can reuse those. They are only responsible for the unique part of their [services].Schumm: AquaLogic is a new family of products that enables customers to deploy, configure and operate services through the SOA lifecycle.To give you some context, AquaLogic is a [part of] a new category of software, called service infrastructure. It is one of the fastest-growing categories of enterprise software. It enables free flow of process, information and services across and be- tween heterogeneous business environments. An IDC market study says it will grow to $9 billion by 2009.Schumm: It is a piece of software that provides a place for programs to run. It handles the mundane tasks of communications between processes, job scheduling, getting resources. It takes away the redundant tasks that you [normally] need to develop a Java program, so the programmer can only focus on the logic of the program itself. In some ways, it is like an extension of an operating system.Schumm: There really is not a comparison with Oracle. The Oracle Application Server requires the Oracle database. We're platform agnostic: We run on everybody's hardware; we run with everybody's database.Tomcat fits a small market, serving users with a low-functioning need that is not very complex. BEA's customers tend to be large organizations that require reliable technology. Also, our customers like that the software to be supported, that there is somebody responsible to get the application back up. Our low-end product can scale many more times than Tomcat.Schumm: Well, it depends on whether the person who first wrote the application strictly followed standards. BEA, being standards-based, is easier to port to and port from.Schumm: I think for a lot of applications, that is correct. But some of the vendor extensions provide things that aren't available [otherwise]. In a number of ways, BEA has developed technology and subsequently provided that technology back to the open-source community. It is more about complying with the standards.

What's more

8Age: 46
8Family: Married, four kids
Hobbies: Early adopter in technology


Car currently driven: Cadillac SRX


Last book read: Harry Potter and the Order of the Phoenix, by J.K. Rowling


Last movie seen: The Bank Dick, starring W.C. Fields


Music genre most frequently played on your IPod: Alternative

Bob Schumm, BEA Systems' federal director








GCN: What is a service-oriented architecture?



GCN: How is it different from Web services?



GCN: What will be the relationship between the Federal Enterprise Architecture and SOA?







GCN: Can you walk through how a system administrator can make an existing in-house program available to other users in other departments?



GCN: Under an SOA, how can one application know whether a request from another application is legitimate?



GCN: How can a government program that has an internal service that could be used elsewhere secure the additional funding needed to scale the application?



GCN: Have you seen any federal departments that have successfully converted to an SOA?



GCN: What is AquaLogic? How does it improve on previous BEA SOA products?





GCN: What exactly does an application server do?



GCN: What does BEA's WebLogic application server offer that, say, Oracle's Application Server or the open-source Tomcat application server do not?





GCN: How difficult is it to switch from another app server into WebLogic?



GCN: So you would advise customers to stay away from using vendor-specific hooks?

NEXT STORY: MC4's main components

X
This website uses cookies to enhance user experience and to analyze performance and traffic on our website. We also share information about your use of our site with our social media, advertising and analytics partners. Learn More / Do Not Sell My Personal Information
Accept Cookies
X
Cookie Preferences Cookie List

Do Not Sell My Personal Information

When you visit our website, we store cookies on your browser to collect information. The information collected might relate to you, your preferences or your device, and is mostly used to make the site work as you expect it to and to provide a more personalized web experience. However, you can choose not to allow certain types of cookies, which may impact your experience of the site and the services we are able to offer. Click on the different category headings to find out more and change our default settings according to your preference. You cannot opt-out of our First Party Strictly Necessary Cookies as they are deployed in order to ensure the proper functioning of our website (such as prompting the cookie banner and remembering your settings, to log into your account, to redirect you when you log out, etc.). For more information about the First and Third Party Cookies used please follow this link.

Allow All Cookies

Manage Consent Preferences

Strictly Necessary Cookies - Always Active

We do not allow you to opt-out of our certain cookies, as they are necessary to ensure the proper functioning of our website (such as prompting our cookie banner and remembering your privacy choices) and/or to monitor site performance. These cookies are not used in a way that constitutes a “sale” of your data under the CCPA. You can set your browser to block or alert you about these cookies, but some parts of the site will not work as intended if you do so. You can usually find these settings in the Options or Preferences menu of your browser. Visit www.allaboutcookies.org to learn more.

Sale of Personal Data, Targeting & Social Media Cookies

Under the California Consumer Privacy Act, you have the right to opt-out of the sale of your personal information to third parties. These cookies collect information for analytics and to personalize your experience with targeted ads. You may exercise your right to opt out of the sale of personal information by using this toggle switch. If you opt out we will not be able to offer you personalised ads and will not hand over your personal information to any third parties. Additionally, you may contact our legal department for further clarification about your rights as a California consumer by using this Exercise My Rights link

If you have enabled privacy controls on your browser (such as a plugin), we have to take that as a valid request to opt-out. Therefore we would not be able to track your activity through the web. This may affect our ability to personalize ads according to your preferences.

Targeting cookies may be set through our site by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant adverts on other sites. They do not store directly personal information, but are based on uniquely identifying your browser and internet device. If you do not allow these cookies, you will experience less targeted advertising.

Social media cookies are set by a range of social media services that we have added to the site to enable you to share our content with your friends and networks. They are capable of tracking your browser across other sites and building up a profile of your interests. This may impact the content and messages you see on other websites you visit. If you do not allow these cookies you may not be able to use or see these sharing tools.

If you want to opt out of all of our lead reports and lists, please submit a privacy request at our Do Not Sell page.

Save Settings
Cookie Preferences Cookie List

Cookie List

A cookie is a small piece of data (text file) that a website – when visited by a user – asks your browser to store on your device in order to remember information about you, such as your language preference or login information. Those cookies are set by us and called first-party cookies. We also use third-party cookies – which are cookies from a domain different than the domain of the website you are visiting – for our advertising and marketing efforts. More specifically, we use cookies and other tracking technologies for the following purposes:

Strictly Necessary Cookies

We do not allow you to opt-out of our certain cookies, as they are necessary to ensure the proper functioning of our website (such as prompting our cookie banner and remembering your privacy choices) and/or to monitor site performance. These cookies are not used in a way that constitutes a “sale” of your data under the CCPA. You can set your browser to block or alert you about these cookies, but some parts of the site will not work as intended if you do so. You can usually find these settings in the Options or Preferences menu of your browser. Visit www.allaboutcookies.org to learn more.

Functional Cookies

We do not allow you to opt-out of our certain cookies, as they are necessary to ensure the proper functioning of our website (such as prompting our cookie banner and remembering your privacy choices) and/or to monitor site performance. These cookies are not used in a way that constitutes a “sale” of your data under the CCPA. You can set your browser to block or alert you about these cookies, but some parts of the site will not work as intended if you do so. You can usually find these settings in the Options or Preferences menu of your browser. Visit www.allaboutcookies.org to learn more.

Performance Cookies

We do not allow you to opt-out of our certain cookies, as they are necessary to ensure the proper functioning of our website (such as prompting our cookie banner and remembering your privacy choices) and/or to monitor site performance. These cookies are not used in a way that constitutes a “sale” of your data under the CCPA. You can set your browser to block or alert you about these cookies, but some parts of the site will not work as intended if you do so. You can usually find these settings in the Options or Preferences menu of your browser. Visit www.allaboutcookies.org to learn more.

Sale of Personal Data

We also use cookies to personalize your experience on our websites, including by determining the most relevant content and advertisements to show you, and to monitor site traffic and performance, so that we may improve our websites and your experience. You may opt out of our use of such cookies (and the associated “sale” of your Personal Information) by using this toggle switch. You will still see some advertising, regardless of your selection. Because we do not track you across different devices, browsers and GEMG properties, your selection will take effect only on this browser, this device and this website.

Social Media Cookies

We also use cookies to personalize your experience on our websites, including by determining the most relevant content and advertisements to show you, and to monitor site traffic and performance, so that we may improve our websites and your experience. You may opt out of our use of such cookies (and the associated “sale” of your Personal Information) by using this toggle switch. You will still see some advertising, regardless of your selection. Because we do not track you across different devices, browsers and GEMG properties, your selection will take effect only on this browser, this device and this website.

Targeting Cookies

We also use cookies to personalize your experience on our websites, including by determining the most relevant content and advertisements to show you, and to monitor site traffic and performance, so that we may improve our websites and your experience. You may opt out of our use of such cookies (and the associated “sale” of your Personal Information) by using this toggle switch. You will still see some advertising, regardless of your selection. Because we do not track you across different devices, browsers and GEMG properties, your selection will take effect only on this browser, this device and this website.