Mike Vizard at eWeek recently hosted a podcast with ITKO???s John Michelsen,
on "Application Development in the Clouds." In this conversation, John and
Mike talk about how cloud computing is going to upend the way IT
organizations think about SOA and application development in general. Mike
started by mentioning the increased number of dependencies that SaaS brings
to SOA testing. John said Mike really nailed the problem - it is something we
are seeing in every engagement that relies on third party or shared services
environments. The traditional waterfall method, and its assumptions, are now
all undermined, and so much rethinking needs to be done. But the effort is
worth it. Mike, as seen on the left, next discussed the increased reuse
happening in SOA. This broadens the need for trust. John, as seen below on
the right, said that SOA requires good governance polici... (more)
Security Journal on Ulitzer
So you’ve bought into the idea of service-orientation. Congratulations.
You’ve begun to create services throughout your internal corporate network.
Some of these run on .NET servers; others are Java services; still others are
Ruby-on-Rails—in fact, one day you woke up and discovered you even have a
mainframe service to manage. But the question you face now is this: how can
all of these services be made available to consumers on the Internet? And
more important, how can you do it securely?
Most organizations buffer their contact with the outside world using a DMZ.
Externally facing systems, such as web servers, live in the DMZ. They mediate
access to internal resources, implementing—well, hopefully implementing—a
restrictive security model. The DMZ exists to create a security air gap
between protocols. The idea is that any system deployed ... (more)
Identity Session at Cloud Expo
WSO2, the lean enterprise middleware company, on Wednesday announced the
debut of WSO2 Cloud Identity.
The newest hosted WSO2 Cloud Service helps companies eliminate the complexity
of deploying identity management and authentication across multiple SaaS
(software as a service) applications as well as internal and traditional
By supporting a broad set of authentication and security standards, WSO2
Cloud Identity gives administrators a central identity management system
while users gain single sign-on access to different cloud applications.
Initial cloud application support includes Google Apps, which is available
with today’s beta release of WSO2 Cloud Identity, and Salesforce.com, which
will be added at the end of the month.
Register Today and Save $800 !
Explore Sponsorship Opportunities !
Comprehensive identity management... (more)
One of the most interesting aspects of being a consultant is that I get
exposed to any number of different facets of system design in the course of
an assignment. While I tend to focus more on application and integration
work, I find it fascinating to deal with the concepts of services in the
context of infrastructure.
In the past, I've been called upon to design Service-Oriented Infrastructures
(SOI) - the hardware and platform software, along with customizations for the
needs of the actual deployment environment - instead of creating an
application architecture. SOI is really a different way of looking at the
concept of services - from the viewpoint of the operational staff.
Most of the time, we tend to view services from a line of business or at the
very least an application development perspective. There's nothing wrong with
viewing SOA this way - it's very impo... (more)
To be able to do anything useful, an ESB must be configured with all sorts of
parameters, from endpoint connection URIs to message transformation scripts
to content-based routing definitions. Moreover, ESBs like Mule can host
custom components, which will process messages and perform user-specific
actions on them.
Deploying a new version of an ESB configuration raises the question of
whether it will break anything. How can we build confidence that everything
will be just fine? If unit testing did it for standard software development,
what can it do in the realm of the ESB? Since ESBs are becoming increasingly
familiar in corporate IT, getting concrete answers is of interest to more and
This article details the testing strategies I employ for Mule ESB-driven
projects, which I think contain elements that could be generalized to other
platforms. I am cer... (more)
At times, I can be a bit of a procrastinator. If there is no pressing need to
clean out the garage this week, shop for holiday gifts, or do my taxes, I can
easily be convinced to let it go until next week or next month. Inevitably,
though, something happens that makes me wish I hadn't delayed quite as long
as I did. The garage gets flooded, for example, and the boxes that I had been
meaning to organize get soaked and destroyed... or my Valentine's Day gift
doesn't get shipped in time and I'm left holding the bag. I'm sure many of
you can think of your own examples.
Unfortunately, many organizations tend to treat load testing as one of those
activities that they can put off until a later day. You can almost imagine
what they're thinking: "Our website is up and handling the daily load with
little difficulty. Yes, there's a major advertising campaign - or new product ... (more)
Service-oriented architecture (SOA) has become today's technology buzz and
it's rapidly becoming a mainstream approach to enterprise systems design.
Beyond the buzz of SOA, organizations face several challenges as they attempt
to truly effectuate the paradigm shift towards SOA. One critical challenge
is: How can we assure the quality of the business services that we build? Can
the services we build withstand the test of rapid organizational change? One
way to address this challenge is through the use of effective testing
methodologies and tools for the services deployed under an organization's SOA
A new development methodology - services-oriented development of applications
(SODA) - is emerging to accompany the paradigm shift toward SOA. Today's
agile software teams need effective tools to smoothen the transition. This
article analyzes, designs, and demonst... (more)
SOA World Conference & Expo, which will take place on June 24-27, 2007 in New
York City will offer a session entitled "WebSphere Process Server Drives
End-to-End SOA: Integration for a Real-World Application."
This presentation will demonstrate a fully integrated and secured
service-oriented architecture (SOA) using WebSphere Process Server, WebSphere
ESB, WebSphere Message Broker, WebSphere MQ, Workplace Forms, WebSphere
Portal and Tivoli Access Manager - all integrated together. We will explain
the various technical challenges, integration points, and implementation
details of the project. Our “Consumer Bank Account Opening
Framework,” a real-world application for financial organizations, will
be showcased; this includes complex forms processing, workflow, and human
tasks. This session is designed to not only expand your technical knowledge
of key emer... (more)
So, does testing change with SOA? You bet it does. Unless you're willing to
act now, you may find yourself behind the curve as SOA becomes systemic to
all that is enterprise architecture, and we add more complexity to get to an
agile and reusable state.
If you're willing to take the risk, the return on your SOA investment will
come back three fold...that is, if it is a well-tested SOA. Untested SOA
could cost you millions.
Truth be told, testing SOAs is a complex, disturbed computing problem. You
have to learn how to isolate, check, and integrate, assuring that things work
at the service, persistence, and process layers. The foundation of SOA
testing is to select the right tool for the job, having a well-thought-out
plan, and spare no expense in testing cycles or else risk that your SOA will
lay an egg, and have no creditability.
Organizations are beginning to roll... (more)
Frank Cohen's Blog
Anil Gupta is planning to write a book on SOA test methodology. He recently
asked for feedback on the subject areas and he asked for pointers to blogs
and resources that discuss SOA testing.
Here I what I wrote in response to his question:
Dear Anil: I'm glad to see you are planning to write a book on SOA test
methodology. One is needed very much within the test community.
By the time the book is released I envision a world where SOA, Ajax, Web
Services and Web 2.0 are completely blurred. So I would recommend that your
book cover methodologies for each.
The biggest problem I see for testers in SOA is the test tools are trying to
the fill the gap between testers not wanting to learn how to code and there
being no way to do record/playback in an SOA environment. Somehow your book
need to address this issue in a way that testers will accept.
My new bo... (more)
Service Oriented Architecture (SOA) has been discussed as an important
architectural style for the last few years. Organizations have started to
develop service-oriented solutions and many are now leveraging services in
their production environments.
SOA introduces new technical complexities and challenges and makes testing a
critical component of the development lifecycle. Teams need to think about:
How do you know if the solution is ready? How do you know that it will scale
to accommodate future needs? How do you know that you can actually get the
business flexibility that SOA promises? These are all questions testing
should answer, but many test teams aren't experienced yet in testing
This article contains a set of recommendations, with a rationale, that will
help you to mitigate the issues that arise in testing an SOA solution. The