View Presentation - Volpe Center | Innovation in Multimodal ...

<Insert Picture Here>

IT Modernization with Oracle

Thanikai Sokka

Senior Sales Consultant

Oracle Fusion Middleware

Agenda

• Common Business Drivers & Challenges• Industry Solutions• What is SOA?• What is Enterprise Security?• What is Grid Computing?• Realizing SOA, Enterprise Security, and Grid Computing

with Oracle• Q&A

Business Drivers & Challenges

• While trying to:• Leverage existing systems and

assets• Integrate stove piped

applications• Deal with heterogeneous

environments (Interoperate)• Meet performance, scale, and

high availability requirements• Consistently implement security

and other infrastructure services

• How do we:• Enable IT to efficiently

implement new initiatives• Lower development and

maintenance costs• Meet compliance regulations

(HSPD-12)• Gain better visibility and insight• Automate and streamline

processes• Share information• Closer align business and IT

ChallengesBusiness Drivers

Industry Solutions to Consider

• Service Oriented Architecture (SOA)• Enterprise Security• Grid Computing

PROCESS

receive

getSSN

invokeinvoke

FLOW

select

SCOPE

receivereceive

review

end

getRating

<Insert Picture Here>

What is SOA?

IT ChallengeStove-Piped, Monolithic Applications

Channels

Presentation rendering

Business processes

Data Integration & transformation

Data schemas

Application n

Business rules & logic

Application 1

Application 2

Application 3

Inflexible, Inefficient, Hard to MaintainInflexible, Inefficient, Hard to Maintain• Hard to adapt to changing business requirements• Duplication of functionality means wasted resources• Small fixes require large investments of time and labor• Integration represents 80% of IT Budget

Heterogeneous Environment

DCPDS

BAM

Batch Processing

Data Aggregation/Synch

Database WarehouseMainframe

Portal

Wireless / Mobile

3rd PartyOracle_DCPDS.JPG

IT Solution: Service Oriented Architecture

Build Applications EffectivelyPROCESS

receive

getSSN

invokeinvoke

FLOW

select

SCOPE

receivereceive

review

end

getRating

SOA

Application Stove Piping Flexible Architecture

Two basic concepts:Services: also known as components, business functions, or “web services”

Examples:

Create Invoice

Delete Account

Orchestration: the combining of services into business processes

Advantages:

Build and integrate quickly - without software coding/development

Handle errors easily and elegantly

WSDL/WSIF

XML/XML Schema

SOAP JCA JMS

BUSINESS SERVICES

More Interoperable

ERP/Legacy Apps

Custom Apps& Services

Web services

SOA Today Leverages Open Standards Rooted from XML

Process FlowLogic

XSLT/XQuery

BPEL

More Adaptable

PROCESS ORCHESTRATION

PORTAL JSR-168

USER INTERFACE

Struts/JSF

Portal

Web Application

API

WS

Richer Experience

PKIDashboards

BAM

MONITORING

JMX

Fusion Effect

WS-Security

SERVICE BUS

SecurityReliabilityLoggingFailover

Dynamic Routing

WS-Policy, SAML

Web Services Mgmt

SOA Enabled System Environment

• Simplified and common:• Integration / Automation• Administration• Security

• Total visibility

• Enable runtime changes

• Standards-based plug&play• Web Services & “SOA”

Middleware

BAM

Batch Processing

Data Aggregation/Syn

ch

Database

Warehouse

Mainframe

Portal

Wireless / Mobile

DCPDS

3rd Party

Web services

Promise of SOA

• Greater enterprise flexibility and agility• Automate end-to-end processes• Share and integrate while maintaining ownership control• Improved visibility• Increase IT efficiency

• Greater interoperability• Increase reuse and leverage existing system assets• Enable graceful migration from legacy systems

• Reduce integration, maintenance, and operational cost• Smaller business IT gap

<Insert Picture Here>

What is Enterprise Security?

Q: How do you control access to your sensitive applications?

a – Usernames and passwordsb – Contextual authenticationc – Hardware token

Q: What determines your employee’s access?

a – Give Alice whatever Wally hasb – Base on her business rolesc – Whatever her manager says

Q: Who is the most privileged user in your enterprise?

a – Security administratorb – CFOc – The 3-peat summer intern who is now

working for your competitor

Q: How secure is youridentity data?

a – It is in 18 different secured storesb – We protect the admin passwordsc – Privacy? We don’t hold credit card

numbers

Q: How much are manual compliance controls costing your organization?

a – Nothing, no new headcountb – Don’t askc – Don’t know

Today’s IT Challenges

More Agile Business• More accessibility for employees, customers and partners• Higher level of B2B integrations• Faster reaction to changing requirements

More Secured Business• Organized crime• Identity theft• Intellectual property theft• Constant global threats

More Compliant Business• Increasing regulatory demands• Increasing privacy concerns• Business viability concerns

State Of Security In Enterprise

• Incomplete• Multiple point solutions from many vendors• Disparate technologies that don’t work together

• Complex• Repeated point-to-point integrations• Mostly manual operations

• ‘Non-compliant’• Difficult to enforce consistent set of policies• Difficult to measure compliance with those policies

• Business ‘un-friendly’• Solutions not user-centric but technology-centric• Processes not end-user friendly

How can an enterprise security solution help?

? !X• Establish Enterprise Identity & Roles• Enforce Strong And Granular Security Policies• Automate Security Related Processes• Compliance & Fraud Mgmt.• Centralized Security And Administration• Ensure Data Privacy• Flexible Risk Based Security• Define Audit And Control Framework• Security And Control For Enterprise Applications• Manageability and Security For Databases• Deploy A Scalable and Flexible

Integration Architecture

Promise of an Enterprise Security Solution

• Trusted and reliable security

• Efficient regulatory compliance

• Lower administrative and development costs

• Enable online business networks

• Better end-user experience

<Insert Picture Here>

What is Grid Computing?

Grid Vision

• Computing as a utility• A network of clients and service providers

• Client-side: Simplicity• Request computation or information and receive it

• Server-side: Sophistication• Availability, load balancing, utilization• Information sharing, data management

• Virtualization• Nothing more virtual than a utility• Massive potential

Benefits of the Grid

• Better information faster• Perform more work with fewer resources• Spread work across resources• Access to resources on demand

• Faster response to changing business priorities • Instantly and dynamically realign IT resources as business

needs change

• Reduced IT costs• Improve utilization of existing resources• Utilize less expensive commodity platforms

<Insert Picture Here>

So how do we get there?

How do we realize SOA, Enterprise Security, and Grid Computing?

Oracle - The Information Company

Oracle Fusion Middleware

Information Age Applications

•Oracle E-Business Suite•PeopleSoft Enterprise•JD Edwards Enterprise One•JD Edwards World•Siebel•Retek•ProfitLogic•G-Log

•Application Server•Integration / SOA•Hot-Pluggable•Business Intelligence•Identity Management•Data Hubs•Collaboration Services•Process Orchestration•Java Development Tools

•Database•Real Application Clusters (RAC)•Enterprise Manager•Partitioning•OLAP•Security•Lite•Times Ten

Oracle Database 10g

Grid Computing

Oracle Fusion Middleware

• Oracle SOA Suite• Oracle Enterprise Service Bus (ESB)• Oracle BPEL Process Manager (BPEL PM)• Oracle Business Activity Monitor (BAM)• Oracle Web Services Manager (WSM)• Oracle Business Rules Engine• Oracle Integration Adapters• Oracle Service Registry

• Oracle BPA Suite• IDS Scheer ARIS Business Process Architect• IDS Scheer ARIS Business Process Simulator• IDS Scheer ARIS Business Process Publisher• Oracle SOA Integration Extensions

• Oracle Web Center Suite• Oracle Application Development Framework (ADF)• Oracle Web Center Framework• Oracle Web Center Services• Oracle Web Center Anywhere• Oracle JDevelopor

• Oracle Identity Management Suite• Oracle Internet Directory• Oracle Virtual Directory• Oracle Identity Manager• Oracle Identity Federation• Oracle Enterprise Single Sign On• Oracle Access Manager

• Oracle Business Intelligence• Oracle BI Standard Edition• Oracle Reports• Oracle BI Discoverer• Oracle BI Publisher

• Oracle Application Server• Oracle Business Rules Engine• Oracle Service Registry• Oracle Sensor Edge Server• Oracle TopLink• Oracle Containers for J2EE (OC4J)• Oracle HTTP Server• Oracle Enterprise Manager• Oracle Web Cache• Oracle Wireless

• Oracle Data Integrator

• Oracle Enterprise Content Management• Information Rights Management• Universal Records Management• Imaging Server• Content Server• Content DB

• Oracle Portal

• Oracle Coherence

Realizing SOA with Oracle

• Service Oriented Architecture (SOA)• Enterprise Security• Grid Computing

PROCESS

receive

getSSN

invokeinvoke

FLOW

select

SCOPE

receivereceive

review

end

getRating

Oracle Business Activity Monitor (BAM)Oracle Business Activity Monitor (BAM)

Oracle BPEL Process ManagerOracle BPEL Process Manager

BPEL Process Workflow Rules

fx

Biz PartnersRN, EDI

Oracle Enterprise Service BusTransformation | Routing | Messaging | Registry

Oracle Enterprise Service BusTransformation | Routing | Messaging | Registry

Registry

Metadatastore

Java,Otherservices

In Memory JCA CLR

.Net, C#

REST SOAP JCA

Mainframe,IMS, CICS

Yahoo!Amazon

Oracle Apps,Siebel, SAP,Peoplesoft

Oracle’s SOA PlatformKey Features

• 100% BPEL Support

• Extensible Human Workflow

• Flexible Rules Integration

• Integrated Business Activity Monitor

• JCA/WSIF Binding Framework

• Integrated ESB, Registry, WSM

• SOA enabled user interaction layer

• Unified enterprise management

• Integrated development environment

Oracle WebCenter SuiteOracle WebCenter Suite

Oracle JDev

Oracle BPA Suite

Oracle JDev

Oracle BPA Suite

Oracle Application Server / Oracle Enterprise ManagerOracle Application Server / Oracle Enterprise Manager

SOA with OracleStrategy / Value Proposition

• Comprehensive and Integrated• Complete & Integrated Application Architecture,

Single Vendor

• Service Oriented Architecture & BPM Enabled• Flexible and Extensible Architecture that is

Standards Based• BPM integration for true top down modeling

• Full SOA Life Cycle Support • Plan, Design & Develop, Integrate, Orchestrate,

Secure, Manage, Monitor, and Change

• Integrated, Intelligent and Secured Applications• Increase Business Agility and Employee

Productivity

• Increase Scalability and Reliability• Lower Cost, Flexible Hardware Architecture

(Grid)

Develop

Orchestrate

DeployAccess

Integrate

Secure, Monitor &Manage

Plan,Change

BPMLifecycle

Monitor

Optimize

Business Process

Monitoring(BAM)

Implement

Deploy Execute

Business Process

Execution (BPE)

Model

Simulate

Business Process Analysis (BPA)

Realizing Enterprise Security with Oracle

• Service Oriented Architecture (SOA)• Enterprise Security• Grid Computing

PROCESS

receive

getSSN

invokeinvoke

FLOW

select

SCOPE

receivereceive

review

end

getRating

Oracle Confidential & Proprietary

Oracle Enterprise Security

Identity And Access Management

Data Security

User Management

Application Security

Access Management

Directory Management

Platform Security Identity Audit

Multi-level Access Control Encryption

Monitoring & AlertDBA Security

Operating System Security

Authentication Service User Management

Governance Risk Compliance

Policy & Process Management

Enterprise Control

Compliance Analysis & Reporting

Audit Automation

Information Rights

Data Security: Oracle ProductsRealize regulatory compliance and protect against internal and external threats

Core Platform Security

User Management• Oracle Identity Management• Enterprise User Security

Data Protection• Oracle Advanced Security • Oracle Secure Backup

Access Control• Oracle Database Vault• Oracle Label Security• Virtual Private Database

Monitoring• Database Auditing• Oracle Audit Vault• EM Configuration Pack

Release wide map of Security Products

Solution

Virtual Private Database

Fine Grained Auditing

Network Encryption

Oracle

8i

Oracle

Database

9iR2

Oracle

Database

10g R1

Oracle

Database

11gR1

Oracle

Database

10g R2

Transparent Data Encryption

Privileged User Controls

Command Rules / Factors

Oracle

Database

9iR1

Tablespace Encryption

Database Auditing

Label Security

Enterprise User Security

Client Identifier

Encryption API

Access Manager

Adaptive Access Manager

Enterprise Single Sign-On

Identity Federation

Web Services Manager

Authentication Service for OS

Access Management

Identity Manager

Role Manager

Identity Admin.

Internet Directory

Virtual Directory

Directory Services

Identity Management Suite

Audit & Compliance

Enterprise Manager Identity Management Pack

Suite Management

Platform Security For Java

Platform Security

Oracle Identity Management Suite

Strong authentication

Risk based authorization

Single sign-on

Federation

Web Services security

Operating systems security

Access Management

Identity lifecycle

Role management & mining

Organization management

Provisioning

Reconciliation

Password management

Identity Admin.

Storage

Virtualization

Synchronization

Directory Services

Audit Reporting Analytics Fraud

Attestation Segregation of duties

Audit & Compliance

Service levels Performance Configuration Automation

Suite Management

Application server security

Fusion Applications security

Platform Security

Oracle’s Comprehensive IdM Solutions

Oracle’s Comprehensive IdM Solutions

Info. Sec, AuditorEnd Users Administrator

Reporting & Analytics

Attestation

Segregation of Duties

Fraud Detection

Strong Authentication

Risk Based Authorization

Federation

Self-Service

Identity Admin

Account Admin

Organization Admin

Role Management

Delegated Admin

Business Apps, HR

Provisioning

Reconciliation

Password Mgmt.

WS Security

Directories, DB

LDAP Storage

LDAP Synchronization

LDAP Virtualization

DB User Security

App Server, OS

Java Platform Security

Authentication For Operating Systems

Oracle Identity Management & Security Platform

Oracle IdentitySolution Set

HR Systemuser info

Oracle Identity

Manager / Oracle Role Management

Business Unit

* Administration of users is delegated to the downstream organization

Dealer

Internal Employees

1,000,000’s of Internet

Users

Key supplier or benefits partner

Oracle Access Manager /

Oracle Adaptive Access

Manager

Web Services Manager

App with Web Service

App with Web Service

Virtual Directory

Directory B

Directory A

Delegation *1,000’s of External

UsersManages

changes to user status (occasional)

Manages user access (daily)

Alternative or complement to

meta-directories

Secures BPEL / Web

Services

SSO across company

boundaries

Any App on Any

Platform

Federation

Federation

Ora

cle eS

SO

Realizing Grid Computing with Oracle

• Service Oriented Architecture (SOA)• Enterprise Security• Grid Computing

PROCESS

receive

getSSN

invokeinvoke

FLOW

select

SCOPE

receivereceive

review

end

getRating

Grid Computing with Oracle

• Storage• Automatic Storage

Management

• Database Servers• Real Application Clusters

(RAC)

• Application Servers• Application Server Clustering

• Grid Control• Enterprise Manager Grid

Control

ASM: Storage Grid

• Oracle Automatic Storage Manager (ASM)

• Provisions storage capacity automatically to Oracle 10g as needed

• Stripes and Balances I/O• Mirrors: Immune to disk failure

• Oracle Automatic Backup and Recovery

• Single backup areafor all Grid databases

• Archive to tape

RAC: The Database Grid

ClusteredDatabase Servers

Mirrored Disk Subsystem

High Speed Switch or Interconnect

Hub or Switch Fabric

Network

Centralized Management Console

Drive and Exploit Industry Advances in Clustering

Users

No SinglePoint Of Failure

Interconnect

Shared CacheShared Cache

Storage Area Network

OC4JOC4JOC4JOC4J

Oracle Middleware Grid Support

Web Client

HTTP

SOAP/HTTP

We

b C

ac

he

We

b C

ac

he

OH

SO

HSHTTP

mod

_oc4j

mod

_oc4j

AJPOC4JOC4J

RACJDBC

Process MonitoringProcess Monitoringand Notification Service with DRMand Notification Service with DRM

• Up/Down• Invalidation• Health

• Up/Down• New• Health• Up/Down• Up/Down

Web ServicesApplication

Scaling Behind Oracle HTTP Server

OC4J OC4J

OC4J OC4J

OracleAS H4

OC4J OC4J

OC4J OC4J

OracleAS H3

OC4J OC4J

OC4J OC4J

OracleAS H5

OracleAS H1

OHSRouter (mod_oc4j)

OracleAS H2

OHSRouter (mod_oc4j) • Load balancing Between OHS/OC4J

• Customized routing for Isolation

HW

Rou

ter

Scaling on Single Node: Multiple JVM Per OC4J

OC4J Instance

Configuration

OracleAS Instance

JVM

JVM JVM

JVM

• Simple. Turn on multiple JVM by setting numprocs > 1• Identical configuration on each runtime instance

Distributed, In Memory Oracle Coherence Data Grid Service

Coherence Data Grid Service

Real Time Clients Application Servers Applications Databases SOA Infrastructure

Distributed, In Memory Oracle Coherence Data Grid

Coherence ClientsFor Data Access, Analytics, Transactions, Events

CMDB(Discover & Reconcile)

EnterpriseManager

ConfigurationManagement

LifecycleAutomation

ApplicationPerformanceManagement

Ext en

si bi li ty an

d I n

t erop

erabil i ty

(Op

en

Sta

nd

ard

s, O

pe

n In

t erf a

ce

s)

Das

hb

oar

ds

and

Rep

ort

s

Oracle Infrastructure ManagementOracle Infrastructure Management

Application ManagementApplication Management

Extended Infrastructure ManagementExtended Infrastructure Management

Enterprise Manager Grid ControlGrid Management - Breadth of Capabilities

SystemMonitoring

ServiceLevel

Management

Oracle Grid Computing

• Dynamic resource provisioning • Realign IT resources as business needs change

• The most cost effective platform• Commodity blade servers• Linux OS• Networked storage accessible via Infiniband, FibreChannel, or

Ethernet

• Software to enable the platform• Oracle Automatic Storage Manager (ASM)• Oracle Database• Oracle Application Server• Oracle Coherence• Oracle Enterprise Manager Grid Control

AQ&Q U E S T I O N SQ U E S T I O N S

A N S W E R SA N S W E R S