Insight Archive - SOAPARK

Business Modelling and Design Survey 2021

soapark — Mon, 11 Jan 2021 14:30:22 +0000

We have supported many enterprises in optimizing their business models, processes and underlying IT infrastructures over the past two decades. Only recently we have seen dramatic changes in how companies carry out necessary change projects.

We would like to collect real market data from various professionals across different industries to review or discard our practical experience.

The post Business Modelling and Design Survey 2021 appeared first on SOAPARK.

Enterprise SOA Security – Part 1: Challenges

soapark — Fri, 10 Jan 2020 11:14:45 +0000

The first part of the Enterprise SOA Security series deals with the challenges of contemporary IT landscapes. For example, BYOD, cross-departmental solutions, company-wide workflows and the opening of core systems for customers and suppliers frequently overburden traditional security solutions which were designed for less distributed application silos more than a decade ago.

The post Enterprise SOA Security – Part 1: Challenges appeared first on SOAPARK.

Enterprise SOA Security – Part 2: Solution Patterns

soapark — Wed, 13 May 2020 13:51:00 +0000

Solution patterns, which help to design modern SOA security, are introduced in the second part of the series. Here, the focus lies on security tokens, which ensure that every component can make secure assumptions about its users and their authorization profiles in a distributed environment.

Furthermore, the article depicts the main architecture elements such as identity providers, secure token services, or rule engines as well as their typical interactions.

The post Enterprise SOA Security – Part 2: Solution Patterns appeared first on SOAPARK.

Enterprise SOA Security – Part 3: Web Services Standards

soapark — Fri, 10 Jan 2020 11:33:34 +0000

Countless Web Services standards such as SAML, WS Security, XACML or WS Trust help with the implementation of interoperable security solutions in a service-oriented architecture. The third part of the article series provides an overview of the existing standards and their practical use.

The post Enterprise SOA Security – Part 3: Web Services Standards appeared first on SOAPARK.

Enterprise SOA Security – Part 4: Organizational Measures

soapark — Fri, 10 Jan 2020 11:34:21 +0000

SOA Security is hardly a technology subject only. Cross-departmental processes and role concepts also require cross-departmental governance and a change of thinking in the risk departments of large companies.

The post Enterprise SOA Security – Part 4: Organizational Measures appeared first on SOAPARK.

XML Gateways Facilitate Centralized API Security

soapark — Fri, 10 Jan 2020 11:35:08 +0000

The given article sketches out a best practice to implement a company-wide security strategy for cross-departmental and cross-company Web Services communication. One of the key proposals is the centralization of security functionality with XML Gateways (aka API Gateways). It highlights crucial features such as:

Service virtualization
Privacy and integrity
Control and auditing of data flows

Furthermore, this article describes critical success factors and possible practical approaches for the implementation in detail.

The post XML Gateways Facilitate Centralized API Security appeared first on SOAPARK.

Safe In The Cloud: Cross-Company Security Best Practices

soapark — Fri, 10 Jan 2020 11:35:47 +0000

Extending the ideas of enterprise IT to cross-company communication and in particular to the use of shared services, which are no longer found in a single data centre, one enters today’s most discussed field under the term “Cloud”.

Many of the security recommendations that apply within the boundaries of an individual company also apply to the Cloud. As the company’s boundaries will be transgressed a diversity of additional requirements arises inevitably.

The post Safe In The Cloud: Cross-Company Security Best Practices appeared first on SOAPARK.

Centralized Security Outperforms Decentralized Approaches in Practice

soapark — Fri, 10 Jan 2020 11:36:41 +0000

This article compares centralized and decentralized security implementations in large application landscapes – particularly focusing on costs and organizational challenges. With a closer inspection it becomes clear that centralized security implementations have significant advantages over decentralized ones. Those advantages make it very attractive for large corporations to resist the typical tendencies of projects to deliver individual solutions.

The post Centralized Security Outperforms Decentralized Approaches in Practice appeared first on SOAPARK.

SOA Testing

soapark — Thu, 23 Jan 2020 14:35:32 +0000

APIs and SOA enable enterprises to rapidly exchange data in real-time. The increase of the resulting data traffic and the interconnectivity across company boundaries as well as cloud based services provide a multitude of opportunities for enterprises to reduce their process cost and increase benefits and user-friendliness of IT applications.

Major projects that provide or consume APIs increasingly have to cope with security aspects of the APIs. They have to test not only functional behavior of the APIs but also security specifications. Enterprises currently learn that security testing has many sophisticated aspects going far beyond the challenges associated with traditional functional tests.

It is therefore key for the long-term success of business critical APIs that expert teams ensure security standards based on rigid processes and powerful testing tools.

The post SOA Testing appeared first on SOAPARK.

Mobile App Development

soapark — Thu, 23 Jan 2020 14:36:42 +0000

The elegance of many mobile applications in the mobile and game field encourages people to playfully approach the development of mobile business processes. However, practice shows that there are no magic shortcuts for mobile software projects. Serious requirements management, robust software design and a well-considered architecture are just as important for the success of mobile projects as for other projects in the corporate architecture. In addition to the traditional design disciplines, a mobile project must address the exceptional needs of graphical user interface design and interaction control.

The post Mobile App Development appeared first on SOAPARK.