<Insert Picture Here>
IT Modernization with Oracle
Thanikai Sokka
Senior Sales Consultant
Oracle Fusion Middleware
Agenda
• Common Business Drivers & Challenges• Industry Solutions• What is SOA?• What is Enterprise Security?• What is Grid Computing?• Realizing SOA, Enterprise Security, and Grid Computing
with Oracle• Q&A
Business Drivers & Challenges
• While trying to:• Leverage existing systems and
assets• Integrate stove piped
applications• Deal with heterogeneous
environments (Interoperate)• Meet performance, scale, and
high availability requirements• Consistently implement security
and other infrastructure services
• How do we:• Enable IT to efficiently
implement new initiatives• Lower development and
maintenance costs• Meet compliance regulations
(HSPD-12)• Gain better visibility and insight• Automate and streamline
processes• Share information• Closer align business and IT
ChallengesBusiness Drivers
Industry Solutions to Consider
• Service Oriented Architecture (SOA)• Enterprise Security• Grid Computing
PROCESS
receive
getSSN
invokeinvoke
FLOW
select
SCOPE
receivereceive
review
end
getRating
<Insert Picture Here>
What is SOA?
IT ChallengeStove-Piped, Monolithic Applications
Channels
Presentation rendering
Business processes
Data Integration & transformation
Data schemas
Application n
Business rules & logic
Application 1
Application 2
Application 3
Inflexible, Inefficient, Hard to MaintainInflexible, Inefficient, Hard to Maintain• Hard to adapt to changing business requirements• Duplication of functionality means wasted resources• Small fixes require large investments of time and labor• Integration represents 80% of IT Budget
Heterogeneous Environment
DCPDS
BAM
Batch Processing
Data Aggregation/Synch
Database WarehouseMainframe
Portal
Wireless / Mobile
3rd PartyOracle_DCPDS.JPG
IT Solution: Service Oriented Architecture
Build Applications EffectivelyPROCESS
receive
getSSN
invokeinvoke
FLOW
select
SCOPE
receivereceive
review
end
getRating
SOA
Application Stove Piping Flexible Architecture
Two basic concepts:Services: also known as components, business functions, or “web services”
Examples:
Create Invoice
Delete Account
Orchestration: the combining of services into business processes
Advantages:
Build and integrate quickly - without software coding/development
Handle errors easily and elegantly
WSDL/WSIF
XML/XML Schema
SOAP JCA JMS
BUSINESS SERVICES
More Interoperable
ERP/Legacy Apps
Custom Apps& Services
Web services
SOA Today Leverages Open Standards Rooted from XML
Process FlowLogic
XSLT/XQuery
BPEL
More Adaptable
PROCESS ORCHESTRATION
PORTAL JSR-168
USER INTERFACE
Struts/JSF
Portal
Web Application
API
WS
Richer Experience
PKIDashboards
BAM
MONITORING
JMX
Fusion Effect
WS-Security
SERVICE BUS
SecurityReliabilityLoggingFailover
Dynamic Routing
WS-Policy, SAML
Web Services Mgmt
SOA Enabled System Environment
• Simplified and common:• Integration / Automation• Administration• Security
• Total visibility
• Enable runtime changes
• Standards-based plug&play• Web Services & “SOA”
Middleware
BAM
Batch Processing
Data Aggregation/Syn
ch
Database
Warehouse
Mainframe
Portal
Wireless / Mobile
DCPDS
3rd Party
Web services
Promise of SOA
• Greater enterprise flexibility and agility• Automate end-to-end processes• Share and integrate while maintaining ownership control• Improved visibility• Increase IT efficiency
• Greater interoperability• Increase reuse and leverage existing system assets• Enable graceful migration from legacy systems
• Reduce integration, maintenance, and operational cost• Smaller business IT gap
<Insert Picture Here>
What is Enterprise Security?
Q: How do you control access to your sensitive applications?
a – Usernames and passwordsb – Contextual authenticationc – Hardware token
Q: What determines your employee’s access?
a – Give Alice whatever Wally hasb – Base on her business rolesc – Whatever her manager says
Q: Who is the most privileged user in your enterprise?
a – Security administratorb – CFOc – The 3-peat summer intern who is now
working for your competitor
Q: How secure is youridentity data?
a – It is in 18 different secured storesb – We protect the admin passwordsc – Privacy? We don’t hold credit card
numbers
Q: How much are manual compliance controls costing your organization?
a – Nothing, no new headcountb – Don’t askc – Don’t know
Today’s IT Challenges
More Agile Business• More accessibility for employees, customers and partners• Higher level of B2B integrations• Faster reaction to changing requirements
More Secured Business• Organized crime• Identity theft• Intellectual property theft• Constant global threats
More Compliant Business• Increasing regulatory demands• Increasing privacy concerns• Business viability concerns
State Of Security In Enterprise
• Incomplete• Multiple point solutions from many vendors• Disparate technologies that don’t work together
• Complex• Repeated point-to-point integrations• Mostly manual operations
• ‘Non-compliant’• Difficult to enforce consistent set of policies• Difficult to measure compliance with those policies
• Business ‘un-friendly’• Solutions not user-centric but technology-centric• Processes not end-user friendly
How can an enterprise security solution help?
? !X• Establish Enterprise Identity & Roles• Enforce Strong And Granular Security Policies• Automate Security Related Processes• Compliance & Fraud Mgmt.• Centralized Security And Administration• Ensure Data Privacy• Flexible Risk Based Security• Define Audit And Control Framework• Security And Control For Enterprise Applications• Manageability and Security For Databases• Deploy A Scalable and Flexible
Integration Architecture
Promise of an Enterprise Security Solution
• Trusted and reliable security
• Efficient regulatory compliance
• Lower administrative and development costs
• Enable online business networks
• Better end-user experience
<Insert Picture Here>
What is Grid Computing?
Grid Vision
• Computing as a utility• A network of clients and service providers
• Client-side: Simplicity• Request computation or information and receive it
• Server-side: Sophistication• Availability, load balancing, utilization• Information sharing, data management
• Virtualization• Nothing more virtual than a utility• Massive potential
Benefits of the Grid
• Better information faster• Perform more work with fewer resources• Spread work across resources• Access to resources on demand
• Faster response to changing business priorities • Instantly and dynamically realign IT resources as business
needs change
• Reduced IT costs• Improve utilization of existing resources• Utilize less expensive commodity platforms
<Insert Picture Here>
So how do we get there?
How do we realize SOA, Enterprise Security, and Grid Computing?
Oracle - The Information Company
Oracle Fusion Middleware
Information Age Applications
•Oracle E-Business Suite•PeopleSoft Enterprise•JD Edwards Enterprise One•JD Edwards World•Siebel•Retek•ProfitLogic•G-Log
•Application Server•Integration / SOA•Hot-Pluggable•Business Intelligence•Identity Management•Data Hubs•Collaboration Services•Process Orchestration•Java Development Tools
•Database•Real Application Clusters (RAC)•Enterprise Manager•Partitioning•OLAP•Security•Lite•Times Ten
Oracle Database 10g
Grid Computing
Oracle Fusion Middleware
• Oracle SOA Suite• Oracle Enterprise Service Bus (ESB)• Oracle BPEL Process Manager (BPEL PM)• Oracle Business Activity Monitor (BAM)• Oracle Web Services Manager (WSM)• Oracle Business Rules Engine• Oracle Integration Adapters• Oracle Service Registry
• Oracle BPA Suite• IDS Scheer ARIS Business Process Architect• IDS Scheer ARIS Business Process Simulator• IDS Scheer ARIS Business Process Publisher• Oracle SOA Integration Extensions
• Oracle Web Center Suite• Oracle Application Development Framework (ADF)• Oracle Web Center Framework• Oracle Web Center Services• Oracle Web Center Anywhere• Oracle JDevelopor
• Oracle Identity Management Suite• Oracle Internet Directory• Oracle Virtual Directory• Oracle Identity Manager• Oracle Identity Federation• Oracle Enterprise Single Sign On• Oracle Access Manager
• Oracle Business Intelligence• Oracle BI Standard Edition• Oracle Reports• Oracle BI Discoverer• Oracle BI Publisher
• Oracle Application Server• Oracle Business Rules Engine• Oracle Service Registry• Oracle Sensor Edge Server• Oracle TopLink• Oracle Containers for J2EE (OC4J)• Oracle HTTP Server• Oracle Enterprise Manager• Oracle Web Cache• Oracle Wireless
• Oracle Data Integrator
• Oracle Enterprise Content Management• Information Rights Management• Universal Records Management• Imaging Server• Content Server• Content DB
• Oracle Portal
• Oracle Coherence
Realizing SOA with Oracle
• Service Oriented Architecture (SOA)• Enterprise Security• Grid Computing
PROCESS
receive
getSSN
invokeinvoke
FLOW
select
SCOPE
receivereceive
review
end
getRating
Oracle Business Activity Monitor (BAM)Oracle Business Activity Monitor (BAM)
Oracle BPEL Process ManagerOracle BPEL Process Manager
BPEL Process Workflow Rules
fx
Biz PartnersRN, EDI
Oracle Enterprise Service BusTransformation | Routing | Messaging | Registry
Oracle Enterprise Service BusTransformation | Routing | Messaging | Registry
Registry
Metadatastore
Java,Otherservices
In Memory JCA CLR
.Net, C#
REST SOAP JCA
Mainframe,IMS, CICS
Yahoo!Amazon
Oracle Apps,Siebel, SAP,Peoplesoft
Oracle’s SOA PlatformKey Features
• 100% BPEL Support
• Extensible Human Workflow
• Flexible Rules Integration
• Integrated Business Activity Monitor
• JCA/WSIF Binding Framework
• Integrated ESB, Registry, WSM
• SOA enabled user interaction layer
• Unified enterprise management
• Integrated development environment
Oracle WebCenter SuiteOracle WebCenter Suite
Oracle JDev
Oracle BPA Suite
Oracle JDev
Oracle BPA Suite
Oracle Application Server / Oracle Enterprise ManagerOracle Application Server / Oracle Enterprise Manager
SOA with OracleStrategy / Value Proposition
• Comprehensive and Integrated• Complete & Integrated Application Architecture,
Single Vendor
• Service Oriented Architecture & BPM Enabled• Flexible and Extensible Architecture that is
Standards Based• BPM integration for true top down modeling
• Full SOA Life Cycle Support • Plan, Design & Develop, Integrate, Orchestrate,
Secure, Manage, Monitor, and Change
• Integrated, Intelligent and Secured Applications• Increase Business Agility and Employee
Productivity
• Increase Scalability and Reliability• Lower Cost, Flexible Hardware Architecture
(Grid)
Develop
Orchestrate
DeployAccess
Integrate
Secure, Monitor &Manage
Plan,Change
BPMLifecycle
Monitor
Optimize
Business Process
Monitoring(BAM)
Implement
Deploy Execute
Business Process
Execution (BPE)
Model
Simulate
Business Process Analysis (BPA)
Realizing Enterprise Security with Oracle
• Service Oriented Architecture (SOA)• Enterprise Security• Grid Computing
PROCESS
receive
getSSN
invokeinvoke
FLOW
select
SCOPE
receivereceive
review
end
getRating
Oracle Confidential & Proprietary
Oracle Enterprise Security
Identity And Access Management
Data Security
User Management
Application Security
Access Management
Directory Management
Platform Security Identity Audit
Multi-level Access Control Encryption
Monitoring & AlertDBA Security
Operating System Security
Authentication Service User Management
Governance Risk Compliance
Policy & Process Management
Enterprise Control
Compliance Analysis & Reporting
Audit Automation
Information Rights
Data Security: Oracle ProductsRealize regulatory compliance and protect against internal and external threats
Core Platform Security
User Management• Oracle Identity Management• Enterprise User Security
Data Protection• Oracle Advanced Security • Oracle Secure Backup
Access Control• Oracle Database Vault• Oracle Label Security• Virtual Private Database
Monitoring• Database Auditing• Oracle Audit Vault• EM Configuration Pack
Release wide map of Security Products
Solution
Virtual Private Database
Fine Grained Auditing
Network Encryption
Oracle
8i
Oracle
Database
9iR2
Oracle
Database
10g R1
Oracle
Database
11gR1
Oracle
Database
10g R2
Transparent Data Encryption
Privileged User Controls
Command Rules / Factors
Oracle
Database
9iR1
Tablespace Encryption
Database Auditing
Label Security
Enterprise User Security
Client Identifier
Encryption API
Access Manager
Adaptive Access Manager
Enterprise Single Sign-On
Identity Federation
Web Services Manager
Authentication Service for OS
Access Management
Identity Manager
Role Manager
Identity Admin.
Internet Directory
Virtual Directory
Directory Services
Identity Management Suite
Audit & Compliance
Enterprise Manager Identity Management Pack
Suite Management
Platform Security For Java
Platform Security
Oracle Identity Management Suite
Strong authentication
Risk based authorization
Single sign-on
Federation
Web Services security
Operating systems security
Access Management
Identity lifecycle
Role management & mining
Organization management
Provisioning
Reconciliation
Password management
Identity Admin.
Storage
Virtualization
Synchronization
Directory Services
Audit Reporting Analytics Fraud
Attestation Segregation of duties
Audit & Compliance
Service levels Performance Configuration Automation
Suite Management
Application server security
Fusion Applications security
Platform Security
Oracle’s Comprehensive IdM Solutions
Oracle’s Comprehensive IdM Solutions
Info. Sec, AuditorEnd Users Administrator
Reporting & Analytics
Attestation
Segregation of Duties
Fraud Detection
Strong Authentication
Risk Based Authorization
Federation
Self-Service
Identity Admin
Account Admin
Organization Admin
Role Management
Delegated Admin
Business Apps, HR
Provisioning
Reconciliation
Password Mgmt.
WS Security
Directories, DB
LDAP Storage
LDAP Synchronization
LDAP Virtualization
DB User Security
App Server, OS
Java Platform Security
Authentication For Operating Systems
Oracle Identity Management & Security Platform
Oracle IdentitySolution Set
HR Systemuser info
Oracle Identity
Manager / Oracle Role Management
Business Unit
* Administration of users is delegated to the downstream organization
Dealer
Internal Employees
1,000,000’s of Internet
Users
Key supplier or benefits partner
Oracle Access Manager /
Oracle Adaptive Access
Manager
Web Services Manager
App with Web Service
App with Web Service
Virtual Directory
Directory B
Directory A
Delegation *1,000’s of External
UsersManages
changes to user status (occasional)
Manages user access (daily)
Alternative or complement to
meta-directories
Secures BPEL / Web
Services
SSO across company
boundaries
Any App on Any
Platform
Federation
Federation
Ora
cle eS
SO
Realizing Grid Computing with Oracle
• Service Oriented Architecture (SOA)• Enterprise Security• Grid Computing
PROCESS
receive
getSSN
invokeinvoke
FLOW
select
SCOPE
receivereceive
review
end
getRating
Grid Computing with Oracle
• Storage• Automatic Storage
Management
• Database Servers• Real Application Clusters
(RAC)
• Application Servers• Application Server Clustering
• Grid Control• Enterprise Manager Grid
Control
ASM: Storage Grid
• Oracle Automatic Storage Manager (ASM)
• Provisions storage capacity automatically to Oracle 10g as needed
• Stripes and Balances I/O• Mirrors: Immune to disk failure
• Oracle Automatic Backup and Recovery
• Single backup areafor all Grid databases
• Archive to tape
RAC: The Database Grid
ClusteredDatabase Servers
Mirrored Disk Subsystem
High Speed Switch or Interconnect
Hub or Switch Fabric
Network
Centralized Management Console
Drive and Exploit Industry Advances in Clustering
Users
No SinglePoint Of Failure
Interconnect
Shared CacheShared Cache
Storage Area Network
OC4JOC4JOC4JOC4J
Oracle Middleware Grid Support
Web Client
HTTP
SOAP/HTTP
We
b C
ac
he
We
b C
ac
he
OH
SO
HSHTTP
mod
_oc4j
mod
_oc4j
AJPOC4JOC4J
RACJDBC
Process MonitoringProcess Monitoringand Notification Service with DRMand Notification Service with DRM
• Up/Down• Invalidation• Health
• Up/Down• New• Health• Up/Down• Up/Down
Web ServicesApplication
Scaling Behind Oracle HTTP Server
OC4J OC4J
OC4J OC4J
OracleAS H4
OC4J OC4J
OC4J OC4J
OracleAS H3
OC4J OC4J
OC4J OC4J
OracleAS H5
OracleAS H1
OHSRouter (mod_oc4j)
OracleAS H2
OHSRouter (mod_oc4j) • Load balancing Between OHS/OC4J
• Customized routing for Isolation
HW
Rou
ter
Scaling on Single Node: Multiple JVM Per OC4J
OC4J Instance
Configuration
OracleAS Instance
JVM
JVM JVM
JVM
• Simple. Turn on multiple JVM by setting numprocs > 1• Identical configuration on each runtime instance
Distributed, In Memory Oracle Coherence Data Grid Service
Coherence Data Grid Service
Real Time Clients Application Servers Applications Databases SOA Infrastructure
Distributed, In Memory Oracle Coherence Data Grid
Coherence ClientsFor Data Access, Analytics, Transactions, Events
CMDB(Discover & Reconcile)
EnterpriseManager
ConfigurationManagement
LifecycleAutomation
ApplicationPerformanceManagement
Ext en
si bi li ty an
d I n
t erop
erabil i ty
(Op
en
Sta
nd
ard
s, O
pe
n In
t erf a
ce
s)
Das
hb
oar
ds
and
Rep
ort
s
Oracle Infrastructure ManagementOracle Infrastructure Management
Application ManagementApplication Management
Extended Infrastructure ManagementExtended Infrastructure Management
Enterprise Manager Grid ControlGrid Management - Breadth of Capabilities
SystemMonitoring
ServiceLevel
Management
Oracle Grid Computing
• Dynamic resource provisioning • Realign IT resources as business needs change
• The most cost effective platform• Commodity blade servers• Linux OS• Networked storage accessible via Infiniband, FibreChannel, or
Ethernet
• Software to enable the platform• Oracle Automatic Storage Manager (ASM)• Oracle Database• Oracle Application Server• Oracle Coherence• Oracle Enterprise Manager Grid Control
AQ&Q U E S T I O N SQ U E S T I O N S
A N S W E R SA N S W E R S