IBM Day Minsk 2014 - СЭД «Канцлер» DAY - Connectivity at IBM Day...IBM WebSphere...
Transcript of IBM Day Minsk 2014 - СЭД «Канцлер» DAY - Connectivity at IBM Day...IBM WebSphere...
-
1
WebSphere Integration Solutions
IBM Day Minsk 2014
Anton Litvinov WebSphere Connectivity Professional Central Eastern Europe
-
2
Agenda
3
1
2
4
Understand vision for ESB capabilities
Understand DataPower Basics
DataPower and ESB positioning
Summary
-
4
Enterprise Integration• Clients seeking core foundation platform for
universal integration – may call it an “ESB”• Be able to integrate any endpoints – don't
know what you're going to integrate in future
• Focus on timeliness of information circulating – being able to notify variety of end-points
• Automate a range of integration activities
Security & Integration Use Cases
Security & Integration Gateway• Clients seeking to secure and optimize the
delivery of apps and services – may call this “SOA Gateway” or “Web Services/XML/API gateway” or “Mobile Gateway” or “B2B Gateway”
• Be able to provide lightweight integration including XML offload, message validation/filtering/transformation, dynamic routing & intelligent load distribution
• Focus on securing access to enterprise resources using industry/vendor standards
Private
Cloud
Internet
Trading partner
communities
Mobile, PoS,
ATMs
Big Data
Social &
Internet
Data sources
DMZ DMZAPP
APP
Service
Service DBAPPDB
APP
APP
Internet
Public
CloudMaster
Data
Management
API
Developer &
Customer
communities
Enterprise
Internet of ThingsSensors
DB
ESB
-
6
What is WebSphere Integration Bus?
• Powerful integration Enterprise Service Bus for universal connectivity• Transforming and enriching any type of data
• Complex routing capabilities with visual design tools
• Enterprise-wide transactionality, scaling, performance, high availability
• Range of transport protocols e.g. MQ, JMS, HTTP, FTP
• Built-in integration to enterprise environments and applications e.g. CICS, IMS, DB2, SAP
• Range of Editions (Express, Standard, Advanced) easy upgraded to full capabilities for industry-leading scalability (no new installation required)
DatabasesDatabases
DevicesDevicesFilesFilesPayer ERP/EIS /CRMERP/EIS /CRM
Web 2.0 MicrosoftMicrosoft
Applications MainframeCICS / IMS MainframeCICS / IMS
Web ServicesWeb Services
MQ, JMS, MSMQMQ, JMS, MSMQ
WebSphere Integration Busroute convert transform distribute
-
7
Security & Integration Gateway Appliances
• Securely expose enterprise data to external consumers/partners, while optimizing delivery of the workload
• Securely connect apps/services within the enterprise, while optimizing delivery of the workload and providing lightweight integration including XML offload, message validation/filtering, message/transport protocol transformation, traffic control/quota enforcement, SOA governance & management, dynamic routing & intelligent load distribution
• Physical appliance that is purpose-built, tamper-evident with simplified deployment combining superior performance, hardened security, increased ROI and reduced TCO
• Provides high levels of certified Security assurance• e.g. Transport Protocol Security (SSL/TLS), Message Level Security, and Authentication, Authorization, Audit
• Simplified maintenance model• Drop-in appliance form-factor, Secures traffic in minutes, and Push-button flash upgrade process
• Over a decade of innovation & over 1,800 worldwide installations• Virtual appliance provides deployment flexibility & reduced cost for development and test
environments
What is WebSphere DataPower?
Internet Trusted Domain
Consumer
Application or Service
System z
DMZ
DataPower DataPower
WebSphere
Message
Broker
-
9
Customers get all the capabilities of WESB within Message Broker• All WESB’s capabilities are merging into Broker – only some basic WESB capabilities go into WAS
Significant innovation to Broker to add all the things WESB can do todayCustomers will have a smooth upgrade path for WESB
Message Broker
WESB
embedded Service Busembedded Service Bus
Enterprise Service BusEnterprise Service Bus
1. WESB flows1. WESB flows
2. WESB maps2. WESB maps
3. WESB data3. WESB data
WESB remains in market WESB remains in market
All WESB capabilities merge into MB
All WESB capabilities merge into MB
MB enhanced to address WESB uses cases
MB enhanced to address WESB uses cases Embedded into MBEmbedded into MB
Subset of basic WESB capabilities Subset of basic WESB capabilities
Evolving portfolio
-
10
Making it Easier for DevelopersProviding embedded capabilities to simplify connectivity tasks for developers
Application Developers Application Developers
1. Embedding basic integration capabilities into IBM’s Application Infrastructure Foundation
1. Embedding basic integration capabilities into IBM’s Application Infrastructure Foundation
2. Easily connect apps by choosing and configuring common patterns
2. Easily connect apps by choosing and configuring common patterns
4. Enables an onramp to the full Enterprise- wide Service Bus
4. Enables an onramp to the full Enterprise- wide Service Bus11
Enterprise Service BusEnterprise Service Bus
embedded Service Busembedded Service Bus
22
44
3. Enables WAS applications to connect to each other and to
3. Enables WAS applications to connect to each other and to
33
http://www.google.com/imgres?um=1&hl=en&client=firefox-a&sa=X&rls=org.mozilla:en-US:official&biw=1054&bih=852&tbs=itp:clipart&tbm=isch&tbnid=uT3I5KgkaSex2M:&imgrefurl=http://www.iconfinder.com/icondetails/690/22/configure_shortcuts_tools_icon&docid=Wba6e5-uFSJoQM&imgurl=http://cdn1.iconfinder.com/data/icons/Vista-Inspirate_1.0/128x128/apps/advancedsettings.png&w=128&h=128&ei=27aOT42oN8XJswbKg8HECQ&zoom=1&iact=hc&vpx=282&vpy=422&dur=3342&hovh=102&hovw=102&tx=81&ty=52&sig=111144454546164760930&page=1&tbnh=102&tbnw=102&start=0&ndsp=24&ved=1t:429,r:7,s:0,i:100
-
11
Enabling universal Enterprise Service Bus projectsExtending embedded Service Bus with full ESB capabilities
Public Cloud Private Cloud
EnterpriseInternet
DMZ Trading partner communityMobile
Sensors
22
33
33
3. Enables extended reach to new endpoints and environments 3. Enables extended reach to new endpoints and environments
1. Extend embedded Service Bus with full ESB capabilities to address universal integration needs
1. Extend embedded Service Bus with full ESB capabilities to address universal integration needs
11
Enterprise Service BusEnterprise Service Bus
2. Proves scalable proven connectivity for mission critical core enterprise environment
2. Proves scalable proven connectivity for mission critical core enterprise environment
Application Server
Application Server
Internet
embedded Service Busembedded Service Bus
-
14
Comparing embedded and full ESB capabilities
Planned capabilities
Connects across WAS hosted applications
Support JDBC, REST, Web services
Can configure patterns to connect applications *
Full ESB capabilities
Can define custom mediation flows
Standalone ESB to connect applications and services anywhereIntegrates more than XML and JSON formatted dataIntegrates across more than SOAP and JMS protocolsIntegrates between apps when neither are WAS hosted
embedded Service Busembedded Service BusEnterprise Service BusEnterprise Service Bus
* Only for common App Developer tasks
-
17
Powerfully Simple Enterprise Service BusIBM WebSphere Integration Bus• IBM’s lightweight, comprehensive
Enterprise Service Bus • Delivers universal connectivity and
integration for heterogeneous IT environments• Focus on simplicity – can run new
integrations in as few as 4 clicks!• Connect a wide range of applications,
databases, files and messaging systems• Easy to install in less than 20 minutes• Easy to deploy with growing range of
configurable integration patterns• Grows from Express to Advanced ESB
Delivers universal connectivity & integration with full ESB
capabilities
What’s new and available in V8:– Comprehensive support for Microsoft .Net and
integrated dev experience for MS Visual Studio – Record & Replay capability – High performance open standard parser (DFDL)– New Graphical Mapper for easy transformation– Built connectivity for IBM Sterling Connect:Direct
-
21
SOA Security & Integration Operational Scenario
1. External Party makes Web Service request(Web Services = HTTPS with XML Payload)
8. Transform XML9. Switch protocol (e.g. HTTP to MQ)
10. Route based on content
Web Services Interfaces
FI Owned SystemsExternal Systems
Payment
Interfaces/Protocols
HTTP MQ JMS DB FTP
AccountAggregation
Invoice/Payment
Broker Portal
CustomerPortal
External Systems: different division, partners, consumers, etc
14. Send to security layer13. Transform response
12. Switch protocol11. Aggregate response
17. Send response back16. Encrypt & Sign15. Filter response
Protocol switch
Content Routing
Transform XML
Authenticate
Authorize
Audit
Decrypt XML
Verify Sign.
Validate
6. Insert security token (e.g. SAML, Kerberos)7. Send request to integration layer
Identity Mgmt System (Tivoli, LDAP, etc)
Core Enterprise SystemsAccountServices
ERPHRCRM Credit Card
DataPower Integration Appliance (XI52 or XG45 + DIM)
2. Verify Signature3. Decrypt & Validate
4. Access Identity Mgmt System5. Authenticate & authorize
Request Message
Response Message
Payment
other
MQ, JMS, FTP, HTTP,
etc.
HTTP
Security LayerIntegration Layer
HTTP
DataPower Service Gateway (XG45)
-
2222
Configuration-driven approach speeds time to market
• Enforce security standards with zero coding• Uses intuitive pipeline message processing• Import/export configurations between
environments• Transaction probe shows message content
between actions for debugging
Smarter Business Agility with WebSphere DataPower Appliances
-
23
New streamlined WebSphere DataPower Appliance offering meets your Security and Connectivity needs
Integration Appliance XI52, XI50b and XI50zIntegration Appliance XI52, XI50b and XI50z
• Additional Network Interfaces• More HDD for logging and Audit• Increased performance• SFTP
• IMS Connect• TIBCO EMS• ODBC• Tivoli Option
-
26
What’s New?WebSphere DataPower XG45 and XI52 physical appliance functionality in a “virtual
appliance” form-factor running on VMware hypervisor
Features/Business ValueIndustry-leading workload security, optimization, and integration functionality similar
to the corresponding physical DataPower appliance modelsPowered by a purpose-built platform including an embedded, optimized DataPower
Operating SystemAbility to upgrade and downgrade firmware similar to physical appliancesSeamless configuration migration between physical and virtual appliances
Client BenefitsA flexible, cost effective choice for non-production environmentsA production solution for environments not suitable for physical appliance
deploymentOffers ability to use virtual appliances for development/test environments and
physical appliances for staging, production and disaster recovery
Announce dateOct 23, 2012
GA dateNov 30, 2012
IBM WebSphere DataPower Virtual Edition Deployment flexibility & reduced cost for development and test environments
-
28
DataPower Virtual Appliance Positioning
• Physical appliances for all environments• Hardened physical security (FIPS 140-2 compliance, and Common Criteria EAL4)• Simplified deployment• Hardware acceleration for fast performance• Lower TCO
• Virtual for Test and Development and physical for Staging, Production and Disaster Recovery
• Flexible and cost effective Test / Development environments
Development Test(Functional &
System)
Test (Performance &
Load)
Staging Production Disaster Recovery
Physical for all environments Physical Physical Physical Physical Physical Physical
Virtual for lower environments (Recommended)
Virtual Virtual Physical Physical Physical Physical
Virtual for lower environments (Minimum)
Virtual Virtual Virtual Physical Physical Physical
-
3030
WebSphere Appliance Management Center
• Provide multi-box DataPower appliance managementSupport managed sets of different appliance models & firmwareExploits new support for managed domain tasks, configuration &
firmware deploymentsManage deployment policies for DataPower appliances, individually
or in managed sets• Simplified installation
Enhanced Installation – for simplification and faster time to value• DataPower currency
Support latest DP devices and agent platforms - for increased adoption
• Enhanced monitoring capability for more DataPower appliances KPIs
Out of the box monitoring of DataPower device – for visibility and control of DataPower performance and availability
• Ease of Use
Enhanced Configuration UI – ease of use navigation by user role• Seamless integration into the Tivoli Monitoring infrastructure
Integrates into IBM’s Service Management solution
30
Simplified Operations Management reduces operations costs
-
31
WebSphere Integration Solutions ��IBM Day Minsk 2014��Anton Litvinov�WebSphere Connectivity Professional�Central Eastern EuropeAgendaSlide Number 4Slide Number 6Slide Number 7Slide Number 9Slide Number 10Slide Number 11Slide Number 14Slide Number 17SOA Security & Integration Operational Scenario Configuration-driven approach speeds time to marketNew streamlined WebSphere DataPower Appliance offering meets your Security and Connectivity needsIBM WebSphere DataPower Virtual Edition�Deployment flexibility & reduced cost for development and test environmentsDataPower Virtual Appliance Positioning WebSphere Appliance Management CenterSlide Number 31