Collaboration-oriented architecture

Collaboration-oriented architecture

Collaboration Oriented Architecture is a concept used to describe the design of a computer system that is designed to collaborate, or use services, from systems that are outside of your locus of control. Collaboration Oriented Architecture will often utilize Service Oriented Architecture to deliver the technical framework.

Collaboration Oriented Architecture is the ability to collaborate between systems that are based on the Jericho Forum principles or “Commandments”.[1]

Bill Gates and Craig Mundie (Microsoft) [2][3] clearly articulated the need for people to work outside of their organizations in a secure and collaborative manner in their opening keynote to the RSA Security Conference in February 2007.

Successful implementation of a Collaboration Oriented Architecture implies the ability to successfully inter-work securely over the Internet and will typically mean the resolution of the problems that come with de-perimeterisation.

Contents

Origin of the term

The term Collaboration Oriented Architectures [4] was defined and developed in a meeting of the Jericho Forum at a meeting held at HSBC on the 6th July 2007.

Definition of a Collaboration Oriented Architecture

The key elements that qualify a security architecture as a Collaboration Oriented Architecture are as follows;

  • Protocol: Systems use appropriately secure protocols to communicate.
  • Authentication: The protocol is authenticated with user and/or system credentials).
  • Federation: User and/or systems credentials are accepted and validated by systems that are not under your (locus of) control.
  • Network Agnostic: The design does not rely on a secure network, thus it will operate securely from an Intranet to raw-Internet
  • Trust: The collaborating system have the capacity to be able to confirm to a specified degree of confidence that the components in a transaction chain have.
  • Risk: The collaborating systems can make a risk assessment on any transaction based on the communicated levels of required trust, based on the required degree of identity, confidentiality, integrity, availability.

Authentication in a Collaboration Oriented Architecture

Working in a collaborative multi-sourced environment implies the need for authentication, authorization and accountability which must interoperate / exchange outside of your locus / area of control.[5]

  • People/systems must be able to manage permissions of resources and rights of users they don't control
  • There must be capability of trusting an organization, which can authenticate individuals or groups, thus eliminating the need to create separate identities
  • In principle, only one instance of person / system / identity may exist, but privacy necessitates the support for multiple instances, or one instance with multiple facets, often referred to s personas
  • Systems must be able to pass on security credentials /assertions
  • Multiple loci (areas) of control must be supported

References

External links


Wikimedia Foundation. 2010.

Игры ⚽ Поможем решить контрольную работу

Look at other dictionaries:

  • Collaboration Oriented Architecture — This is a term used in the areas of information security, IT security, network security and computer security.Collaboration Oriented Architecture is a concept used to describe the design of a computer system that is designed to collaborate, or… …   Wikipedia

  • Service-oriented architecture — (SOA) is a method for systems development and integration where functionality is grouped around business processes and packaged as interoperable services . SOA also describes IT infrastructure which allows different applications to exchange data… …   Wikipedia

  • Semantic service oriented architecture — A Semantic Service Oriented Architecture (SSOA) is a computer architecture that allows for scalable and controlled Enterprise Application Integration solutions. [ [http://www.wsmx.org/papers/publications/SSOA.pdf Exposing Semantic Web Service… …   Wikipedia

  • Architecture de la base UDDI — Universal Description Discovery and Integration Universal Description Discovery and Integration, connu aussi sous l acronyme UDDI, est un annuaire de services fondé sur XML et plus particulièrement destiné aux services Web. UDDI a été conçu pour… …   Wikipédia en Français

  • Architecture and Civil Engineering — ▪ 2009 Introduction Architecture       For Notable Civil Engineering Projects in work or completed in 2008, see Table (Notable Civil Engineering Projects (in work or completed, 2008)).        Beijing was the centre of the world of architecture… …   Universalium

  • Service component architecture — (SCA) is a relatively new initiative advocated by major software vendors. Its proponents claim it is more natively suited for the delivery of applications that conform with the principles of service oriented architecture. As such, SCA components… …   Wikipedia

  • Network-Centric Service-Oriented Enterprise (NCSOE) — is a new generation enterprise capable of conducting collaboration and management of internal and external information. Using Network Centric Enterprise Services (NCES) , the enterprise can now enforce information and decision superiority in a… …   Wikipedia

  • Service Oriented Infrastructure — or SOI ( [pronounced sō i or es ō i ] ) is a system for describing IT infrastructure as a service. The underlying principles go back to, among others, Mainframe and LDAP technologies, but SOI provides a framework or mindset making business… …   Wikipedia

  • Éléments d'architecture UDDI — Universal Description Discovery and Integration Universal Description Discovery and Integration, connu aussi sous l acronyme UDDI, est un annuaire de services fondé sur XML et plus particulièrement destiné aux services Web. UDDI a été conçu pour… …   Wikipédia en Français

  • Service-oriented Communications — (SOC) technologies are designed to be easily used in the context of Service oriented Architectures. These technologies are generally software based and are built more like a business application than a traditional PBX business communications… …   Wikipedia

Share the article and excerpts

Direct link
Do a right-click on the link above
and select “Copy Link”