SlideShare ist ein Scribd-Unternehmen logo

Forecast 2014: SaaS Data Exchange

Open Data Center Alliance
Open Data Center Alliance

An overview of the new Data Exchange for SaaS Usage Model is provided in this session. This usage model addresses the challenges that many organizations face when exchanging data with a SaaS provider. It also describes steps organizations can take in the planning and implementation phases to remediate these challenges.

Technologie
1 von 27
Downloaden Sie, um offline zu lesen
SAAS DATA EXCHANGE Vijay Ranjan Mungara ODCA Data Services Team Intel Corporation
AGENDA  Purpose  Audience  Scope  Challenges & Solutions • Regulatory Requirements & Standards • Data Management • SaaS Provider Code Releases • Data Security  Summary of Industry Actions Required 2
OBJECTIVE  Best Practices, challenges for SaaS Data Exchange that organizations can use for planning and implementation • Best Practices for data management applies • Additional Challenges with SaaS is the focus of this presentation  Challenges include integration, security & interoperability between SaaS providers and Consumers 3
DEFINITION 4
REGULATORY REQUIREMENTS & STANDARDS  Compliance with local regulatory (Privacy, Storage, Mandates, Legal, Country Laws, Audit Laws) requirements  Outsourcing standard and/or policies  Business continuity management standards and/or policies  Risk management standards and/or policies  Guidance, standards, and policies to manage and govern data and security risks 5
CHALLENGES 6
CHALLENGES DATA OWNERSHIP / LOCATION  Data Ownership • Irrespective of jurisdiction, data storage across multiple cloud service providers could lead to data fragmentation and cause data ownership problems when cloud services are terminated. • Contractual Agreements between Provider/Consumer needs to consider ownership of Intellectual Property & Integrity  Data Location • Data fragmentation or distribution across cloud service providers • Applicable regulatory and legal framework of the jurisdiction • Location of information storage and contractual controls • Regulatory obligations compliance 7
SOLUTIONS 8
DATA GOVERNANCE  Defines policies around • Retention and disposition of corporate information • Identifies people who govern these activities. • Examples: • APRA standards and guidelines, PCI DSS, ISACA’s CoBIT /COSO frameworks, the Commonwealth’s Privacy Act, along with international legislation such as Sarbanes-Oxley, HIPAA, AML, and sanctions screening are increasingly driving regulators’ focus on the data management process and associated controls. 9
DATA CONTROLS Identify •Data stores, •business owners • locations •suppliers •Relevant regulatory, legislative Classify and perform a valuation of data assets Determine enterprise risk drivers and risk tolerance Implement an appropriate data control framework (examples include CoBIT, COSO, and ISO 27001/2) Ensure regular monitoring, auditing, and reporting activities 10
DATA MANAGEMENT 11
DATA MANAGEMENT 12 Lack of Data Documentation • Infer data model from API documentation Extending Data •Weigh configuration vs. customization Data Exchange • Select best solution based on data usage requirement Data Validation • Use standard data management techniques
CHALLENGE: LACK OF DATA DOCUMENTATION Use traditional data management techniques to infer the data model and structure from API documentation • Steps • Referencing the documentation to identify entities 13 • RESTful APIs typically have end points that represent entities • Look for collections within the end points, since they can represent entities • Build a conceptual entity model from the identified entities • Build out relationships based on description • Layer in the attributes from the documentation • Review and refine • Create the semantic mapping to the business’ canonical model • Example overview • Example documentation from a RESTful API to a customer record
CHALLENGE: LACK OF DATA DOCUMENTATION - EXAMPLE 14 Customer API JSON response Attribute Description cutomerGuid Unique identifier (GUID) assigned when created alternateId Alternate key identified from another system firstName The customer’s first name middleName The customer's middle name or middle initial lastName The customer's last name email The email address for the account dateOfBirth The birthdate of the user of the account, ISO 8601 (YYYY-MM-DD) gender The gender of the customer. Format is ISO 5218 addresses A collection for address information addressGuid The unique identifier for the address type The location/purpose for an address. line1..3 The first, second, and third lines of the customer's address city The city associated with the address stateProvince The state or province, ISO 3166-2. Maximum is three characters. postalCode The ZIP code or postal code. country The region/country, ISO 3166. Maximum is two characters. preferred Default ""false"". At most one address may be preferred phones A collection for phone information. phoneGuid The unique identifier for the phone number type The purpose or type of phone number. number The actual phone number internationalPrefix The international calling code for the phone number.
CHALLENGE: LACK OF DATA DOCUMENTATION - EXAMPLE 15 Semantic mapping Canonical Internal System 1 SaaS Service 1 Customer Interface Entity Attribute Entity Attribute Attribute Customer Customer Identifier customer customer_id alternateId External Customer External Customer Mapping Identifier customer_account_map ext_customer_id customerGuid Customer First Name customer first_name firstName Customer Middle Name customer middle_name middleName Customer … … … … Customer Address Address Type customer_address address_type addresses.type Customer Address Address Line 1 customer_address address_line_1 addresses.line1 Customer Address … … … … Customer Phone Phone Type customer_phone phone_type phones.type Customer Phone Phone Number customer_phone phone_number phones.number Customer Phone … … … … … … … … …
CHALLENGE: EXTENDING DATA 16 Configuration is a better option than customization Configuration Customization Supported out of the box Requires custom coding Vendor should support functionality between versions Requires testing with each vendor upgrade Limited to what the vendor offers in terms of configuration Build anything that is required
RELEASE UPGRADE PLANS 17
SAAS PROVIDER CODE RELEASES Challenges • Frequent Provider Releases can cause • Inconsistencies • Mismatch in the version of Data • Breakage in data exchange process • Errors in Code, Runtime, Interface & data • Service consumers can’t always upgrade at the same time • Changes in data content, context and format • Appropriate release times needs to be co-ordinated so as to minimally impact organizations’ IT systems. 18
SOLUTIONS 19
RELEASE PLAN (PROVIDER) AND UPGRADE PLAN (CONSUMER)  Providers should make a detailed release plan for service consumers, this plan should identify • Important milestones • New technical specification • When (and how) the service consumers can execute beta testing if necessary, when the new version of code will be officially available, and when the old version of code will no longer be available  Based on the provider’s release plan, service consumers should • Create their own upgrade plan to decide when they • Should identify the impact scope, • Need to complete the code revision and testing, • To upgrade their IT systems that are influenced by this provider code release. 20
RELEASE PLAN ESSENTIALS Non-production Test Environment. Phased Upgrade Deployment Strategy. Announcement and Reminding Mechanism. Upgrade Timing Choice. Partial-to-All Approach. 21
DATA SECURITY 22
DATA SECURITY  Controls that can provide the appropriate level of data protection.  Existing threats of tampering or theft of data in transit implies that most sensitive information is already encrypted in transit. • However, recent data theft has occurred while data is at rest— underscoring the need for cloud-based data security.  The ODCA Data Security Framework and the Security usage model discuss in detail data security and define requirements associated with increasing data security in the cloud. In particular, the Data Security Framework documents the following data security controls:  References • http://www.opendatacenteralliance.org/docs/Data_Security_Framework_Rev1.0.pdf • http://www.opendatacenteralliance.org/docs/Data_Security_Rev1.0.pdf 23
SUMMARY OF INDUSTRY ACTIONS  The following actions are required by the combined solution provider and consumer communities: • Solution providers need to build better data management tooling into cloud services. • Solution providers should provide clear documentation about what data is managed by their SaaS solution. This documentation ideally includes the following: • Conceptual data model of the solution • Data dictionary of the data managed by their solution • Mapping of the conceptual model to the APIs and interface elements  The industry needs to continue to develop and adopt standards for accessing data, specifically in the areas of querying and reading data. 24
THANK YOU
26
© 2 0 1 4 O p e n D a t a C e n t e r A l l i a n c e , I n c . A L L R I G H T S R E S E R V E D .

Empfohlen

Info sphere overview
Info sphere overviewInfo sphere overview
Info sphere overviewBhawani N Prasad
 
Financial Institution_Market Data Cost Allocation
Financial Institution_Market Data Cost AllocationFinancial Institution_Market Data Cost Allocation
Financial Institution_Market Data Cost AllocationBurak S. Arikan
 
Data Quality Services
Data Quality ServicesData Quality Services
Data Quality ServicesHarshendu Desai
 
TSPUG: Content Management in SharePoint 2010
TSPUG: Content Management in SharePoint 2010TSPUG: Content Management in SharePoint 2010
TSPUG: Content Management in SharePoint 2010Eli Robillard
 
Operationalizing the Value of MongoDB: The MetLife Experience
Operationalizing the Value of MongoDB: The MetLife ExperienceOperationalizing the Value of MongoDB: The MetLife Experience
Operationalizing the Value of MongoDB: The MetLife ExperienceMongoDB
 
Service Oriented Architecture
Service Oriented ArchitectureService Oriented Architecture
Service Oriented ArchitectureRobert Sim
 
BI - Comparison of open source and traditional vendor
BI - Comparison of open source and traditional vendorBI - Comparison of open source and traditional vendor
BI - Comparison of open source and traditional vendorOKTOPUS Consulting
 
Kaizentric Presentation
Kaizentric PresentationKaizentric Presentation
Kaizentric PresentationAzhagarasan Annadorai
 

Empfohlen

Info sphere overview
Info sphere overviewInfo sphere overview
Info sphere overviewBhawani N Prasad
 
Financial Institution_Market Data Cost Allocation
Financial Institution_Market Data Cost AllocationFinancial Institution_Market Data Cost Allocation
Financial Institution_Market Data Cost AllocationBurak S. Arikan
 
Data Quality Services
Data Quality ServicesData Quality Services
Data Quality ServicesHarshendu Desai
 
TSPUG: Content Management in SharePoint 2010
TSPUG: Content Management in SharePoint 2010TSPUG: Content Management in SharePoint 2010
TSPUG: Content Management in SharePoint 2010Eli Robillard
 
Operationalizing the Value of MongoDB: The MetLife Experience
Operationalizing the Value of MongoDB: The MetLife ExperienceOperationalizing the Value of MongoDB: The MetLife Experience
Operationalizing the Value of MongoDB: The MetLife ExperienceMongoDB
 
Service Oriented Architecture
Service Oriented ArchitectureService Oriented Architecture
Service Oriented ArchitectureRobert Sim
 
BI - Comparison of open source and traditional vendor
BI - Comparison of open source and traditional vendorBI - Comparison of open source and traditional vendor
BI - Comparison of open source and traditional vendorOKTOPUS Consulting
 
Kaizentric Presentation
Kaizentric PresentationKaizentric Presentation
Kaizentric PresentationAzhagarasan Annadorai
 
How a Logical Data Fabric Enhances the Customer 360 View
How a Logical Data Fabric Enhances the Customer 360 ViewHow a Logical Data Fabric Enhances the Customer 360 View
How a Logical Data Fabric Enhances the Customer 360 ViewDenodo
 
Cloud Security Standards: What to Expect and What to Negotiate V2.0
Cloud Security Standards: What to Expect and What to Negotiate V2.0Cloud Security Standards: What to Expect and What to Negotiate V2.0
Cloud Security Standards: What to Expect and What to Negotiate V2.0Cloud Standards Customer Council
 
Implementing Advanced Analytics Platform
Implementing Advanced Analytics PlatformImplementing Advanced Analytics Platform
Implementing Advanced Analytics PlatformArvind Sathi
 
Cloud & Enterprise IT. Hybrid IT, Coexistence Strategies
Cloud & Enterprise IT. Hybrid IT, Coexistence StrategiesCloud & Enterprise IT. Hybrid IT, Coexistence Strategies
Cloud & Enterprise IT. Hybrid IT, Coexistence StrategiesOpen Data Center Alliance
 
Latest Developments in Cloud Security Standards and Privacy
Latest Developments in Cloud Security Standards and PrivacyLatest Developments in Cloud Security Standards and Privacy
Latest Developments in Cloud Security Standards and PrivacyCloud Standards Customer Council
 
Unlock your core business assets for the hybrid cloud with addi webinar dec...
Unlock your core business assets for the hybrid cloud with addi webinar dec...Unlock your core business assets for the hybrid cloud with addi webinar dec...
Unlock your core business assets for the hybrid cloud with addi webinar dec...Sherri Hanna
 
Salesforce Multitenant Architecture: How We Do the Magic We Do
Salesforce Multitenant Architecture: How We Do the Magic We DoSalesforce Multitenant Architecture: How We Do the Magic We Do
Salesforce Multitenant Architecture: How We Do the Magic We DoSalesforce Developers
 
Public Cloud Service Agreements: What to Expect and What to Negotiate V2.0
Public Cloud Service Agreements: What to Expect and What to Negotiate V2.0Public Cloud Service Agreements: What to Expect and What to Negotiate V2.0
Public Cloud Service Agreements: What to Expect and What to Negotiate V2.0Cloud Standards Customer Council
 
Concorde Solutions ITAM Review Tools Day
Concorde Solutions ITAM Review Tools Day Concorde Solutions ITAM Review Tools Day
Concorde Solutions ITAM Review Tools Day Martin Thompson
 
Cloud services and it security
Cloud services and it securityCloud services and it security
Cloud services and it securityEast Midlands Cyber Security Forum
 
RowanDay3.pptx
RowanDay3.pptxRowanDay3.pptx
RowanDay3.pptxMattMarino13
 
An intro to building an architecture repository meta model and modeling frame...
An intro to building an architecture repository meta model and modeling frame...An intro to building an architecture repository meta model and modeling frame...
An intro to building an architecture repository meta model and modeling frame...wweinmeyer79
 
Denodo DataFest 2017: Conquering the Edge with Data Virtualization
Denodo DataFest 2017: Conquering the Edge with Data VirtualizationDenodo DataFest 2017: Conquering the Edge with Data Virtualization
Denodo DataFest 2017: Conquering the Edge with Data VirtualizationDenodo
 
Applying Auto-Data Classification Techniques for Large Data Sets
Applying Auto-Data Classification Techniques for Large Data SetsApplying Auto-Data Classification Techniques for Large Data Sets
Applying Auto-Data Classification Techniques for Large Data SetsPriyanka Aash
 
Forecast odcau2 100_posttech
Forecast odcau2 100_posttechForecast odcau2 100_posttech
Forecast odcau2 100_posttechOpen Data Center Alliance
 
Forecast 2014: Infrastructure as a Service (IaaS)
Forecast 2014: Infrastructure as a Service (IaaS)Forecast 2014: Infrastructure as a Service (IaaS)
Forecast 2014: Infrastructure as a Service (IaaS)Open Data Center Alliance
 
Cisco Analytics: Accelerate Network Optimization with Virtualization
Cisco Analytics: Accelerate Network Optimization with VirtualizationCisco Analytics: Accelerate Network Optimization with Virtualization
Cisco Analytics: Accelerate Network Optimization with VirtualizationCisco Canada
 
Transforming cloud security into an advantage
Transforming cloud security into an advantageTransforming cloud security into an advantage
Transforming cloud security into an advantageMoshe Ferber
 
INTRODUCTION to software engineering requirements specifications
INTRODUCTION to software engineering requirements specificationsINTRODUCTION to software engineering requirements specifications
INTRODUCTION to software engineering requirements specificationskylan2
 
Achieving a Single View of Business – Critical Data with Master Data Management
Achieving a Single View of Business – Critical Data with Master Data ManagementAchieving a Single View of Business – Critical Data with Master Data Management
Achieving a Single View of Business – Critical Data with Master Data ManagementDATAVERSITY
 
ODCA DevOps: Magnifying Business Value
ODCA DevOps: Magnifying Business ValueODCA DevOps: Magnifying Business Value
ODCA DevOps: Magnifying Business ValueOpen Data Center Alliance
 
Open Data Center Alliance 2014 Member Survey on Cloud Adoption
Open Data Center Alliance 2014 Member Survey on Cloud AdoptionOpen Data Center Alliance 2014 Member Survey on Cloud Adoption
Open Data Center Alliance 2014 Member Survey on Cloud AdoptionOpen Data Center Alliance
 

Weitere ähnliche Inhalte

Ähnlich wie Forecast 2014: SaaS Data Exchange

How a Logical Data Fabric Enhances the Customer 360 View
How a Logical Data Fabric Enhances the Customer 360 ViewHow a Logical Data Fabric Enhances the Customer 360 View
How a Logical Data Fabric Enhances the Customer 360 ViewDenodo
 
Cloud Security Standards: What to Expect and What to Negotiate V2.0
Cloud Security Standards: What to Expect and What to Negotiate V2.0Cloud Security Standards: What to Expect and What to Negotiate V2.0
Cloud Security Standards: What to Expect and What to Negotiate V2.0Cloud Standards Customer Council
 
Implementing Advanced Analytics Platform
Implementing Advanced Analytics PlatformImplementing Advanced Analytics Platform
Implementing Advanced Analytics PlatformArvind Sathi
 
Cloud & Enterprise IT. Hybrid IT, Coexistence Strategies
Cloud & Enterprise IT. Hybrid IT, Coexistence StrategiesCloud & Enterprise IT. Hybrid IT, Coexistence Strategies
Cloud & Enterprise IT. Hybrid IT, Coexistence StrategiesOpen Data Center Alliance
 
Latest Developments in Cloud Security Standards and Privacy
Latest Developments in Cloud Security Standards and PrivacyLatest Developments in Cloud Security Standards and Privacy
Latest Developments in Cloud Security Standards and PrivacyCloud Standards Customer Council
 
Unlock your core business assets for the hybrid cloud with addi webinar dec...
Unlock your core business assets for the hybrid cloud with addi webinar dec...Unlock your core business assets for the hybrid cloud with addi webinar dec...
Unlock your core business assets for the hybrid cloud with addi webinar dec...Sherri Hanna
 
Salesforce Multitenant Architecture: How We Do the Magic We Do
Salesforce Multitenant Architecture: How We Do the Magic We DoSalesforce Multitenant Architecture: How We Do the Magic We Do
Salesforce Multitenant Architecture: How We Do the Magic We DoSalesforce Developers
 
Public Cloud Service Agreements: What to Expect and What to Negotiate V2.0
Public Cloud Service Agreements: What to Expect and What to Negotiate V2.0Public Cloud Service Agreements: What to Expect and What to Negotiate V2.0
Public Cloud Service Agreements: What to Expect and What to Negotiate V2.0Cloud Standards Customer Council
 
Concorde Solutions ITAM Review Tools Day
Concorde Solutions ITAM Review Tools Day Concorde Solutions ITAM Review Tools Day
Concorde Solutions ITAM Review Tools Day Martin Thompson
 
An intro to building an architecture repository meta model and modeling frame...
An intro to building an architecture repository meta model and modeling frame...An intro to building an architecture repository meta model and modeling frame...
An intro to building an architecture repository meta model and modeling frame...wweinmeyer79
 
Denodo DataFest 2017: Conquering the Edge with Data Virtualization
Denodo DataFest 2017: Conquering the Edge with Data VirtualizationDenodo DataFest 2017: Conquering the Edge with Data Virtualization
Denodo DataFest 2017: Conquering the Edge with Data VirtualizationDenodo
 
Applying Auto-Data Classification Techniques for Large Data Sets
Applying Auto-Data Classification Techniques for Large Data SetsApplying Auto-Data Classification Techniques for Large Data Sets
Applying Auto-Data Classification Techniques for Large Data SetsPriyanka Aash
 
Forecast 2014: Infrastructure as a Service (IaaS)
Forecast 2014: Infrastructure as a Service (IaaS)Forecast 2014: Infrastructure as a Service (IaaS)
Forecast 2014: Infrastructure as a Service (IaaS)Open Data Center Alliance
 
Cisco Analytics: Accelerate Network Optimization with Virtualization
Cisco Analytics: Accelerate Network Optimization with VirtualizationCisco Analytics: Accelerate Network Optimization with Virtualization
Cisco Analytics: Accelerate Network Optimization with VirtualizationCisco Canada
 
Transforming cloud security into an advantage
Transforming cloud security into an advantageTransforming cloud security into an advantage
Transforming cloud security into an advantageMoshe Ferber
 
INTRODUCTION to software engineering requirements specifications
INTRODUCTION to software engineering requirements specificationsINTRODUCTION to software engineering requirements specifications
INTRODUCTION to software engineering requirements specificationskylan2
 
Achieving a Single View of Business – Critical Data with Master Data Management
Achieving a Single View of Business – Critical Data with Master Data ManagementAchieving a Single View of Business – Critical Data with Master Data Management
Achieving a Single View of Business – Critical Data with Master Data ManagementDATAVERSITY
 

Ähnlich wie Forecast 2014: SaaS Data Exchange (20)

How a Logical Data Fabric Enhances the Customer 360 View
How a Logical Data Fabric Enhances the Customer 360 ViewHow a Logical Data Fabric Enhances the Customer 360 View
How a Logical Data Fabric Enhances the Customer 360 View
 
Cloud Security Standards: What to Expect and What to Negotiate V2.0
Cloud Security Standards: What to Expect and What to Negotiate V2.0Cloud Security Standards: What to Expect and What to Negotiate V2.0
Cloud Security Standards: What to Expect and What to Negotiate V2.0
 
Implementing Advanced Analytics Platform
Implementing Advanced Analytics PlatformImplementing Advanced Analytics Platform
Implementing Advanced Analytics Platform
 
Cloud & Enterprise IT. Hybrid IT, Coexistence Strategies
Cloud & Enterprise IT. Hybrid IT, Coexistence StrategiesCloud & Enterprise IT. Hybrid IT, Coexistence Strategies
Cloud & Enterprise IT. Hybrid IT, Coexistence Strategies
 
Latest Developments in Cloud Security Standards and Privacy
Latest Developments in Cloud Security Standards and PrivacyLatest Developments in Cloud Security Standards and Privacy
Latest Developments in Cloud Security Standards and Privacy
 
Unlock your core business assets for the hybrid cloud with addi webinar dec...
Unlock your core business assets for the hybrid cloud with addi webinar dec...Unlock your core business assets for the hybrid cloud with addi webinar dec...
Unlock your core business assets for the hybrid cloud with addi webinar dec...
 
Salesforce Multitenant Architecture: How We Do the Magic We Do
Salesforce Multitenant Architecture: How We Do the Magic We DoSalesforce Multitenant Architecture: How We Do the Magic We Do
Salesforce Multitenant Architecture: How We Do the Magic We Do
 
Public Cloud Service Agreements: What to Expect and What to Negotiate V2.0
Public Cloud Service Agreements: What to Expect and What to Negotiate V2.0Public Cloud Service Agreements: What to Expect and What to Negotiate V2.0
Public Cloud Service Agreements: What to Expect and What to Negotiate V2.0
 
Concorde Solutions ITAM Review Tools Day
Concorde Solutions ITAM Review Tools Day Concorde Solutions ITAM Review Tools Day
Concorde Solutions ITAM Review Tools Day
 
Cloud services and it security
Cloud services and it securityCloud services and it security
Cloud services and it security
 
RowanDay3.pptx
RowanDay3.pptxRowanDay3.pptx
RowanDay3.pptx
 
An intro to building an architecture repository meta model and modeling frame...
An intro to building an architecture repository meta model and modeling frame...An intro to building an architecture repository meta model and modeling frame...
An intro to building an architecture repository meta model and modeling frame...
 
Denodo DataFest 2017: Conquering the Edge with Data Virtualization
Denodo DataFest 2017: Conquering the Edge with Data VirtualizationDenodo DataFest 2017: Conquering the Edge with Data Virtualization
Denodo DataFest 2017: Conquering the Edge with Data Virtualization
 
Applying Auto-Data Classification Techniques for Large Data Sets
Applying Auto-Data Classification Techniques for Large Data SetsApplying Auto-Data Classification Techniques for Large Data Sets
Applying Auto-Data Classification Techniques for Large Data Sets
 
Forecast odcau2 100_posttech
Forecast odcau2 100_posttechForecast odcau2 100_posttech
Forecast odcau2 100_posttech
 
Forecast 2014: Infrastructure as a Service (IaaS)
Forecast 2014: Infrastructure as a Service (IaaS)Forecast 2014: Infrastructure as a Service (IaaS)
Forecast 2014: Infrastructure as a Service (IaaS)
 
Cisco Analytics: Accelerate Network Optimization with Virtualization
Cisco Analytics: Accelerate Network Optimization with VirtualizationCisco Analytics: Accelerate Network Optimization with Virtualization
Cisco Analytics: Accelerate Network Optimization with Virtualization
 
Transforming cloud security into an advantage
Transforming cloud security into an advantageTransforming cloud security into an advantage
Transforming cloud security into an advantage
 
INTRODUCTION to software engineering requirements specifications
INTRODUCTION to software engineering requirements specificationsINTRODUCTION to software engineering requirements specifications
INTRODUCTION to software engineering requirements specifications
 
Achieving a Single View of Business – Critical Data with Master Data Management
Achieving a Single View of Business – Critical Data with Master Data ManagementAchieving a Single View of Business – Critical Data with Master Data Management
Achieving a Single View of Business – Critical Data with Master Data Management
 

Mehr von Open Data Center Alliance

Open Data Center Alliance 2014 Member Survey on Cloud Adoption
Open Data Center Alliance 2014 Member Survey on Cloud AdoptionOpen Data Center Alliance 2014 Member Survey on Cloud Adoption
Open Data Center Alliance 2014 Member Survey on Cloud AdoptionOpen Data Center Alliance
 
ODCA Board Best Practice: High Performance Computing at BMW
ODCA Board Best Practice: High Performance Computing at BMWODCA Board Best Practice: High Performance Computing at BMW
ODCA Board Best Practice: High Performance Computing at BMWOpen Data Center Alliance
 
Forecast 2014: Making Better Business Decisions with Big Data and IoT
Forecast 2014: Making Better Business Decisions with Big Data and IoTForecast 2014: Making Better Business Decisions with Big Data and IoT
Forecast 2014: Making Better Business Decisions with Big Data and IoTOpen Data Center Alliance
 
Forecast 2014: The Grand Challenge, Simplifying IT to Unleash Innovation
Forecast 2014: The Grand Challenge, Simplifying IT to Unleash InnovationForecast 2014: The Grand Challenge, Simplifying IT to Unleash Innovation
Forecast 2014: The Grand Challenge, Simplifying IT to Unleash InnovationOpen Data Center Alliance
 
Forecast 2014: Why Open Platforms Matter to Enterprises and Developers
Forecast 2014: Why Open Platforms Matter to Enterprises and DevelopersForecast 2014: Why Open Platforms Matter to Enterprises and Developers
Forecast 2014: Why Open Platforms Matter to Enterprises and DevelopersOpen Data Center Alliance
 
Forecast 2014: ODCA Cloud Maturity Model V2.0
Forecast 2014: ODCA Cloud Maturity Model V2.0Forecast 2014: ODCA Cloud Maturity Model V2.0
Forecast 2014: ODCA Cloud Maturity Model V2.0Open Data Center Alliance
 
Forecast 2014: TOSCA: An Open Standard for Business Application Agility and P...
Forecast 2014: TOSCA: An Open Standard for Business Application Agility and P...Forecast 2014: TOSCA: An Open Standard for Business Application Agility and P...
Forecast 2014: TOSCA: An Open Standard for Business Application Agility and P...Open Data Center Alliance
 
Forecast 2014: Maximizing Your Cloud Service Quality and Costs
Forecast 2014: Maximizing Your Cloud Service Quality and Costs Forecast 2014: Maximizing Your Cloud Service Quality and Costs
Forecast 2014: Maximizing Your Cloud Service Quality and Costs Open Data Center Alliance
 
Forecast 2014: Welcome to the ODCA University - School is Way Cool!
Forecast 2014: Welcome to the ODCA University - School is Way Cool!Forecast 2014: Welcome to the ODCA University - School is Way Cool!
Forecast 2014: Welcome to the ODCA University - School is Way Cool!Open Data Center Alliance
 
Forecast 2014: Software Defined Networking - What's New?
Forecast 2014: Software Defined Networking - What's New? Forecast 2014: Software Defined Networking - What's New?
Forecast 2014: Software Defined Networking - What's New? Open Data Center Alliance
 
Forecast 2014: Business Strategy Enabled by Cloud
Forecast 2014: Business Strategy Enabled by Cloud Forecast 2014: Business Strategy Enabled by Cloud
Forecast 2014: Business Strategy Enabled by Cloud Open Data Center Alliance
 
Forecast 2014 Keynote: Re-architecting the Data Center for the Digital Servic...
Forecast 2014 Keynote: Re-architecting the Data Center for the Digital Servic...Forecast 2014 Keynote: Re-architecting the Data Center for the Digital Servic...
Forecast 2014 Keynote: Re-architecting the Data Center for the Digital Servic...Open Data Center Alliance
 
Forecast 2014 Keynote: State of Cloud Migration…What's Occurring Now, and Wha...
Forecast 2014 Keynote: State of Cloud Migration…What's Occurring Now, and Wha...Forecast 2014 Keynote: State of Cloud Migration…What's Occurring Now, and Wha...
Forecast 2014 Keynote: State of Cloud Migration…What's Occurring Now, and Wha...Open Data Center Alliance
 

Mehr von Open Data Center Alliance (20)

ODCA DevOps: Magnifying Business Value
ODCA DevOps: Magnifying Business ValueODCA DevOps: Magnifying Business Value
ODCA DevOps: Magnifying Business Value
 
Open Data Center Alliance 2014 Member Survey on Cloud Adoption
Open Data Center Alliance 2014 Member Survey on Cloud AdoptionOpen Data Center Alliance 2014 Member Survey on Cloud Adoption
Open Data Center Alliance 2014 Member Survey on Cloud Adoption
 
ODCA Board Best Practice: High Performance Computing at BMW
ODCA Board Best Practice: High Performance Computing at BMWODCA Board Best Practice: High Performance Computing at BMW
ODCA Board Best Practice: High Performance Computing at BMW
 
Forecast 2014: Making Better Business Decisions with Big Data and IoT
Forecast 2014: Making Better Business Decisions with Big Data and IoTForecast 2014: Making Better Business Decisions with Big Data and IoT
Forecast 2014: Making Better Business Decisions with Big Data and IoT
 
Forecast 2014: The Grand Challenge, Simplifying IT to Unleash Innovation
Forecast 2014: The Grand Challenge, Simplifying IT to Unleash InnovationForecast 2014: The Grand Challenge, Simplifying IT to Unleash Innovation
Forecast 2014: The Grand Challenge, Simplifying IT to Unleash Innovation
 
Forecast 2014: Why Open Platforms Matter to Enterprises and Developers
Forecast 2014: Why Open Platforms Matter to Enterprises and DevelopersForecast 2014: Why Open Platforms Matter to Enterprises and Developers
Forecast 2014: Why Open Platforms Matter to Enterprises and Developers
 
Forecast 2014: ODCA Cloud Maturity Model V2.0
Forecast 2014: ODCA Cloud Maturity Model V2.0Forecast 2014: ODCA Cloud Maturity Model V2.0
Forecast 2014: ODCA Cloud Maturity Model V2.0
 
Forecast 2014: TOSCA: An Open Standard for Business Application Agility and P...
Forecast 2014: TOSCA: An Open Standard for Business Application Agility and P...Forecast 2014: TOSCA: An Open Standard for Business Application Agility and P...
Forecast 2014: TOSCA: An Open Standard for Business Application Agility and P...
 
Forecast 2014: Maximizing Your Cloud Service Quality and Costs
Forecast 2014: Maximizing Your Cloud Service Quality and Costs Forecast 2014: Maximizing Your Cloud Service Quality and Costs
Forecast 2014: Maximizing Your Cloud Service Quality and Costs
 
Forecast 2014: TOSCA Proof of Concept
Forecast 2014: TOSCA Proof of ConceptForecast 2014: TOSCA Proof of Concept
Forecast 2014: TOSCA Proof of Concept
 
Forecast 2014: Welcome to the ODCA University - School is Way Cool!
Forecast 2014: Welcome to the ODCA University - School is Way Cool!Forecast 2014: Welcome to the ODCA University - School is Way Cool!
Forecast 2014: Welcome to the ODCA University - School is Way Cool!
 
Forecast 2014: Software Defined Networking - What's New?
Forecast 2014: Software Defined Networking - What's New? Forecast 2014: Software Defined Networking - What's New?
Forecast 2014: Software Defined Networking - What's New?
 
Forecast 2014: Cloud-Aware Applications
Forecast 2014: Cloud-Aware Applications Forecast 2014: Cloud-Aware Applications
Forecast 2014: Cloud-Aware Applications
 
Forecast 2014: eDiscovery and Forensics
Forecast 2014: eDiscovery and Forensics Forecast 2014: eDiscovery and Forensics
Forecast 2014: eDiscovery and Forensics
 
Forecast 2014: Cloud Service Brokering
Forecast 2014: Cloud Service BrokeringForecast 2014: Cloud Service Brokering
Forecast 2014: Cloud Service Brokering
 
Forecast 2014: Business Strategy Enabled by Cloud
Forecast 2014: Business Strategy Enabled by Cloud Forecast 2014: Business Strategy Enabled by Cloud
Forecast 2014: Business Strategy Enabled by Cloud
 
Forecast 2014 Keynote: Re-architecting the Data Center for the Digital Servic...
Forecast 2014 Keynote: Re-architecting the Data Center for the Digital Servic...Forecast 2014 Keynote: Re-architecting the Data Center for the Digital Servic...
Forecast 2014 Keynote: Re-architecting the Data Center for the Digital Servic...
 
Forecast 2014 Keynote: State of Cloud Migration…What's Occurring Now, and Wha...
Forecast 2014 Keynote: State of Cloud Migration…What's Occurring Now, and Wha...Forecast 2014 Keynote: State of Cloud Migration…What's Occurring Now, and Wha...
Forecast 2014 Keynote: State of Cloud Migration…What's Occurring Now, and Wha...
 
Forecast 2014: Opening Keynote
Forecast 2014: Opening KeynoteForecast 2014: Opening Keynote
Forecast 2014: Opening Keynote
 
Forecast 2014: Hackathon
Forecast 2014: HackathonForecast 2014: Hackathon
Forecast 2014: Hackathon
 

Kürzlich hochgeladen

Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Neo4j
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfsudhanshuwaghmare1
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...Martijn de Jong
 
Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)wesley chun
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...apidays
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)Gabriella Davis
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerThousandEyes
 
HTML Injection Attacks: Impact and Mitigation Strategies
HTML Injection Attacks: Impact and Mitigation StrategiesHTML Injection Attacks: Impact and Mitigation Strategies
HTML Injection Attacks: Impact and Mitigation StrategiesBoston Institute of Analytics
 
Developing An App To Navigate The Roads of Brazil
Developing An App To Navigate The Roads of BrazilDeveloping An App To Navigate The Roads of Brazil
Developing An App To Navigate The Roads of BrazilV3cube
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024The Digital Insurer
 
presentation ICT roal in 21st century education
presentation ICT roal in 21st century educationpresentation ICT roal in 21st century education
presentation ICT roal in 21st century educationjfdjdjcjdnsjd
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherRemote DBA Services
 
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationMichael W. Hawkins
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptxHampshireHUG
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024Rafal Los
 
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024The Digital Insurer
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonAnna Loughnan Colquhoun
 
Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...apidays
 
Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024The Digital Insurer
 
What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?Antenna Manufacturer Coco
 

Kürzlich hochgeladen (20)

Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdf
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...
 
Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
HTML Injection Attacks: Impact and Mitigation Strategies
HTML Injection Attacks: Impact and Mitigation StrategiesHTML Injection Attacks: Impact and Mitigation Strategies
HTML Injection Attacks: Impact and Mitigation Strategies
 
Developing An App To Navigate The Roads of Brazil
Developing An App To Navigate The Roads of BrazilDeveloping An App To Navigate The Roads of Brazil
Developing An App To Navigate The Roads of Brazil
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024
 
presentation ICT roal in 21st century education
presentation ICT roal in 21st century educationpresentation ICT roal in 21st century education
presentation ICT roal in 21st century education
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a Fresher
 
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day Presentation
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
 
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
 
Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...
 
Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024
 
What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?
 

Forecast 2014: SaaS Data Exchange

  • 1. SAAS DATA EXCHANGE Vijay Ranjan Mungara ODCA Data Services Team Intel Corporation
  • 2. AGENDA  Purpose  Audience  Scope  Challenges & Solutions • Regulatory Requirements & Standards • Data Management • SaaS Provider Code Releases • Data Security  Summary of Industry Actions Required 2
  • 3. OBJECTIVE  Best Practices, challenges for SaaS Data Exchange that organizations can use for planning and implementation • Best Practices for data management applies • Additional Challenges with SaaS is the focus of this presentation  Challenges include integration, security & interoperability between SaaS providers and Consumers 3
  • 5. REGULATORY REQUIREMENTS & STANDARDS  Compliance with local regulatory (Privacy, Storage, Mandates, Legal, Country Laws, Audit Laws) requirements  Outsourcing standard and/or policies  Business continuity management standards and/or policies  Risk management standards and/or policies  Guidance, standards, and policies to manage and govern data and security risks 5
  • 7. CHALLENGES DATA OWNERSHIP / LOCATION  Data Ownership • Irrespective of jurisdiction, data storage across multiple cloud service providers could lead to data fragmentation and cause data ownership problems when cloud services are terminated. • Contractual Agreements between Provider/Consumer needs to consider ownership of Intellectual Property & Integrity  Data Location • Data fragmentation or distribution across cloud service providers • Applicable regulatory and legal framework of the jurisdiction • Location of information storage and contractual controls • Regulatory obligations compliance 7
  • 9. DATA GOVERNANCE  Defines policies around • Retention and disposition of corporate information • Identifies people who govern these activities. • Examples: • APRA standards and guidelines, PCI DSS, ISACA’s CoBIT /COSO frameworks, the Commonwealth’s Privacy Act, along with international legislation such as Sarbanes-Oxley, HIPAA, AML, and sanctions screening are increasingly driving regulators’ focus on the data management process and associated controls. 9
  • 10. DATA CONTROLS Identify •Data stores, •business owners • locations •suppliers •Relevant regulatory, legislative Classify and perform a valuation of data assets Determine enterprise risk drivers and risk tolerance Implement an appropriate data control framework (examples include CoBIT, COSO, and ISO 27001/2) Ensure regular monitoring, auditing, and reporting activities 10
  • 12. DATA MANAGEMENT 12 Lack of Data Documentation • Infer data model from API documentation Extending Data •Weigh configuration vs. customization Data Exchange • Select best solution based on data usage requirement Data Validation • Use standard data management techniques
  • 13. CHALLENGE: LACK OF DATA DOCUMENTATION Use traditional data management techniques to infer the data model and structure from API documentation • Steps • Referencing the documentation to identify entities 13 • RESTful APIs typically have end points that represent entities • Look for collections within the end points, since they can represent entities • Build a conceptual entity model from the identified entities • Build out relationships based on description • Layer in the attributes from the documentation • Review and refine • Create the semantic mapping to the business’ canonical model • Example overview • Example documentation from a RESTful API to a customer record
  • 14. CHALLENGE: LACK OF DATA DOCUMENTATION - EXAMPLE 14 Customer API JSON response Attribute Description cutomerGuid Unique identifier (GUID) assigned when created alternateId Alternate key identified from another system firstName The customer’s first name middleName The customer's middle name or middle initial lastName The customer's last name email The email address for the account dateOfBirth The birthdate of the user of the account, ISO 8601 (YYYY-MM-DD) gender The gender of the customer. Format is ISO 5218 addresses A collection for address information addressGuid The unique identifier for the address type The location/purpose for an address. line1..3 The first, second, and third lines of the customer's address city The city associated with the address stateProvince The state or province, ISO 3166-2. Maximum is three characters. postalCode The ZIP code or postal code. country The region/country, ISO 3166. Maximum is two characters. preferred Default ""false"". At most one address may be preferred phones A collection for phone information. phoneGuid The unique identifier for the phone number type The purpose or type of phone number. number The actual phone number internationalPrefix The international calling code for the phone number.
  • 15. CHALLENGE: LACK OF DATA DOCUMENTATION - EXAMPLE 15 Semantic mapping Canonical Internal System 1 SaaS Service 1 Customer Interface Entity Attribute Entity Attribute Attribute Customer Customer Identifier customer customer_id alternateId External Customer External Customer Mapping Identifier customer_account_map ext_customer_id customerGuid Customer First Name customer first_name firstName Customer Middle Name customer middle_name middleName Customer … … … … Customer Address Address Type customer_address address_type addresses.type Customer Address Address Line 1 customer_address address_line_1 addresses.line1 Customer Address … … … … Customer Phone Phone Type customer_phone phone_type phones.type Customer Phone Phone Number customer_phone phone_number phones.number Customer Phone … … … … … … … … …
  • 16. CHALLENGE: EXTENDING DATA 16 Configuration is a better option than customization Configuration Customization Supported out of the box Requires custom coding Vendor should support functionality between versions Requires testing with each vendor upgrade Limited to what the vendor offers in terms of configuration Build anything that is required
  • 18. SAAS PROVIDER CODE RELEASES Challenges • Frequent Provider Releases can cause • Inconsistencies • Mismatch in the version of Data • Breakage in data exchange process • Errors in Code, Runtime, Interface & data • Service consumers can’t always upgrade at the same time • Changes in data content, context and format • Appropriate release times needs to be co-ordinated so as to minimally impact organizations’ IT systems. 18
  • 20. RELEASE PLAN (PROVIDER) AND UPGRADE PLAN (CONSUMER)  Providers should make a detailed release plan for service consumers, this plan should identify • Important milestones • New technical specification • When (and how) the service consumers can execute beta testing if necessary, when the new version of code will be officially available, and when the old version of code will no longer be available  Based on the provider’s release plan, service consumers should • Create their own upgrade plan to decide when they • Should identify the impact scope, • Need to complete the code revision and testing, • To upgrade their IT systems that are influenced by this provider code release. 20
  • 21. RELEASE PLAN ESSENTIALS Non-production Test Environment. Phased Upgrade Deployment Strategy. Announcement and Reminding Mechanism. Upgrade Timing Choice. Partial-to-All Approach. 21
  • 23. DATA SECURITY  Controls that can provide the appropriate level of data protection.  Existing threats of tampering or theft of data in transit implies that most sensitive information is already encrypted in transit. • However, recent data theft has occurred while data is at rest— underscoring the need for cloud-based data security.  The ODCA Data Security Framework and the Security usage model discuss in detail data security and define requirements associated with increasing data security in the cloud. In particular, the Data Security Framework documents the following data security controls:  References • http://www.opendatacenteralliance.org/docs/Data_Security_Framework_Rev1.0.pdf • http://www.opendatacenteralliance.org/docs/Data_Security_Rev1.0.pdf 23
  • 24. SUMMARY OF INDUSTRY ACTIONS  The following actions are required by the combined solution provider and consumer communities: • Solution providers need to build better data management tooling into cloud services. • Solution providers should provide clear documentation about what data is managed by their SaaS solution. This documentation ideally includes the following: • Conceptual data model of the solution • Data dictionary of the data managed by their solution • Mapping of the conceptual model to the APIs and interface elements  The industry needs to continue to develop and adopt standards for accessing data, specifically in the areas of querying and reading data. 24
  • 26. 26
  • 27. © 2 0 1 4 O p e n D a t a C e n t e r A l l i a n c e , I n c . A L L R I G H T S R E S E R V E D .