Presentation is loading. Please wait.

Presentation is loading. Please wait.

ENABLING CONTENT AL MALINE SR. ENTERPRISE ARCHITECT FDIC ENTERPRISE TECHNOLOGY BRANCH ENTERPRISE ARCHITECTURE PROGRAM SECTION FDIC 1.

Similar presentations


Presentation on theme: "ENABLING CONTENT AL MALINE SR. ENTERPRISE ARCHITECT FDIC ENTERPRISE TECHNOLOGY BRANCH ENTERPRISE ARCHITECTURE PROGRAM SECTION FDIC 1."— Presentation transcript:

1 ENABLING CONTENT AL MALINE SR. ENTERPRISE ARCHITECT FDIC ENTERPRISE TECHNOLOGY BRANCH ENTERPRISE ARCHITECTURE PROGRAM SECTION FDIC 1

2 Agenda Quick Intro Identity is a Strategic Asset Content Analysis with Services – A Geospatial Example Publishing Content Q & A 2

3 me FDIC (almost 4 years) Division of Information Technology Enterprise Technology Branch Enterprise Architecture Program Section Al Maline Prior to FDIC Enterprise Architect Software Developer (Java, Application Express) PeopleSoft Administrator Oracle Database Administrator Unix Administrator Clients such as: PBGC, MSRC, Silicon Graphics, General Motors 3

4 WE CAN NOT SHARE CONTENT IF WE DO NOT KNOW WHO YOU ARE Identity is a Strategic Asset 4

5 Current Practice Identity silos FDIC Connect for Financial Institutions Non-Depository Claims E-FOIA FDIC Active Directory Multiple methods of managing identity 5

6 Why does a consistent identity matter? Can not answer simple questions How many submitters of claims also submit an E-FOIA request? Can not deploy new solutions quickly (or inexpensively) if each application needs to solve the identity management problem Can not reliably or easily communicate with ALL of our customers Identity becomes a stumbling block instead of an enabler 6

7 Where does security happen? Identity Authorized Identity Assigned No Identity 7

8 How is identity assigned? Security Assertion Markup Language (SAML) 2.0 XML document that contains: Issuer element, which contains the unique identifier of the identity provider Signature element, which contains an integrity-preserving digital signature Subject element, which identifies the authenticated principal Conditions element, which gives the conditions under which the assertion is to be considered valid Authentication-Statement element, which describes the act of authentication at the identity provider Attribute-Statement element, which asserts a multi-valued attribute associated with the authenticated principal 8

9 How is identity assigned? Identity Source (identity provider) Destination Application (service provider) Authentication Authority Resource Manager User 1) Authentication 2) Assertion 4) Resource 3) Request + Assertion 9

10 Anonymous Users Anonymous users are all assigned the same identity – Anonymous and are authorized accordingly. 10

11 Self Registration Users that register themselves and have their address verified are authorized to see and add to the content that they have previously submitted. 11

12 Partners Business partners, such as financial institutions, that do not have their own Identity Management infrastructure would use an FDIC provided, delegated administration module, to manage their user identities. 12

13 Federated Partner Business partners that do have their own Identity Management infrastructure would be the source of the SAML assertions for their users. 13

14 FDIC User FDIC users (bother internal and telecommuting) would also be provided a SAML assertion to gain access to applications. 14

15 Cloud User FDIC users of a cloud service provider would use the same model in reverse. 15

16 Analysis of Content GEOSPATIAL APPLICATION ARCHITECTURE 16

17 Requirements Create a visual presentation of Failed, Problem and MDI (Minority Depository Institution) Institutions and display within States Counties Congressional Districts 17

18 Demo 18

19 Technology Oracle Maps Javascript API Slippy Map for Draggable Display of Map Tiles Feature of Interest Interactions Oracle Mapviewer Tile Cache Feature Server Oracle Spatial Database Spatial interactions Materialized Views PL/SQL Functions Mapping Metadata Client Browser JavaScript HTML rendering HTTP Middle Tier Weblogic Mapviewer (Map/Feature rendering) JDBC Data Tier Tables with Spatial Attribute Spatial Indexes Metadata 19

20 Technology JQuery HTML Document Traversing Event Handling AJAX Interactions JQuery UI User Interface Widgets 20

21 Technology JQuery Datatables Plugin Table pagination Filtering Multi-Column Sorting Java Servlet Apache POI library 21

22 oraclemaps.js (mapping API) bankLayer.js (model + view updating) RSAM.js (model + view updating) HTML Only RSAM.css map.jsp (view) JQuery Page Enhancement Event Routing to Model JavaScript/JQuery Manages Map Themes Updates View Tables Presentation Architecture JSON 2 Excel Java Servlet Convert JavaScript Object Notation to Excel Oracle Mapviewer Renders map tiles Fetches Features dataTables.js (table controller) mapPage.js (controller) Behavior mapping between view And model 22

23 Geometry Themes Styles Areas Colors Lines Markers Advanced Spatial Tables (Tables, Views, Materialized Views) One Geometry Column (SDO_GEOMETRY) Spatial Metadata (USER_SDO_GEOM_METADATA) Spatial Index Oracle Mapbuilder Creates Using Base Maps Use Renders and Caches Base Map Tiles Queries for Features (and caches) Oracle Mapviewer Map/Feature Architecture Creates Service Application Metadata 23

24 Spatial Data Architecture PL/SQL Function Using Spatial Query select count(*) into v_count from FDIC_ALL_INST where sdo_relate(region,location, 'MASK=ANYINTERACT')='TRUE'; Tables with Spatial Column Materialized View with Spatial Column 24

25 Security Architecture Perminiter Authentication with Oracle Single Sign On Mapviewer accepts HTTP header and sets identity by calling PL/SQL package for each request Mapviewer Themes can use identity set in PL/SQL package for filtering data 25

26 Enterprise GIS Architecture 26

27 27 Content Management NOW THAT WE KNOW WHO YOU ARE, AND WE HAVE CONTENT TO SHARE, HOW DO WE ENABLE IT?

28 28 Requirements - Content Enabling Content Company and industry news Staff directory and employee profile pages Expertise finders (locating coworkers with specific knowledge) Integrating internal and external information sources Keeping the intranet up-to-date (content management) Employee self service Multimedia and video on intranets Consistent navigation Data analysis and visualization

29 29 Requirements - Community Community Employee and department weblogs CEO blogging On boarding of new employees Corporate calendars Project collaboration tools Discussion boards Internal wikis Online meeting

30 30 Requirements - Technology Technology Robust Search Mobile intranets (including iPhone apps for intranet access) Personalization Customization Alerts Video platform Database Integration (from other systems)

31 31 Goals Build value for users Enable integration and personalization Establish new communication channels Bi-directional Scale Number of users Amount of content

32 32 Problems with Existing Architecture Existing architecture Static content Manual processes Content and presentation intermingled Content can not be reused No place to store newly captured content Static Content Web Server Browser Dreamweaver Manual Updates

33 33 Need a better architecture Support for Content directed applications Web Content Management is only one content application Multiple repositories SharePoint Documentum Internally Managed Website author roles in production In-Page editing Drag and Drop Workflow Page approval Content integration and aggregation Live dashboards Integration with content services Digital Asset Management Scaling & Cropping, Metadata Extraction, Thumbnail Generation, Format Transcoding

34 Need a better architecture Content Repository Content Services Content Applications Browser 34

35 Need a better standards based architecture Content Repository Content Services Content Applications Java Content Repository (JCR 2.0) REST based services JSP + scripting language support JavaScript JSON AJAX Browser Web 2.0Content Driven Applications 35

36 Open source architecture Content Repository Content Services Browser Content Applications Java Content Repository (JCR 2.0) REST based services JSP + scripting language support JavaScript JSON AJAX Apache Sling Apache Jackrabbit Web 2.0Content Driven Applications 36

37 Architecture that supports portals Content Repository Content Services Browser Content Applications Java Content Repository (JCR 2.0) REST based services JSP + scripting language support JavaScript JSON AJAX Widget Portlet Gadget Widget A portal is simply a web page with configurable widgets that transforms content Apache SlingApache Jackrabbit Web 2.0Content Driven Applications 37

38 Architecture that supports services Content Repository Content ServicesBrowser Content Applications Java Content Repository (JCR 2.0) REST based services JSP + scripting language support JavaScript JSON AJAX Widget Portlet Gadget Widget The OSGi framework is a module system and service platform that implements a complete component model Apache SlingApache Jackrabbit Web 2.0Content Driven Applications Apache Felix OSGi Services Service 38

39 39 Day Software (now Adobe) Web Content Management solution based on open standards and open source Day contributed and uses Apache Open Source: Content Repository Content Services Service Integration Day Content Repository Content Services Browser Content Applications SharePoint Documentum Content Adapters Widget Portlet Gadget Day CQ5 WCM

40 40 In page editing

41 41 Drag and drop

42 42 Workflow

43 43 Demo

44 44 Q&A Questions


Download ppt "ENABLING CONTENT AL MALINE SR. ENTERPRISE ARCHITECT FDIC ENTERPRISE TECHNOLOGY BRANCH ENTERPRISE ARCHITECTURE PROGRAM SECTION FDIC 1."

Similar presentations


Ads by Google