christian weyer christian weyer @thinktecture com thinktecture l.
Download
Skip this Video
Loading SlideShow in 5 Seconds..
In the Cloud Connect Your Services with the Internet Service Bus PowerPoint Presentation
Download Presentation
In the Cloud Connect Your Services with the Internet Service Bus

Loading in 2 Seconds...

play fullscreen
1 / 28

In the Cloud Connect Your Services with the Internet Service Bus - PowerPoint PPT Presentation


  • 181 Views
  • Uploaded on

Christian Weyer christian.weyer @thinktecture.com thinktecture. In the Cloud Connect Your Services with the Internet Service Bus. Our Way Through The Sky. Introduction & Motivation for ISB Extending a simple WCF service Identity, Authentication, Authorization Application Scenarios

loader
I am the owner, or an agent authorized to act on behalf of the owner, of the copyrighted work described.
capcha
Download Presentation

PowerPoint Slideshow about 'In the Cloud Connect Your Services with the Internet Service Bus' - shelley


An Image/Link below is provided (as is) to download presentation

Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.


- - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - -
Presentation Transcript
our way through the sky
Our Way Through The Sky
  • Introduction & Motivation for ISB
  • Extending a simple WCF service
  • Identity, Authentication, Authorization
  • ApplicationScenarios
  • MessagingOptions
  • Summary
slide3
S+S

Service Experience

Web 2.0

Service Delivery

SaaS

Service Composition

SOA

Service …

Software

+

Services

internet service bus why again
Internet Service Bus – Why Again?
  • Software+Services seems to me like „SOA done the right way“, frankly
  • Increasing need to build and enable composite applications in a service-oriented manner
  • Some solutions look for easy connectivity
  • Provide value add with advanced messaging options
  • Strong focus on identity, authentication and authorization required
imagine
Imagine…

Bond

Price

Format A

Format B

Enterprise X

imagine again
Imagine again…

Bond

Price

Trade

Format A

Format B

Format C

Enterprise X

still imagine
Still imagine…

Bond

Price

Trade

Format A

Format B

Format C

Enterprise X

enterprise service bus pattern
Enterprise Service Bus Pattern

Bond

Price

Trade

Format A

Format B

Format C

Enterprise X

XML

XML

XML

Enterprise Service Bus

and now imagine
And now imagine…

Microsoft “Biztalk Services”

BOND

PRICE

TRADE

Internet Service Bus

XML

XML

XML

Format A

Format B

Format C

Enterprise X

can you still imagine
Can you still imagine…?

Microsoft “Biztalk Services”

Internet Service Bus

XML

XML

Bank A

Format A

Format B

Application 1

Application 2

finally imagine
Finally, imagine…

Microsoft “Biztalk Services”

Internet Service Bus

XML

XML

XML

Subscribe

Subscribe

Publish

Bank A

Format A

Format B

Application 1

Application 2

Market Data

it looks reasonable doesn t it
It looks reasonable, doesn‘t it?

Microsoft “Biztalk Services”

Internet Service Bus

XML

XML

XML

Subscribe

Subscribe

Subscribe

Publish

Publish

Bank A

Format A

Format B

Application 1

Application 2

Market Data

possible isb usage scenarios
Possible ISB Usage Scenarios
  • Syndication
  • Peer-To-Peer
  • Callbacks, Notifications
  • Multicasting, Pub/Sub
  • Remote Control
  • Prototyping, Testing

C I A

Confidentiality, Integrity, Authenticity

biztalk services demystified
„Biztalk Services“ Demystified
  • Codename „Biztalk Services“ is the currentincarnation of the ISB
  • Providesseveralservices in the cloud, currently
    • Identity Management, STS
    • Connectivity, Relaying
    • Workflow (just not yet)
  • Enter the ISB at http://labs.biztalk.net/
  • Developers (and architects) can grab an SDK
    • WCF-based, leveragingstandards
    • Custombindings and behaviors
relay binding
Relay Binding

“BiztalkServices”

Identity Service

Trust

Connectivity Service

3

Authenticate

Connect

Open

2

1

4

5

Authenticate

Relayed

Connection

Client

Service

6

Direct

Connection

(optional)

relaybinding in code
ITokenProvidertokenProvider =

new CardSpaceTokenProvider();

ServiceEndpointehep =

echoHost.AddServiceEndpoint(

typeof(IEcho), new RelayBinding(

RelayConnectionMode.RelayedDuplex),

"sb://connect.biztalk.net/

services/thinktecture/Echo");

ehep.Behaviors.Add(tokenProvider);

RelayBinding In Code
relaybinding in config
<endpoint

address="sb://connect.biztalk.net/

services/thinktecture/Echo"

contract="IEcho"

binding="relayBinding"

bindingConfiguration="myRelay" />

<bindings>

<relayBinding>

<bindingname="myRelay"

connectionMode="RelayedDuplex" />

</relayBinding>

</bindings>

RelayBinding In Config
security risk model
Security Risk Model
  • Frankly, insome big shops the relaybindingis to date a reason to getfired
    • Thereis a reason for the DMZ
  • Youexposeyourveryownmachine to the outside
  • Customersneed to be aware of this different securityrisk model
    • Integraterisk model intoanalysisphase
  • IMO, we will needguidance and tools to properlyset up and configurenetworks for workingwith the relay
    • Maybe also leverage different technologies, likeTeredoorUPnP
identity claims based acess rules
Identity & Claims-Based Acess Rules
  • Authentication through username/password or information card
  • „Biztalk Services“ implements a Secure Token Service (STS) based on WS-Trust specification
    • Feel the future of AD
  • Authorization based on powerful & flexible claims-based model
    • Configure through web frontend
    • Configure through API in SDK
relay identity message interaction
Relay & Identity Message Interaction

Identity

Relay cert registered w/STS

GetToken()

GetToken()

Relay

Connect

http://relay.biztalk.net/services/tt/

Open

http://relay.biztalk.net/services/tt/

Client

Service

scenario i duplex communication notifications
Scenario IDuplex Communication & Notifications
  • Problem
    • Consumerswant to be notified of new data
    • No polling, butratherproactive push messagingdesired
    • NATs and firewalls in the way (by design )
  • Solution
    • Expose duplexcontract through relaybinding
    • Service can publish new data through the ISB‘saddress
    • ISB securelydispatchesmessagesappropriately to the callbackendpoints
scenario ii multicasting
Scenario IIMulticasting
  • Problem
    • Multiple (n) receivers want to receive messages
    • Sender(s) does not want to send n messages and maintain list of receivers
    • NATs and firewalls in the way (by design)
  • Solution
    • Let the ISB do the maintenance of receivers
    • Sender send one message to the ISB – the ISB send n messages to n receivers
multicasting
Multicasting

Listen:

sb://.../traffic

Biztalk Services

(Cloud)

Send:

sb://.../traffic

Listen:

sb://.../traffic

scenario iii multicast publish subscribe
Scenario IIIMulticast Publish & Subscribe
  • Problem
    • Wehave m publishers and n subscribers
    • Need for infrastructure to handle thesemessageexchanges
    • Similar to pure multicastingscenario
    • NATs and firewalls in the way (by design)
  • Solution
    • m publishers send to multicastaddress at ISB
    • n subscribers listen to mulitcastaddress at ISB
    • ISB does the hardwork of correlation and dispatching
where are we where is the isb
Where Are We? Where Is The ISB?
  • „Biztalk Services“ is an incubation project
    • There will be a V1 of the ISB…
  • Of course, there are still missing parts today, e.g.:
    • Store and forward
    • Broader platforms support
    • Really federated identity
  • I am sure we will see improved feature support in upcoming releases
    • Keep track and watch http://labs.biztalk.net/
summary
Summary
  • Leveraging the cloud for composite applicationscan be a winner
    • Powerfulmessagingoptions
    • Enablingotherwise-hard-to-realizescenarios
  • Internet Service Bus can handle connectivity, authentication, authorization, messaging and otherconnectedsystemsaspects
  • Thinkaboutsecurityrisk model
  • „Biztalk Services“ incubation project shows the path to a real ISB – with a real name
resources
Resources
  • Email Christian Weyer
    • christian.weyer@thinktecture.com
  • Weblog Christian Weyer
    • http://blogs.thinktecture.com/cweyer
  • thinktecture
    • http://www.thinktecture.com
slide28

© 2007 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.

The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.