Gartner’s and Cobiacomm’s Analysis of WSO2 SOA Governance

[First published at http://blog.cobia.net/cobiacomm/2011/10/25/wso2-soa-governance/]

WSO2, the lean enterprise middleware provider, announced that it has been positioned by Gartner, Inc. in the “Visionaries” quadrant of a new report, Magic Quadrant for SOA Governance Technologies [1].

My analysis (from an ex-Gartner research team leader), the placement demonstrates WSO2 team leadership in defining a vision for policy based service governance. When publishing a service API for consumption, tracking published cloud-based service versions, monitoring service consumer connections, and delivering service-consumer interoperability, governance keeps the environment from devolving into chaos. Cloud based services, mobile devices, and multi-enterprise B2B interactions increase the environments where SOA governance technology must be applied. WSO2?s multi-tenant SOA governance infrastructure facilitates configuring models and policies associated with each participant’s business requirements. Many vendors have not yet modified their registries, repositories, and policy management systems to support multi-tenancy. As a result, organizations using single-tenant SOA governance tools are challenged to apply policies across diverse partners, customers, consumers, and internal corporate groups.

The WSO2 Carbon Governance and WSO2 Stratos Governance as a Service supports configuring a wide variety of design-time, development-time, and run-time policies. Built-in run-time policies include security access controls, authorization (via XACML), throttling, alerting, and caching, each of which accesses defined parts of the service message. The governance stack is also used to enforce software development policies when promoting applications and services across lifecycle stages (e.g. development to quality assurance, quality assurance to production). Granular cloud metering and billing is facilitated by collecting performance, faults, and business activity information in conjunction with the WSO2 Stratos Business Activity Management Service. WSO2 has posted good drill-down presentation describing how to use the governance registry.

The WSO2 Governance Registry not only interoperates and integrates with the WSO2 Carbon and WSO2 Stratos stack, but also with Cloud services hosted on other vendor stacks. Integration can occur at the network protocol level (i.e. HTTP, SOAP, FTP, AMQP, WebSphere MQ, POP3/SMTP, FIX, HL7, SAP iDoc/BAPI, and vendor-specific JMS variants), across multiple message formats (i.e. SOAP, XML, JSON, CSV, EDI, FIX, HL7, and REST), and multiple security and identity protocols (i.e. LDAP, SAML2, Kerberos, OpenID, OAuth, and XACMLA).

For more information, visit the WSO2 Governance Registry product page. To try out WSO2 Governance Registry as a Service for free, visit the StratosLive registration page.

[1] Gartner, “Magic Quadrant for SOA Governance Technologies,” by Paolo Malinverno and Daryl C. Plummer, October 17, 2011.

Chris Haddad, Vice President of Technical Evangelism
Chris’ blog: http://blog.cobia.net/cobiacomm