IT-Analysis.com
IT-Analysis.com Logo
Enterprise SME Business Issues Technology Services Channels
Top Level padlock  Members Area | Registration 
Archive  | Papers  | Research  | Events  | Newswire  | Blogs  Contact IT-Analysis.com 
Module Header
David TebbuttTeblog
David Tebbutt
19th November - Collaboration: the old way. Why not?
Martin BanksBanks Statement
Martin Banks
18th November - This Cloud has a silver lining
Peter AbrahamsAbrahams Accessibility
Peter Abrahams
18th November - Major new accessibility features in Firefox 3.0.4
Martin BanksBanks Statement
Martin Banks
17th November - Psychology of data ownership may be changing at last
Tony LockFreeform Comment
Tony Lock
16th November - Clouds yet to fill the IT skies
Judith HurwitzJudith Hurwitz
Judith Hurwitz
15th November - My Top Eleven Predictions for 2009 (I bet you thought there would be only ten)
Module Header
Q. How many email addresses do you have?
 
  • addtomyyahoo4
  • Subscribe in NewsGator Online
  • Add to My AOL
  • Subscribe with Bloglines
  • Add to netvibes
  • Add to Google
Blogs > MWD
SOA governance and data governance - separate or one in the same?
Neil Macehiter By: Neil Macehiter, Research Director, Macehiter Ward-Dutton
Published: 24th September 2008
This work is licensed under a Creative Commons License
 Logo for Macehiter Ward-Dutton

Joe McKendrick (once again!) has another post which caught my blogreader today. This time he is pondering the relationship between SOA and data governance:

If data governance is inadequate—information is outdated, out of sync, duplicated, or plain inaccurate—SOA-enabled services and applications will be delivering garbarge. That?s a formula for SOA disaster.

He goes on to reference an article by Ed Tittel, which draws the same conclusion:

Amidst all the hype and buzzwords that surround SOA nowadays, it's still far too common for organizations that seek to integrate service-oriented architecture into their IT infrastructure to omit issues related to data integration, management and governance in their designs. As they roll out and learn to live with an SOA, however, they often discover that interoperability with other systems and solutions poses interesting problems. In fact, these problems can make interaction between systems and SOA components both vexing and time consuming.

Absolutely! When we put together our SOA Strategy Planning Tool, we explicitly acknowledged the importance of a common information model that provides:

standard representations of core information types for communication between services

Where I deviate from Joe and Ed, however, is their perspective that data governance and SOA governance are separate disciplines. Without inter-service communication there's no SOA and so SOA governnance must encompass data governance. Furthermore, that governance needs to extend beyond service design throughout the service lifecyle.

In a subsequent post, Joe calls out this post from David Linthicum in which he noodles on the same topic. I am not so sure about David's view that SOA initiatives:

need to start with the data first

It all depends on the scenario where a service-oriented approach is being applied. However, I agree with him that there is a need to understand:

the core purpose of the data, how it relates to other data, how the data is bound into entities, as well as security issues, integrity issues, and the binding to existing functions or transactions. I would go further and say that it's not just about understanding those things. In the case of security and integrity issues, there is a need to ensure that what is understood is enforced. That means defining service contracts that take account of those requirements and enforcing them through policies.

Which brings me neatly back to the SOA versus data governance discussion. Policies are the lingua franca of SOA governance and policies apply as much to the data flowing in a service network as they do to the services themselves.

If you are embarking on an SOA initiative you need to ensure that those responsible for SOA governance, ideally though an SOA centre of excellence, include individuals with data management expertise. Your governance processes should enforce utlilisation of a common information model and encompass a policy-based approach to ensure that data management objectives and constraints are enforced.

Reader Comments

Do you agree with what Neil Macehiter, Research Director, Macehiter Ward-Dutton is saying? Perhaps you feel, or even know, different? Why not post your opinion on this issue?

26th September 2008: 'Haitham El-Ghareeb' said:

The time I spent reading about SOA (that was 4 years ago, I belive before it turns to be the most important topic in the world the way it is now), I learnt that:

Services are what really matters and nothing else (even data). I get the point you talk about here (quality of data affects quality of service) but does that enforce us to a Data Governance Policy? How can I ensure Data Governance over outside organization data?

Data is the most important asset of any organization, and I dare if there is any organization that give you access to their data? But, they agree to give you access to their exposed services.

Data Governance is an important aspect; I cannot deny so. But, it can simply included under SOA Governance.

Reply to Haitham El-Ghareeb?

26th September 2008: 'Neil Macehiter' said:

Thanks for the feedback.

Services are certainly key but those services are of no consequence if they aren't exchanging data and, if those services are to be used effectively across projects and even between businesses there needs to be agreement on a common model for the information that is exchanged between services and that means data governance.

You need to be clear on the distinction between what happens between services at the service interface and what sits behind the service interface (the service domain versus the integration domain). From an SOA governance point-of-view you need to govern data in the service domain to ensure consistency etc. What happens behind the service interface e.g. how data in existing applications and databases is converted into the common information model is the concern of the integration domain. The two are clearly linked and will overlap e.g. if the data required at the service interface has to be sourced from another system.

In this way you can deal with the issues of data that you don't directly control and therefore can't govern. If a third party is providing or consuming a service then there needs to be agreement on the common information model for inter-service communication. However, that is separate from how the third party governs their data. You should only be concerned to the point of the service interface.

I am not suggesting that SOA governance subsumes data governance. Rather think of them as a venn diagram. You don't have separate SOA and data governance initiatives. They overlap (in the service domain)

Reply to Neil Macehiter?

26th September 2008: 'Haitham El-Ghareeb' said:

I Love the idea of (Service Domain vs. Integration Domain). And as long as you do not suggest that SOA governance subsumes Data Governance, I am sure we are talking the same SOA language.

I really enjoyed the article, and honestly, I enjoyed your reply much much much more. I really appreciate your reply and really, waiting for more articles by you.

--
Thank You

Reply to Haitham El-Ghareeb?

28th September 2008: 'Neil Macehiter' said:

I am glad the reply was useful.

You might want to take a look at our some of our SOA-related research - http://www.mwdadvisors.com/articles/browse.php?by=topic&topic=1 - which is freely available at our website (you just need to subscribe). This report on service infrastructure requirements discusses service and integration domains (amongst other things): http://www.mwdadvisors.com/articles/detail.php?id=15

Regards

Neil

Reply to Neil Macehiter?

28th September 2008: 'Philip Howard' said:

In so far as Neil's argument goes, I agree. But I don't think it goes far enough. To begin with it makes the assumption of SOA. But data governance makes sense without SOA. Secondly, data governance extends to things like data protection that really don't fall within SOA. So, my view is that they overlap but are separate.

Reply to Philip Howard?
Advertisement


Analysts
Bloor Research Freeform Dynamics Hurwitz & Associates Hydrasight Interarbor Solutions Macehiter Ward-Dutton Quocirca Sageza Group, Inc. The Information Difference
Amplitude Research, Inc. Applied Computer Research, Inc. Callio Technologies Computer Economics CoreBrand Cranfield School of Management DMC Valuations Group eMarketer
Advertising | Contact | Site Map | Terms of Use | Privacy | Accessibility
Copyright © IT Analysis Communications Ltd., unless stated otherwise		 Tel: +44 (0)203 051 5760
Fax: +44 (0)870 345 9922

Published by: IT Analysis Communications Ltd.
T: +44 (0)203 051 5760 | F: +44 (0)870 345 9922
Email: