Beyond SOA - What's Next?

We’ve come pretty far with SOA. Gartner reports that “SOA” is the most widely used search term on their Website. On Google, a search for “SOA” turns up 6,750,000 matches. And all of us in IT probably have to wade through some discussion related to SOA on a daily basis.

That’s a pretty impressive level of awareness and mind share. Let’s not consider this a “mission accomplished” situation though; there’s still a lot to do to mature our current approach to SOA. For example, we need to improve the clarity and completeness of the various Web services standards and, when they become available, we have to ensure that this more complete, mature, coherent set of standards is broadly adopted.

Consider the issues of building and maintaining the federated identity management frameworks that are necessary to provide the foundation for secure SOA implementations. Sure, our early SOA applications can be made fairly secure with user IDs and passwords, local LDAP directories and SSL. However, real-world SOA deployments link applications from multiple enterprises across multiple network and organizational boundaries. Security for those deployments is several orders of magnitude more complex to implement.

Read On..