Solution Architecture Preliminary Solution Design
Total Page:16
File Type:pdf, Size:1020Kb
Date:
1 Preliminary Solution Design Change Log
Any moderate or significant changes to the solution design must be resubmitted to TSG for review and approval prior to making any actual implementation change(s). In most cases, the review and approval of any changes would be performed internally within TSG.
Notes: 1. Use of a word processing automated change tracking feature is required when resubmitting this document in order to simplify the review and approval process. Once a version of the document has been approved, then that version of the document should be saved for archival purposes. Prior to submitting a new version of the document, all prior tracked changes should be accepted. This process for resubmission can then be repeated as many times as necessary until the final approval has been issued. 2. Failure to resubmit changes for review and approval could result in a recommendation by TSG that the project approval status be reconsidered. If there are any questions as to whether or not a change is substantive enough to warrant review and approval, please send an email on [email protected] for clarification. 3. Maintain a summary of changes in the table below.
Change Log Summary – Description Version Date (For instructional purposes examples have been provided)
2 Preliminary Solution Design
The Preliminary Solution Design Section has been designed to capture only the most essential information required to obtain Preliminary Design approval. While the items listed are not intended to be an exhaustive list of the possible technologies that may be utilized in the implementation of an application, it does reflect some of the more common choices as well as important items that should be considered during the design phase.
2.1 Preliminary Solution Checklist
Disclaimer: Any technologies listed below have been provided solely for convenience, the information provided is not intended to be exhaustive nor does it indicate product endorsement by TSG.
Preliminary Solution Checklist Responses – Select all that apply
Development Approach Commercial Off The Shelf (COTS): Free Libre‘ Open Source Software (FLOSS): Commercial Open Source: Custom/Bespoke:
(Note: Customizations to COTS or FLOSS solutions must be limited to 10% and be fully supported in future releases or versions) Software Licenses Specify the license frameworks that have been agreed upon (including any IPR arrangements):
(NOTE: For non web based solutions indicate if the desktop application can be abstracted via virtualization) Architectural Approach SOA: 3/N Tier: Other:
Solution Architecture Document Template Version: 3.0 Page 1 Malta Information Technology Agency - Technology and Systems Governance Telephone: (+356) 21234710 Fax: (+356) 21234701 Website: www.mita.gov.mt ■Gate 2 Solution Architecture Submission for
Preliminary Solution Checklist Responses – Select all that apply
Architectural Framework(s) STRUTS: JATO: JSF: Other:
Platform Specific: .NET Remoting: EJB/RMI – IIOP:
Other: Insert other platform specific communication technologies> Solution Integration XML: Technologies Web Services: (Both for service provisioning and service consumption) Messaging: EDI: CORBA: IIOP: Adaptors: Secure FTP: Proprietary API: Via:
(Note: Kindly fill in the Service Contract/Adapter Definition template (Refer to Appendix A), to include any additional information with respect to the service/s being offered through the solution)
Solution Architecture Document Template Version: 3.0 Page 2 Malta Information Technology Agency - Technology and Systems Governance Telephone: (+356) 21234710 Fax: (+356) 21234701 Website: www.mita.gov.mt ■Gate 2 Solution Architecture Submission for
Preliminary Solution Checklist Responses – Select all that apply
Security Technologies In case of websites, illustrate how the solution will be secured against: SQL Injection:
Secure Authentication:
Secure transport:
Secure Storage:
(Provide the security technologies which have been used in the mentioned contexts. The government adopted specifications related to Encryption and signing algorithms can be found on http://ictpolicies.gov.mt/) Solution Capacity Growth State the envisaged capacity growth for the solution in terms of the following:
Network Bandwidth (Intra/Internet):
(Note: this section is associated with the Estimated Total Number of Consumers, Estimated Total Number of Concurrent Consumers and Estimated Annual Customer Growth Rate sections in Gate 1) Business Domain Specify whether the application will make use of Protocols/Standards protocols/standards which are mandated by the business domain through either best practices, legal mandate or EU law/directive/outcome: (e.g.HL7 for the health Industry)
Solution Architecture Document Template Version: 3.0 Page 3 Malta Information Technology Agency - Technology and Systems Governance Telephone: (+356) 21234710 Fax: (+356) 21234701 Website: www.mita.gov.mt ■Gate 2 Solution Architecture Submission for
Preliminary Solution Checklist Responses – Select all that apply
Performance Requirements Please specify any performance requirements related to the following classes of performance clearly highlighting the scenario, the value and unit of measurement, method of measurement.
Response times:
(Note: Fill as deemed necessary) Application Backup Full Backup: Requirements Daily: Weekly:
Incremental Backup: Hourly: Daily: Weekly: Production Availability Scheduled Downtime: Expectations on a monthly basis Hours:
Service Restoration: Hours:
Select all the relevant options: Business Authentication: Support Service Delegation: Support Agent Functionality:
(eID developer’s toolkit is accessible from the following address: https://www.mita.gov.mt/page.aspx?pageid=258)
Solution Architecture Document Template Version: 3.0 Page 4 Malta Information Technology Agency - Technology and Systems Governance Telephone: (+356) 21234710 Fax: (+356) 21234701 Website: www.mita.gov.mt ■Gate 2 Solution Architecture Submission for
Preliminary Solution Checklist Responses – Select all that apply
Government Public State if the solution requires to authenticate public service Administration Federated employees: Authentication (GPA IDP) (This section should only be populated if (Please note that the GPA IDP returns the following attributes upon successful the solution will require to authenticate authentication (outgoing claims): Public Service Employees) Name, (e.g. Joe) Surname, (e.g. Borg) Email address (e.g. [email protected]) and User account name. (e.g. [email protected]))
(The user account name should be used as the user unique identifier)
(The Government Public Administration Federated Authentication guidelines is accessible via the following address: https://www.mita.gov.mt/MediaCenter/PDFs/1_TSG-GDL-Government %20Public%20Administration%20Federated%20Authentication%20Guidelines- v1.0.pdf) myBills The solution will: (This section should only be populated if Make use of myBills Hosted Payment Page: the solution will make use of myBills) And shall fully integrate with myBills:
(Have a look at the Electronic Payment Policy accessible via the following address: https://www.mita.gov.mt/MediaCenter/PDFs/1_GMICT_P_0105_Electronic_Pay ments_v1.0.pdf)
(myBills developer’s toolkit is accessible from the following address: https://www.mita.gov.mt/page.aspx?pageid=261) Mobile Government (mGov) With regards to the use of mGov, select all the relevant options (This section should only be populated if from below: the solution will make use of mGov) Sending messages: Sending and receiving messages: Sending bulk mobile messages: Sending bulk electronic messages:
(Have a look at the Mobile Messaging Service Policy accessible via the following address: https://www.mita.gov.mt/MediaCenter/PDFs/1_GMICT_P_0107_Mobile_Messa ging_Service_v1.0.pdf)
(mGov developer’s toolkit is accessible from the following address: https://www.mita.gov.mt/page.aspx?pageid=262)
2.2 Development Quality Description
The Development Quality Description section has been designed to capture how quality aspects such as portability, maintainability, extensibility, supportability and re-usability shall be reflected in the software part of the proposed solution.
Solution Architecture Document Template Version: 3.0 Page 5 Malta Information Technology Agency - Technology and Systems Governance Telephone: (+356) 21234710 Fax: (+356) 21234701 Website: www.mita.gov.mt ■Gate 2 Solution Architecture Submission for
Portability
(The ability for a solution to be migrated/installed on a different environment other then the original one, without the need of any code changes) Maintainability
(Ease of extending the solution functionality, fixing of errors etc) Extensibility
(The ability for the solution to be extended with ease and with minor modifications (future proof solution)) Supportability
(The ability for the solution to be more efficient in terms of product maintainability thus reducing operational costs (installation, configuration and monitoring) maintaining business continuity) Re-usability
(The ability to use modified or unmodified solution components (subroutines etc) in other solutions)
2.3 Preliminary Solution Design Description
Provide a diagram (or diagrams) with corresponding narrative that depicts an accurate and detailed description of the preliminary design for the entire application. The design must document how each of the requirements specified in the conceptual design will be logically accomplished. The preliminary design must align with the Principles, Practices, and Standards that are published in the http://ictpolicies.gov.mt and https://www.mita.gov.mt/edev portals respectively.
At this point, properties such as scalability, availability, and security posture should be reflected. External network connection speeds (for both the citizen and employee) should be documented. The supporting application should perform at acceptable levels when utilizing lowest common access speeds. Specify any known hardware and software details (brand, model, version, etc) for clients, servers, and other network infrastructure; programming languages selected, and deployment location (i.e. server location where code is deployed). Interfaces must be identified.
Solution Architecture Document Template Version: 3.0 Page 6 Malta Information Technology Agency - Technology and Systems Governance Telephone: (+356) 21234710 Fax: (+356) 21234701 Website: www.mita.gov.mt ■Gate 2 Solution Architecture Submission for
Line of Business Application – Logical Design
Transaction Zone 3 Zone 0/1 Zone 2 Zone (Hardened Internal Internet (Internal Network) l
l (Hardened DMZ) Network) a w l e
VPN l
r VPN VPN VPN l i l a a F w
Citizen w e e r e i n r
(5000 i o F r
F Z e
2
c
3
Transactions n
Employee n e
o DB e a i n l t n
Web o a Per day c Desktop Appl. o Z
a Server B Z
s Server d n (N=300) Server
SSL a
a (Mirror) r o T L (Cluster)
Remote Zone 3 Firewall Access VPN VPN Identity Common Payment Employees Service Access EDI Service (N=50) Broker Management (CC and ACH) System Dedicated Circuit VPN WAN Field External External Credit Employees Business Agency Card (N=100) Partner Application Authorization SAMPLE
2.4 Solution Architecture Quality Description
The Service Quality Description section has been designed to capture how quality aspects such as Performance/Throughput, Security, Integrity, Reliability, Availability, Scalability, Manageability, Serviceability and Recoverability shall be reflected in the proposed solution. Fill in the applicable section hence reflecting how the solution shall be delivered.
Note: this section should provide information for both the hosting environment and solution’s areas.
Performance/Throughput Response times:
(Specify the mechanism/s that the solution uses to achieve/support the above mentioned factors where applicable) Security Authentication:
Solution Architecture Document Template Version: 3.0 Page 7 Malta Information Technology Agency - Technology and Systems Governance Telephone: (+356) 21234710 Fax: (+356) 21234701 Website: www.mita.gov.mt ■Gate 2 Solution Architecture Submission for
Audit:
(Specify the mechanism/s that the solution uses to achieve/support the above mentioned factors) Integrity
(The capability for an application to bring data or a function from one application program together with that of another application program)
(Specify the mechanism/s that the solution uses to achieve/support the above mentioned factors) Reliability
(The ability for a solution to be aware of the hardware and software components to determine where and why failure is high and consequently is able to apply actions in order to reduce failure)
(Specify the mechanism/s that the solution uses to achieve/support the above mentioned factors) Availability
(The ability of the solution to function without service interruption or depletion despite abnormal or malicious events)
(Specify the mechanism/s that the solution uses to achieve/support the above mentioned factors) Scalability
(A property of a solution or process, which indicates its ability to either handle growing amounts of work (in terms of work load capacity – computational power etc) in a graceful manner or the ability and ease of enhancing the solution to handle new requirements)
(Specify the mechanism/s that the solution uses to achieve/support the above mentioned factors) Manageability The building blocks of manageability can be viewed as:
Solution Architecture Document Template Version: 3.0 Page 8 Malta Information Technology Agency - Technology and Systems Governance Telephone: (+356) 21234710 Fax: (+356) 21234701 Website: www.mita.gov.mt ■Gate 2 Solution Architecture Submission for
Deployable:
(Specify the mechanism/s that the solution uses to achieve/support the above mentioned factors) Serviceability
(The ease and extent of changes that can be affected without interrupting the application and the environment, consequently affecting availability)
(Specify the mechanism/s that the solution uses to achieve/support the above mentioned factors) Recoverability
(The ability towards a fast, easy, and reliable recovery of business data from virtually any disruption or event)
(Specify the mechanism/s that the solution uses to achieve/support the above mentioned factors)
Solution Architecture Document Template Version: 3.0 Page 9 Malta Information Technology Agency - Technology and Systems Governance Telephone: (+356) 21234710 Fax: (+356) 21234701 Website: www.mita.gov.mt ■Gate 2 Solution Architecture Submission for
Appendix A – Service Contract/Adapter Definition
Section 1 – Functional
Consumption Information
(Example: The service provides an SMTP relay from the consumer to gov.mt domains and other domains registered through ICANN domain registration services, including subdomains and have the appropriate Mail Exchanger DNS Mechanisms in place.
The transmission of data through the consumption of this service is not secured through the use of TLS/SSL certificates; therefore it is the responsibility of the consumer to encrypt data.
User authentication for each connection is not required.
Sender domain must be valid and defined by MITA.
Access control is configured through Firewalls at the Segregated Environment Edge.
Each message is scanned against a list of viruses and malicious content)
Interfaces provided
Standards
Standard Information
Location of Documentation
Section 2 – Other Terms of Usage
Transactional
Service Level Terms and Conditions
(Example: The adapter is monitored through MITA central monitoring services via SNMP. The uptime availability is available through the MITA hosting services. Each consumer should not send more than 10 mails per second when messages do not exceed 10 Kilobytes each.
Solution Architecture Document Template Version: 3.0 Page 10 Malta Information Technology Agency - Technology and Systems Governance Telephone: (+356) 21234710 Fax: (+356) 21234701 Website: www.mita.gov.mt ■Gate 2 Solution Architecture Submission for
Consumers abusing the system will be disconnected without notice)
Quality of Service
(Example: This adapter was designed according to IETF specifications and best practices. It is based on IP protocols to ensure scalability and re-usability. The implementation is controlled by the MITA Change Management process)
Auditing Information
Defined processes
(Example: Requests for consumption of this adapter are controlled by MITA. A change request is required to open port 25 from the Segregated Hosting Environment to the service as defined under interfaces.
Requests for access to the adapter are identified through the solution architecture to be presented according to the Solution Architecture Templates available at http://mita.gov.mt. Project Manager is responsible to trigger change management process)
Section 3 – Responsibilities
This section should provide information about the roles and persons responsible for the provision of the service through this adapter.
Responsible Role
Solution Architecture Document Template Version: 3.0 Page 11 Malta Information Technology Agency - Technology and Systems Governance Telephone: (+356) 21234710 Fax: (+356) 21234701 Website: www.mita.gov.mt