The diagram below shows the relationships between SOA governance, security and management, demonstrating how SOA Policy Management forms a closed loop of policy, metrics, and audit.
The alternative to a closed-loop solution is a set of stand-alone applications for governance, management and security. These solutions may offer loose integration, but we have yet to identify a single organization that has successfully integrated stand-alone solutions in a production environment.
On one hand, stand-alone run-time solutions don’t deliver higher value design-time, or governance capabilities. They require central policy management, don’t offer developer or architect services, and have no understanding of the relationship between a provider and a consumer.
On the other hand, design-time, and governance solutions can only deliver value when they are built on a runtime foundation. They require a run-time solution to enforce policies; they need the run-time to provide statistics and metrics for demand, capacity, and value monitoring; and they also need the run-time to provide an audit trail to ensure that messages comply with defined policies.
Closed loop means:
Closed loop infrastructure enables demand and Value Management
The products share a common registry and metadata repository to ensure seamless integration and offer active governance. Closed-loop governance will:
Manage, monitor and control relationships between consumers and providers