Upload
ca-technologies
View
376
Download
0
Tags:
Embed Size (px)
DESCRIPTION
In the new application economy, it’s the successful organizations that can release and update apps faster, optimize the user experience and innovate to stay ahead of the competition. But it’s the most agile and secure information sharing models that will keep that competitive software edge. Bob Covington, Director Enterprise Architecture, Information Services at The J.M. Smucker Company, presents the value they received from implementing a powerful API Management and Security solution to meet their mobile app and data sharing business objectives. A new generation of API management capabilities are now available to drive business forward while allowing the enterprise to secure information with a fraction of the time required by traditional methods. For more information on CA Security solutions, please visit: http://bit.ly/10WHYDm
Citation preview
ca Securecenter
Agile Information Sharing Through API Management with The J.M. Smucker Company
Bob Covington
SCT06S #CAWorld
The J.M. Smucker CompanyDirector Enterprise Architecture
2
Abstract
In the new application, economy it’s the successful organizations that can release and update apps faster, optimize the user experience and innovate to stay ahead of the competition. But it’s the most agile and secure information sharing models that will keep that competitive software edge. Please attend this session to hear Bob Covington, Director Enterprise Architecture, Information Services at The J.M. Smucker Company, discuss the value they received from implementing a powerful API Management and Security solution to meet their mobile app and data sharing business objectives. A new generation of API management capabilities are now available to drive business forward while allowing the enterprise to secure information with a fraction of the time required by traditional methods.
Bob Covington
The J.M. Smucker Company
Director Enterprise Architecture
3
Agenda
CA API GATEWAY IMPLEMENTATION ARCHITECTURE
USE CASE 1 – MOBILE APPLICATION GATEWAY
USE CASE 2 – CLOUD SSO INTEGRATION (SAML)
USE CASE 3 – REST – PLSQL GATEWAY
USE CASE 4 – THIRD-PARTY DATA INTEGRATION
2
3
4
5
6
SMUCKER’S OVERVIEW & BUSINESS DRIVERS1
4
The J.M. Smucker Company
For more than 115 years, The J. M. Smucker Company has been committed to offering consumers
quality products that bring families together to share memorable meals and moments.
Today, Smucker is a leading marketer and manufacturer of fruit spreads, retail packaged coffee,
peanut butter, shortening and oils, ice cream toppings, sweetened condensed milk and natural foods
products in North America.
Its family of brands includes Smucker's®, Folgers®, Dunkin’ Donuts®, Jif®, Crisco®, Pillsbury®, Eagle
Brand®, R.W. Knudsen Family®, Hungry Jack®, Millstone®, Café Bustelo®, Café Pilon®, truRoots®,
White Lily®, Martha White® and Sahale Snacks® in the United States, along with Robin Hood®, Five
Roses®, Carnation® and Bick's® in Canada.
5
Smucker’s Business Drivers
Securely connect mobile apps to enterprise data.
Improve end-user experience for access to cloud applications.
Standardize access to legacy enterprise data repositories.
Enable “just-in-time” access to products by third parties.
Improve supply chain efficiencies
with seamless connectivity.
Create an agile software
organization through integration.
Grow user adoption through better user
experience.
Improve employee productivity through
mobility.Initiatives
6
CA API Gateway Implementation Architecture
API Gateway Cluster
Mobile
Inte
rnet
Fir
ewal
l/R
ou
ter
Mo
bile
ASA
V
PN
F5 L
oad
B
alan
cer CA API Gateway
CA API Gateway
Smu
cker
Ap
plic
atio
n/D
atab
ase
Serv
ers
DesktopESM
Client
API Portal(Shared)
External Apps/
Customers
7
Use Case 1 – Mobile Application Gateway
Challenge
Smucker needed a secure way to access corporate data through mobile devices. We required support for thick and thin mobile clients, the ability to log access, protect against malformed request and normalize the security context of a number of back end systems to a single authentication scheme.
Approach
Through a combination of an autoconnect VPN and the API Gateway, all mobile access is controlled through a single access point.
Primary Access Methods:
• REST APIs for “thick” client mobile applications
• HTML 5/Java Script Proxy for thin client applications
Benefit
Extremely secure access to corporate data through mobile devices.
The ability to onboard new mobile applications in a fraction of the time of previous methods
Abstraction of the API from the back-end to isolate changes in the back-end from mobile applications
8
Use Case 2 – Cloud SSO Integration (SAML)
Challenge
Enable single sign-on access to cloud applications.
The Cost and Complexity of traditional enterprise single sign-on tools was prohibitive.
Approach
Leverage a combination of Integrated Windows Authentication, Microsoft Active Directory and SAML Authentication with CA API Gateway to provide seamless authentication with our cloud providers.
Benefit
Implementation of CA Single Sign-On with our existing Microsoft Active Director infrastructure.
One Password
9
Use Case 3 – REST - PLSQL Gateway
Challenge
Smucker extensively uses E-Business Suite as our ERP solution. As such, much of our business logic is embedded in PLSQL Stored Database Procedures. We needed a way to leverage this business logic in a more efficient way through Web services.
Approach
Utilize the CA API Gateway to create REST APIs that leverage database calls using JDBC to call Oracle PLSQL Stored Procedures. CA API Gateway leverages AD authentication on the API side and database authentication on the PLSQL side.
Benefit
The ability to leverage a significant repository of “legacy” PLSQL code in modern applications through Web services.
10
Use Case 4 – Third-Party Data Integration
Challenge
Batch-based pushes of data to third parties results in potentially stale data
Resource-intensive process to maintain and test interface code when changes occur or add new third parties
Tightly coupled ETL code tied to applications and data models
Approach
Leverage the CA API Gateway to publish data access Web services for third parties to securely pull data from our systems.
Simpler to maintain and test when changes occur
Loosely coupled, provides flexibility to change
Adding new third parties requires little or no work
ETL Code
App
Bat
chThird Party
Bat
chThird Party
ETL Code
App
Third Party
Third Party
Published API
CA
AP
I G
atew
ay
11
For More Information
To learn more about Security,
please visit:
http://bit.ly/10WHYDm
Insert appropriate screenshot and text overlayfrom following “More Info Graphics” slide here;
ensure it links to correct pageSecurity
12
For Informational Purposes Only
This presentation provided at CA World 2014 is intended for information purposes only and does not form any type of warranty.
Content provided in this presentation has not been reviewed for accuracy and is based on information provided by CA Partners
and Customers.
Terms of this Presentation