Case Study – Kaiser Permanente SOA Security Project

Kaiser Permanante (KP) is one of the largest health care entity in California. We have provided architecture and deployment services on multiple occasions.

ESB and SOA Security Architecture

KP Information Technology (IT) team was engaged in laying down an Enterprise Service Bus (ESB) as part of their SOA Architecture. ESB would allow KP IT to support integration between multitude of applications. Defining architecture and using it for product selection and deployment were the leading goals of the project.

We created a suitable ESB / SOA security architecture that served KP IT’s goals about authentication and authorization enforcement based on WS-Security and larger WS-* industry standards. The product selection followed from the architectural blueprint as it was dictated by the architectural use cases that must be supported by the selected product.

The project success relied on the following factors. Our domain knowledge of the security issues, clear requirements from the client and discipline of communicating architectural and deployment considerations comprehensively with clarity.

The result was that the ESB security as a component and the ESB project as a whole were successfully implemented and deployed at KP.

Role Based Access Control Architecture and Solution Alternative Analysis

KP Information Technology (IT) team invited us to help with requirement analysis and product select based on solution alternative analysis for deployment of XACML driven role based authorization system.

KP Information Technology (IT) team invited us to help with requirement analysis and product select based on solution alternative analysis for deployment of XACML driven role based authorization system.

We defined the requirements, detailed out the architecture and deployment and researched the set of meaningful products for the task and prepared solution alternative analysis.