On May 15 2019, WSO2 and Yenlo held a for a full day event exclusively focused on integrating a world of disaggregated APIs, cloud services, and data with use cases of Hanseatic and Trumpf. Here you can find the presentations of that day.
7. INTEGRATION SUMMIT 2019
Agenda – Block 1
• Soft Integration
Hans Bot, Senior Architect @ Yenlo
• Emerging Architecture Patterns; API-centric and Cell-based
Dr. Paul Fremantle, CTO and Founder @ WSO2
è Coffee Break (11:00 – 11:15)
8. INTEGRATION SUMMIT 2019
Agenda – Block 2
• Decentralizing API’s for agile business
Pubudu Gunatilaka, Technical Lead @ WSO2
• Enabling Enterprise IT with a API-first Strategy to Accelerate Digital
Transformation
Daniel Harprecht, Senior Enterprise Architect @ Trumpf
è Lunch Break (13:00 – 14:00)
9. INTEGRATION SUMMIT 2019
Agenda – Block 3
• Role of Integration in an API-driven world
Asitha Nanayakkara, Technical Lead @ WSO2
• Open Banking API’s and PSD2 – Our Journey so far
Dirk Köhler, IT Project Lead, Hanseatic Bank GmbH & Co KG
• Identity & Access Management in an API-driven world
Pubudu Gunatilaka, Technical Lead @ WSO2
è Drinks and Finger food (16:00 – Onwards)
12. INTEGRATION SUMMIT 2019 3
Market force 1: Cloudification
Orchestrated containers on
virtual networks as cloud operating
model, providing resilience and
cosmic scalability, leveraging
smaller, immutable runtimes
13. INTEGRATION SUMMIT 2019 4
Market force 2: Microfication
Orchestrated containers on
virtual networks as cloud operating
model, providing resilience and
cosmic scalability, leveraging
smaller, immutable runtimes
Microservices are the new
software engineering paradigm,
providing flexibility and
independence through
disaggregation and descoping
14. INTEGRATION SUMMIT 2019 5
Market force 3: Data disentanglement
Orchestrated containers on
virtual networks as cloud operating
model, providing resilience and
cosmic scalability, leveraging
smaller, immutable runtimes
Microservices are the new
software engineering paradigm,
providing flexibility and
independence through
disaggregation and descoping
Databases get rearchitected.
Denormalization and data replication
bring data isolation, leaving
consistency across data silos to be
managed elsewhere
15. INTEGRATION SUMMIT 2019 6
Market force 4: Scaling Agile
Orchestrated containers on
virtual networks as cloud operating
model, providing resilience and
cosmic scalability, leveraging
smaller, immutable runtimes
Microservices are the new
software engineering paradigm,
providing flexibility and
independence through
disaggregation and descoping
Organizations are transforming
into collections of agile teams,
acting autonomously, ready to
change anything anytime, and
continuously evolving
Databases get rearchitected.
Denormalization and data replication
bring data isolation, leaving
consistency across data silos to be
managed elsewhere
25. INTEGRATION SUMMIT 2019 16
Aligning market forces drive a major change
Orchestrated containers on
virtual networks as cloud operating
model, providing resilience and
cosmic scalability, leveraging
smaller, immutable runtimes
Microservices are the new
software engineering paradigm,
providing flexibility and
independence through
disaggregation and descoping
Organizations are transforming
into collections of agile teams,
acting autonomously, ready to
change anything anytime, and
continuously evolving
Databases get rearchitected.
Denormalization and data replication
bring data isolation, leaving
consistency across data silos to be
managed elsewhere
28. INTEGRATION SUMMIT 2019 19
What is it?
• A modern, general
purpose programming
language (Turing
complete)
• Integration centric
• Cloud native,
extensible
• Platform agnostic,
open
• Designed for resilience
Why a new language?
• To support agile teams
with a single, powerful
development tool,
whatever their target
platform or
architecture
• To bring state of the
art integration
technologies to server-
side application
developers
What makes it special?
• Remote function calls
are as simple to code
as local function calls
• Connectivity details
inside code
• Built-in support for
streaming functions
• Sequence diagrams
A sequence diagram describes
the detailed implementation
of each use case
33. INTEGRATION SUMMIT 2019 24
Growing live –
Continuous Improvement
with Regular Rejuvenation
24
34. INTEGRATION SUMMIT 2019 25
Take away’s
1. Embrace cloud-
native technologies,
use infrastructure as
code practices.
3. Small is beautiful
4. Go rethink your
governance
2. Leverage a
strategic approach
on integration.
Put your APIs first.
5. Learn to Integrate
like a Ballerina,
gently and softly.
35. INTEGRATION SUMMIT 2019
THANK YOU
wso2.com
And good luck fighting
entropy when you’re
back at work
yenlo.com connext.com
hans.bot@yenlo.com
36. INTEGRATION SUMMIT 2019
API and cell-based architectures
Dr Paul Fremantle
CTO & Co-Founder, WSO2
paul@wso2.com / @pzfreo
INTEGRATION
37. INTEGRATION SUMMIT 2019
The Integration Imperative is Growing
Disaggregated architectures drive 50 billion endpoints, growing >1 trillion
CONSUMER DEMAND
Scale and agility are pushing
app disaggregation...
…that makes hybrid
integration the unspoken
challenge of all cloud
services
SUPPLIERS DISAGGREGATE ARCHITECTURE TO MEET DEMAND
1
10
102
103
105
109
MONOLITHIC
BUSINESS APP
ENTERPRISE
APPS
DEPARTME
NTAL APPS
SAAS APPS
PUBLIC /
PRIVATE APIS
SERVERLESS &
MICROSERVICES
1970s
|
MAINFRAME
1980s
|
IT
AWAKENING
1990s
|
INTERNET
2000s
|
MOBILE
2010s
|
IoT/AI
2020+
|
DIGITAL NATIVE
38. INTEGRATION SUMMIT 2019
APIs create business agility
that fosters the rapid
business reconfiguration
necessary to continually
adapt to an unknown future
of constant change.”
~ Randy Heffner,
Forrester Research
...And APIs Are The Glue
All integration is becoming hybrid integration
“
39. Why are APIs important?
• An API is a business capability delivered over the Internet
to internal or external consumers
– Network accessible function
– Available using standard web protocols
– With well-defined interfaces
– Designed for access by third-parties
• A Managed API is:
– Actively advertised and subscribe-able
– Available with SLAs
– Secured, authenticated, authorized and protected
– Monitored and monetized with analytics
40. APIs are the products of the 21st Century
● APIs are how digital value is delivered
● Monetized either directly or indirectly
● Increasingly intermediated, traded and marketed
● Not just between organisations but within
organisations as well
50. INTEGRATION SUMMIT 2019
A cloud-native programming language for microservices and APIs
● A compiled, transactional, statically and
strongly typed programming language with
textual and graphical syntaxes.
● Incorporates fundamental concepts of
distributed system integration
● Offers a type safe, concurrent environment
to implement microservices with
distributed transactions, reliable
messaging, stream processing, and
workflows.
52. ● An API Marketplace goes
above and beyond the API
Developer Portal
● Enables aggregation and trade
in APIs
● Creates new revenue sharing
models
API Marketplaces
56. The best architectures, requirements, and designs emerge from
self-organizing teams.
The Agile Manifesto
Agile processes promote sustainable development. The sponsors,
developers, and users should be able to maintain a constant pace
indefinitely.
Deliver working software frequently with a preference to the shorter
timescale.
“
“
“
57. The best architectures, requirements, and designs emerge from
self-organizing teams.
The Agile Manifesto
Agile processes promote sustainable development. The sponsors,
developers, and users should be able to maintain a constant pace
indefinitely.
Deliver working software frequently with a preference to the shorter
timescale.
“
“
“
61. A team which:
● Manages its own work
● Pulls work
● Doesn’t require “command and control”
● Communicates effectively with each other
● Is not afraid to ask questions
● Continuously evolves skills and capabilities
What is a “self-organizing” team?
https://www.scrumalliance.org/community/articles/2013/january/self-organizing-teams-what-and-how
73. Summary
• Disaggregation is inevitable
• Cloud Native + APIs => Agility
• An API strategy is essential for
– Digital transformation, and
– Organisational effectiveness
• Cells are the building blocks of a composable
enterprise
77. INTEGRATION SUMMIT 2019
- High traffic
- Self contained access tokens to secure the API
- Dynamic routing for product discovery
- Custom response caching requirements
- API Shaping to minimize mobile bandwidth usage
- Additional API gateway for internal users
Product API
GATEWA
Y
78. INTEGRATION SUMMIT 2019
- Medium traffic
- Mutual TLS and OAuth 2.0 to secure the APIs
- Custom response caching requirements
- Different API mediations
Order API Payment API
GATEWAY
79. INTEGRATION SUMMIT 2019
- Low traffic
- Basic Auth to secure the API
- Private API
- Different API mediations
Inventory API
GATEWAY
81. INTEGRATION SUMMIT 2019
TRAFFIC MANAGER
API PUBLISHER
DEVELOPER PORTAL KEY MANAGER
GATEWAY
API PROVIDERS
API CONSUMERS
API CONSUMERS
Publish
API
Push to
Store
Publish
throttling
policies
Update gateway
Access token
generation request
Key
Validatio
n
API
Invocation
SERVICE IMPL
Subscribe
to API
83. INTEGRATION SUMMIT 2019
Some key concerns...
- Different resource usages
- Different Security enforcements
- Dynamic routing
- API mediation and transformation
- API Shaping
- Response Caching
- Private vs Public APIs
- API Gateway per department/unit
86. INTEGRATION SUMMIT 2019
Some Key Requirements for Decentralizing APIs
- API Security
- Rate limiting
- API Discovery
- Analytics & Traffic Monitoring
- API Monetization
- API Mediation
88. INTEGRATION SUMMIT 2019
API Security
● Authentication
○ Security latency should be minimum
○ Security in locked down environments
○ Use of Self contained access tokens
● Authorization
○ Scope validation
○ API subscription validation
○ Other fine grained access controls
89. INTEGRATION SUMMIT 2019
Rate Limiting
● Throttling happens at
○ API level
○ Application level
○ Resource level
● Use of Traffic Manager
91. INTEGRATION SUMMIT 2019
Developer first approach
● Skip API Publisher
● Skip Developer Portal
● Use of JWT to secure the API
API MICROGATEWAY
Swagger
92. INTEGRATION SUMMIT 2019
API Discovery
● API visibility in Developer Portal
○ Public
○ Restrict by role
● Publish API to developer portal from API
Microgateway
93. INTEGRATION SUMMIT 2019
Analytics and Traffic Monitoring
● File based analytics
data recording
● Upload data zip files
to Analytics servers
● Summarize analytics
data in Analytics
servers
103. INTEGRATION SUMMIT 2019
Challenges with Microservices
- Secure communication between services
- Analytics, tracing and monitoring
- Disaggregation of architecture increases the number of
endpoints
- Communication among these endpoints will be a key
challenge
- Service discovery
- Network resiliency
- End to end authentication
105. INTEGRATION SUMMIT 2019
Service Mesh
A service mesh is a dedicated infrastructure layer that
controls service-to-service communication over a network.
It provides a method in which separate parts of an
application can communicate with each other.
source:techtarget.com
108. INTEGRATION SUMMIT 2019
When is API Management required in a Service
Mesh
- When users need to expose microservices to outside in
a secured and a controlled manner
- When fine grained security should be enforced on APIs
exposed
- When stats need to be collected on API usage for
monetization and billing
- When it is required to offer a marketplace for APIs for
easy discovery and adoption
109. INTEGRATION SUMMIT 2019
WSO2 API Management for Istio, Service Mesh
Source: https://wso2.com/api-management/microservices/istio/
111. INTEGRATION SUMMIT 2019
Enabling Enterprise IT with a API-first
Strategy to Accelerate Digital
Transformation
Stuttgart, May 2019
Daniel Harprecht
INTEGRATION
114. INTEGRATION SUMMIT 2019
TRUMPF is…
A Family-owned company
since 1923
Technology leader in two
business areas
Close to our customers
with 77 subsidiaries
Innovation-guaranteed –
sustainable and
permanent
115. INTEGRATION SUMMIT 2019
Digital Transformation TRUMPF
Digital Ambition as Starting Point for Digital Priorities and Requirements
DIGITAL FOUNDATION
DIGITAL AMBITION
Internal Digital Transformation
Smart Factory Solutions &
Services for new Business Areas
Smart Factory Solutions
& Services for TRUMPF
Machines/Lasers
Disruptive Business Models
Supplier
New digital offerings
Consumer
Digital Business Processes
Organizational
Structures
Data-
Analytics
Architecture Employee SkillsPartner Network
Data-
Structure
Mindset/
Working Method
Technical Requirements Organizational Requirements
117. INTEGRATION SUMMIT 2019
▼ No Interface Strategy
▼ Importance of Interfaces
▼ Missing Accountability
▼ cost-intensive interface
development process
▼ long development cycles
▼ hardly reusable
Did our “Homework”
?
07/2017 2018 2019 202+
As-Is
eShop(s) Workday
C4C SAP ERP
PI
HCI
SIS E2Q
Created a Vision
Found comrades
118. INTEGRATION SUMMIT 2019
Did our “Homework”
Created a Vision
Found comrades
To-Be
eShop
C4C SAP ERP
Individualization
Harmonization
Translation
DMA …
…
We connect every application with
every process internal & external
to ensure that the right information
is consumed and processed flawless & secure.
?
07/2017 2018 2019 202+
As-Is
eShop(s) Workday
C4C SAP ERP
PI
HCI
SIS E2Q
119. INTEGRATION SUMMIT 2019
?
07/2017 2018 2019 202+
Vision
TextReason
Costs
Time
Fear
Did our “Homework”
Created a Vision
Found comrades
Enterprise
Architect Solution
Architects
e.g. Web, Mobile, …
Developers
e.g. JS, ABAP, …
IT Security
120. INTEGRATION SUMMIT 2019
Designed Target Architecture
2017 11/2018 2019 202+
• collected >140
requirements
• screened 7 technologies
with 9 different
Implementation Partners
• conducted 15 Beauty
Contests
A B C D E F
A C D F
D
A1 A2 A3 D1 D2 D3
A1 A3 D1 D3
A A3 DD1
TCO
A
DD1
Requirementsto
Solutiondetermination
SolutiontoImplementation
partnerdetermination
We connect every application with every process internal & external
to ensure that the right information is
consumed and processed flawless & secure.
Chose Technology & Partner
Finalized RFP
RFP
123. INTEGRATION SUMMIT 2019
MVP Go-Live
Advertised our vision & project
Deployed our first set of API’s
✓ Communication Packages (Intranet- & Yammer-Post, Status, Progress, …)
✓ Monthly Demo-Sessions
✓ Team Meeting Visits
✓ FAQ
2017 2018 04/2019 202+
Communication Strategy
Reason
Costs
Time
Fear
124. INTEGRATION SUMMIT 2019
2017 2018 04/2019 202+
MVP Go-Live
Advertised our vision & project
Deployed our first set of API’s
Articles
= to retrieve Product Master Data, its
availability or price(s).
SAP ERP PIM
Transformation
Customer Addresses
= to retrieve customer address details
SAP ERP
SAP
Hybris
Transformation
Machine Equipment
= to retrieve machine equipment
hierarchy & attributes information
ERP SIS DIP
Transformation
Order
= to place customer purchase orders
ERP SIS DIP
Transformation
125. INTEGRATION SUMMIT 2019
• 14 APIs
• 20 POs per Week
• >500 NL Identities
migrated
• >1000 Other Identities
migrated
2017 2018 04/2019 202+
MVP Go-Live
Advertised our vision & project
Deployed our first set of API’s
127. INTEGRATION SUMMIT 2019
2017 2018 2019 202+
Extend Internal & External
Hybrid Cloud Mode
ERP Transformation
Consumable
APIs
On-PremiseCloud
API
API
API API
SAP
ERP
API API
…
(Legacy)
API API
…
(Legacy)
API API
SAP
Cloud
API API
Workday
API API
AWS
API API
128. INTEGRATION SUMMIT 2019
2017 2018 2019 202+
Extend Internal & External
Hybrid Cloud Mode
ERP Transformation
• 180 Technical R/3 Interfaces (April 2019)
• 25 years of Add-on's & Customizing
• R/3 End of Support (31 December 2025)
129. INTEGRATION SUMMIT 2019
Conclusion
Vision & Target
✓ You need a vision to motivate your organization!
✓ Draft a Logical Target Architecture
✓ Define, but iterate when needed your Technical Target Architecture
Partnership
Communicate &
Commit
130. INTEGRATION SUMMIT 2019
Conclusion
Vision & Target
✓ You need a vision to motivate your organization!
✓ Draft a Logical Target Architecture
✓ Define, but iterate when needed your Technical Target Architecture
Partnership
Communicate &
Commit
✓ Find Comrades in your organization
✓ Look for a partner who you can rely on
✓ Strengthen your partnership continuously
131. INTEGRATION SUMMIT 2019
Conclusion
Vision & Target
✓ You need a vision to motivate your organization!
✓ Draft a Logical Target Architecture
✓ Define, but iterate when needed your Technical Target Architecture
Partnership
Communicate &
Commit
✓ Find Comrades in your organization
✓ Look for a partner who you can rely on
✓ Strengthen your partnership continuously
✓ Communication is the key across your organization
✓ Show your progress – visible & understandable for everyone!
✓ Check your API “customers”, manage them and win them for new APIs!
132. INTEGRATION SUMMIT 2019
Conclusion
Vision & Target
✓ You need a vision to motivate your organization!
✓ Draft a Logical Target Architecture
✓ Define, but iterate when needed your Technical Target Architecture
Partnership
Communicate &
Commit
✓ Find Comrades in your organization
✓ Look for a partner who you can rely on
✓ Strengthen your partnership continuously
✓ Communication is the key across your organization
✓ Show your progress – visible & understandable for everyone!
✓ Actively manage your “API Customers” and win them for new APIs!
139. INTEGRATION SUMMIT 2019
New Strategy
Reuse existing systems
Cost Savings
Faster time to market
Work with legacy
backend systems
Room for future
expansions
API Management solution along with some broad integration capabilities
142. INTEGRATION SUMMIT 2019
Why APIs ?
● APIs are a key enabler of digital enterprise
● APIs acts as gateways to enterprise digital asserts
● Allows the enterprise to build new digital consumer experiences within
accelerated time frame
● They open up new revenue channels and expand existing revenue
channels
● APIs enable the enterprise to cater for future expansions
143. INTEGRATION SUMMIT 2019
Code first design
Code First vs API First Design
Back-end
Team
ImpI 1
API
2
Client
A
Client
B
...
SDK SDK ...
3
Front-end
Teams
API first design
Front-end
Teams
Back-end
Team
API API API
Mock Mock Mock 1
Client
A
Client
B
...
SDK SDK ...
ImpI 2
2
ImpI ImpI
Data Services
144. INTEGRATION SUMMIT 2019
API Façade
IoT
Mobile
Apps
Web
API Gateway
API Façade
DatabaseLegacy System
Content
Management
CRM/HR/Inventory
Systems
SaaS
145. INTEGRATION SUMMIT 2019
API Façade
System 1
API 1
System 2
API 2
Composite API
System APIs
Orchestration APIs
146. INTEGRATION SUMMIT 2019
Orchestration APIs
Invoke
Policy / discovery
Enrich Publish
DB
write
Transform Update
Policy
Orchestration API
CRM
API1 Queue
DB
REST
API
147. INTEGRATION SUMMIT 2019
API Façade
IoT
Mobile
Apps
Web
API Gateway
API Façade
DatabaseLegacy System
Content
Management
CRM/HR/Inventory
Systems
SaaS
API A API B
Orchestration API
Orchestration APIs
System System
150. INTEGRATION SUMMIT 2019
Building the API’s
Price
Update
System
Inventory
System
Reservation
System
PoS
System
Store 1
Store 2
Store 3
Mobile App
Website
API
API
Delivery System
API
Payment System
API
API
API
151. INTEGRATION SUMMIT 2019
Building the API’s
Price
Update
System
Inventory
System
Reservation
System
PoS
System
Store 1
Store 2
Store 3
Mobile App
Website
API
Delivery System
API
Payment System
API
Managed API
API
API
API
152. INTEGRATION SUMMIT 2019
Types of digital assets in enterprises
● Application silos that hold key business capabilities of the enterprise
● Enterprise SaaS applications
● Enterprise Data stored in various storage mechanisms including RDBMS,
Files, Spreadsheets, CSV files ...
● Applications that execute the process flows in the enterprise
● Systems based on proprietary protocols and data formats
153. INTEGRATION SUMMIT 2019
Key integration capabilities
● API and Service Hosting
● Orchestration of services and apis
● Routing
● Transformations
● Protocol switching and ability to process different data formats
● Parallel processing
154. INTEGRATION SUMMIT 2019
Integration Strategy
• Discover the ecosystems and Application silos
• Understand the data
• Understand the capabilities
• Identify the possible integration points for each system
• API enable the identified systems
• Implement the integration logic
158. INTEGRATION SUMMIT 2019
API Integration - Integrator Profile
A lightweight, high performance integration runtime
• Comprehensive REST, SOAP, and WS-* support
• Support for File, Data, Messaging based integrations
• SAP, FIX, and HL7 - Domain specific solutions
• Configuration driven
• Extensible and Scalable
• 100% coverage of all EI patterns
159. INTEGRATION SUMMIT 2019
Data Integration - Integrator Profile
Building service abstractions on top of disparate data sources
SQL
SOAP/REST/OData
XML/JSON
Integrator Runtime
WSO2 EI
160. INTEGRATION SUMMIT 2019
Business Processes - BPS Profile
Processes/Workflows with BPMN, BPEL, Human Tasks
Application α
Application β
Defined processes and workflows
which may also consist of human
tasks
Business Process Execution as
a Service
WSO2 EI
Application N
Process Initiation
Results/Decisions
161. INTEGRATION SUMMIT 2019
Micro Integrator
• Can be to used to create composite services using atomic services
• Separate distribution that can be used in a cloud native environment
• Users can use the same EI tooling to create artifacts
• Deploy few composite integration services per micro integration
• Command line tool for management tasks
• Fast startup time (5s)
• Small distribution size of 150 mb
• K8S Integration
https://github.com/wso2/micro-integrator
162. INTEGRATION SUMMIT 2019
Micro-integrations
28
Consumer 1
API Service P API Service Q API Service R API Service S
Consumers
Consumer 2 Consumer 3
μ Service A
Proprietary &
Legacy
Systems
Web API /
SaaS
API Services/
Edge Services
Composite Service/
Integration Services
Core Services/
Atomic Services μ Service I
μ Service H
μ Service J
μ Service E
μ Service C
μ Service D
μ Service G
μ Service B
μ Service F
API
Management
163. INTEGRATION SUMMIT 2019
WSO2 EI Graphical Tooling
• Drag and Drop Visual Editor
• Develop, Deploy, Test, Debug
capabilities from the editor
• Build in micro Integrator runtime for
testing and debugging
• Export artifacts as a docker image
with micro integration
• Integration templates for rapid
development
166. INTEGRATION SUMMIT 2019
Continuous Integration and Continuous Delivery
Continuous Integration
Server
Source Control
System
WSO2 EI
WSO2 EI
Environment 1
WSO2 EI
WSO2 EI
Environment 2
Continuous Test Server
Integration
artifacts
IDE IDEIDE
168. INTEGRATION SUMMIT 2019
Integration with Systems that Talk in Standard
Protocols
Support for a wide range of
standard protocols
• HTTP/HTTPS
• JMS
• AMQP
• FTP/SFTP/FTPS/SMB
• SMTP/IMAP
• MQTT
• KAFKA
• And many more
SMTP
HTTP
JMS
FTP
Websocke
t
170. INTEGRATION SUMMIT 2019
Integration with Systems that Talk in Non-
standard/ Proprietary Protocols
• Built in support for well-known proprietary protocols
E.g. SAP
• Easy to extend the functionality to introduce new protocols
HTTP/API
Public Private Organization
Existing
System
Non Standard
Protocol
Connector
171. INTEGRATION SUMMIT 2019
Integration with Files-based Systems
● WSO2 Enterprise Integrator supports a wide range of file transferring
protocols such as FTP, SFTP, FTPS, and SMB
○ Listen to a location, pick files, and invoke a web API using the content of the
files
File HTTP
Web API
Invocation
Existing Legacy
System
174. INTEGRATION SUMMIT 2019
Conclusion
● Why API Driven integrations are important
● API and Integration strategy and approaches
● WSO2 Integration suite functionality to support API driven Integration
● How to successfully implement API driven Integration
181. INTEGRATION SUMMIT 2019
Insurance
Residual debt and
direct insurances (B2B / B2C)
Deposit
Fixed and variable rate
products (B2C)
Factoring
Acquisition of short and medium-term
receivables out of payment facilities
191. INTEGRATION SUMMIT 2019
WSO2 Open Banking – Key Features
API templates that support The Berlin
Group API specifications
Inbuilt API Security including OAuth2
and certificate validation
Strong customer authentication,
Adaptive authentication, and User
Consent Management
API Analytics & Business Insights with
Dashboards
Fraud Detection and Transaction Risk
Analysis
Compliance with General Data
Protection Regulation (GDPR)
Source: WSO2
193. INTEGRATION SUMMIT 2019
South API Layer
North API Layer
Core Banking Systems
TPP
Internal Tools
TPP
NorthSouthBackend
194. INTEGRATION SUMMIT 2019
TestDevelopment Live
North API Layer (WSO2 Open Banking)
South API Layer (WSO2 API Manager)
Backend (Hanseatic Bank Services)
Staging approach
197. INTEGRATION SUMMIT 2019
Silo based organisation
Source: https://pxhere.com/en/photo/752204
data
base
network
developer
application
management
project
management
system
administration
198. INTEGRATION SUMMIT 2019
Exemption from fallback interface
• 116 pages guideline report
• approx. 60 questions
• 3 month before mid of September
• live conditions
• feedback from TPP
199. INTEGRATION SUMMIT 2019
2 registered TPP in Germany
live conditions?
https://de.m.wikipedia.org/wiki/Datei:WTF_(8439080666).jpg
201. INTEGRATION SUMMIT 2019
API strategy – next steps
base for new strategic
opportunities
HB
mobile
banking
HB
online
banking
PSD2
202. INTEGRATION SUMMIT 2019
API strategy – possible future steps
•products
•conditions
•service functions
Open
Banking
•digital credit application
•access to partner account data
Strategic
Partner
•reusable services
•migration of existing interfaces
•central communication hub
internal
203. INTEGRATION SUMMIT 2019
Silo based organisation
Source: https://pxhere.com/en/photo/752204
data
base
network
developer
application
management
project
management
system
administration
204. INTEGRATION SUMMIT 2019
Service based organisation
Source: https://pxhere.com/de/photo/1445813
crossfunctional
api as one tool to support new approach
self organized
221. INTEGRATION SUMMIT 2019
● Over 70% of employees reuse passwords at work
● 59% reuse their passwords everywhere
● 81% of hacking-related breaches leveraged either stolen and/or
weak passwords
● The above rate has gone from 50% to 66% to 81% during the
past three years (2017)
‘Passwords’ are Not Secure!
Source - 2017 Verizon Data Breach Investigations Report (DBIR)
236. INTEGRATION SUMMIT 2019
WSO2 Identity Server Offering - Overview
Static Authentication Flow
● IdP offers static authentication flow to the user
● Multi-factor & Multi-option authentication
● In Multi-option authentication user can pick one
option from each step
Request-based Conditional Authentication Flow
● IdP offers dynamic authentication flow to the user
● Based on attributes of request message
authentication steps will change
● HTTP message, SAML ACR, OIDC ACR
237. INTEGRATION SUMMIT 2019
WSO2 Identity Server Offering - Overview
User-based Conditional Authentication Flow
● IdP offers static authentication flow to the user
● Based on attributes of identified user
authentication steps will change
Adaptive/Risk-based Authentication Flow
● IdP offers dynamic authentication flow to the user
● Authentication steps can be based on user
behaviors, environments, history and risk score
238. INTEGRATION SUMMIT 2019
● Everyone knows passwords are no longer secure.
● Multi-factor authentication offers a perfect solution but less
adopted due to usability issues.
● Multi-factor authentication needs to be more dynamic, responsive
and context sensitive, and we called it ‘Adaptive Authentication’
● WSO2 Identity Server can support any adaptive or risk-based
authentication use case.
Conclusions