Professional Documents
Culture Documents
Connected Government: Cloud Enabling Public Services
Connected Government: Cloud Enabling Public Services
Connected Government: Cloud Enabling Public Services
Connected Government
Cloud Enabling Public Services
The Importance of Functional and Nonfunctional Requirements in
Building a Multi-tenanted Digital Government Stack
Table of Contents
eGovernment and the Move Towards Cloud................................................................................................................................................03
Think Global, Act Local................................................................................................................................................................. 03
1. Model A - Centrally Owned and Managed.................................................................................................................04
2. Model B - Centrally Owned, But Locally Managed.....................................................................................................04
3. Model C - Locally Owned and Managed....................................................................................................................05
With Great Power Comes Great Responsibility............................................................................................................................ 05
Major Functional and Nonfunctional Requirements of a Typical Multi-tenant eGovernment Application................................................. 06
The Challenge of Functional and Nonfunctional Requirements................................................................................................... 06
Customizable Business Rules........................................................................................................................................................ 06
Customizable Workflows.............................................................................................................................................................. 06
Theming and UI............................................................................................................................................................................ 07
System-wide Auditing................................................................................................................................................................... 07
Customizable and Dynamic Forms................................................................................................................................................07
Document Storage and Versioning............................................................................................................................................... 08
Identity Management, Roles, and Access Control........................................................................................................................ 08
Customizable Reports................................................................................................................................................................... 08
Data Migration and Integration.................................................................................................................................................... 08
Field, Mobile Access, and API Management.................................................................................................................................08
Master Data, Semi Master Data, and Local Data.......................................................................................................................... 09
Localization................................................................................................................................................................................... 09
Dashboards and User Preferences................................................................................................................................................09
Hierarchical Governance Model and Sub Tenants........................................................................................................................ 09
Scheduling.................................................................................................................................................................................... 10
G2C, C2G and Citizens Portal........................................................................................................................................................ 10
Towards an Enterprise-grade e-Government Solution................................................................................................................................. 10
WSO2 Cloud and WSO2 Private PaaS........................................................................................................................................... 10
WSO2 Product Mapping to Digital Government Requirements................................................................................................... 13
Summary.......................................................................................................................................................................................................16
Glossary........................................................................................................................................................................................ 16
References.................................................................................................................................................................................................... 17
2
http://wso2.com
White Paper
Cloud computing provides a government with a compelling technology vision - a massive pool of
technology resources, without having to worry about ownership, capital costs, or maintenance. With the
introduction of cloud computing, eGovernment initiatives around the world are starting to see a new
dimension, where the focus is more on the delivery of technology to end consumers.
3
http://wso2.com
White Paper
LG x LG y
Field Mobile
Citizen’s
VPN
Portal Citizens
LG x X
LG y
Secure
Network Internet
Citizen’s
Portal Citizens
Y
National Users,
Consolidation
Application Cluster
Private
Cloud
In Figure 1, LG(x) and LG(y) are different local government entities consisting of customized LG applications,
accessed by departmental users via a secure network. Citizens of the relevant LG bodies will access a
‘Citizen’s Portal,’ again in a multi-tenanted manner.
Based on the level of autonomy and its linkage to central government, eGovernment can be viewed in
three different perspectives. For clarity, let’s divide them into three different models:
Each of the above categories have their own set of advantages and challenges. The preferences of
the above models also change from country to country, and region to region. At a glance, the possible
advantages of the cloud for eGovernment are, but not limited to
• Central management, thus providing a consistent and transparent system across LG that
implements national policies (Model A)
• Local governance, thus providing enough flexibility to create and implement local policies for the
locality (Model B, C)
• Provides the central government with the ability to adapt innovative pricing models, such as the
SaaS ‘pay-as-you-go’ model, based on actual usage by local governments and/or citizens (Model A)
• Provides the central government with the ability to seamlessly push updates to local governments,
whilst allowing local governments to create or configure new features at local level (Model A)
• Facilitates horizontal and vertical sharing of data, services and facilities (Model A, B)
• Provide a low IT footprint with low cost of operations, where infrastructure and knowledge can be
shared across government agencies (Model A, B)
• Provide a low TCO entry point for government agencies to automate and IT enable their services,
with a faster time to market (Model A, B, C)
• Better and more interactive G2G, G2B, and G2C services (Model A, B, C)
Along with the need to evaluate the best approach - be it public, private or hybrid clouds, focus on
stringent security policies, government certification, and accreditation is also of utmost importance.
A move towards cloud with data hosted on public infrastructure means these risks need to be adequately
addressed. In the US, for instance, The Federal Risk and Authorization Management Program (FedRAMP)
[3] is a government initiative that provides a standardized approach to security assessment, authorization,
and continuous monitoring for cloud products and services. As widely stated, “the whole is greater than
the sum of its parts” and eventually a centrally governed, certified, or accredited security solution that can
be adapted at a local level would provide a stronger security solution for eGovernment.
5
http://wso2.com
White Paper
Nonfunctional requirements (NFR), on the other hand, are a set of additional requirements that determine
‘how a system works in practice’. NFRs are the often hidden set of requirements that run the system, such
as “the number of concurrent users that can access the system” or “the maximum amount of time a report
can take to render.”
As applications and their architecture become more complex by the day and as more and more applications
start moving towards the cloud, nonfunctional requirements start becoming the key set of requirements
that need to be satisfied in order to ensure successful implementation. NFRs have become the key set of
issues that enterprise architectects, DevOps, and implementers face in the move towards cloud-based
systems.
A number of challenges exist, regardless of the type of eGovernment application being built - centrally
managed or locally managed.
Some of the generic challenges that need to be met when building an eGovernment solution are listed
below:
Customizable Workflows
eGoverment is usually characterized by complex workflows and business logic, determined and governed
at state and local government level. For instance, the application for the construction of a condominium
in Lyngby would have to go through a workflow of 10 steps including authorizations for two different
authorities, while the same application in Copenhagen would require 12 steps, but with no outside
authorizations required. Along with the number of nodes or steps in the workflow being individually
6
http://wso2.com
White Paper
configurable, the number and level of human participation would have to change as well. Hence, the
requirement for a tenant level workflow implementation is present.
Theming and UI
Each tenant would uniquely represent an LG or state - hence the web application that is presented would
have to have the look and feel of the LG, including its color scheme, logo, custom banner and, in some
cases, custom-static content.
System-wide Auditing
System admins and product owners would require system wide auditing to figure out how the system
is used. More importantly, local government legislation might call for audit trails of BAU operations and
custom KPI monitoring for LG. A tenant admin needs to be able to view all transactions that have taken
place in report formats that can be shared.
7
http://wso2.com
White Paper
There can be national government requirements on the number and types of roles, which can be fixed and
replicated between tenants; in addition, new roles will be created at LG level as well.
In a complex scenario, a user might have property in two states - in a more complicated scenario, a local
government might be split into two bodies, which would mean all users now would belong to a newer
authority.
Customizable Reports
Reports are key to any eGovernment application, which also usually enable the linkage between the
automated process and manual process. Conventional eGovernment applications that are just converting
to an automated environment might still have the need to officially maintain a signed, paper artifact in the
form of a report. There just might be the requirement to send a printed version for filing by a higher official
as well - all in all, reports are a must.
Different tenants would have the requirement of having a different kind of report. The need to create ad
hoc queries resulting in reports, exportable reports to PDF, spreadsheets, etc. exist as well. Reports need to
be designed and deployed by the LGs while the access control logic needs to be handled by the backend.
Localization
LGs of the same nationality in some parts of the world would use different languages for operations, thus
the localization can be managed centrally or locally. However, even within the same language, the official
terminology for an asset or entity may differ between LGs. This calls for LG governed localization as the
preferred mechanism.
Advisors
Moffs and
Compnor
Grand Moffs
Planetary
Ubiqtorate Military Bureaucracy
Governors
Figure 2: A section of the governance model of the Galactic Empire in Star Wars
Scheduling
Many aspects are required to be executed as scheduled tasks that run at given time periods - for instance,
the assessment tax and relevant fines of one LG would be calculated at the end of each quarter, while the
same would be calculated monthly at another LG; however, both would be scheduled to run in the specific
period at setup time.
WSO2 Private PaaS supports heterogeneous environments in the cloud, both through the new plug-in
simplicity of adding third-party cartridges, and expanded support for IaaS platforms that enterprises run
today.
10
http://wso2.com
White Paper
Carbon Carbon
Other Any
Enterprise Application PHP
Carbon Pluggable
Service Bus Server Cartridge
Cartridges Cartridge
Cartridge Cartridge
Giving you all the power of cloud, WSO2 Private PaaS includes the WSO2 Apache Stratos PaaS Foundation;
all pre-integrated, cloud-ready, and fully multi-tenant WSO2 Carbon middleware products; and cartridges
for PHP, TomCat and MySQL.
Developers and third-party vendors also can develop their own cartridges through the use of jclouds – an
Apache incubator project – and it also offers the ability to run on almost any IaaS cloud, including SUSE
cloud and other OpenStack-based offerings, VMware, Eucalyptus, and Amazon Elastic Computing Cloud
(EC2).
The WSO2 platform (as shown in Figure 4) consists of 100% open-source products that span the entire
breadth of SOA, yet remain lean, simple, and easy to use and inexpensive. All products are built on a
common foundation called WSO2 Carbon - a modular, reconfigurable, elastic, OSGi-based architecture.
This creates a strong stable base for building large-scale enterprise applications, as well as integrating with
legacy and existing applications.
11
http://wso2.com
White Paper
Storage Server
A core advantage of WSO2 Private PaaS is the fact that the same set of middleware applications,
components, and services shown in Figure 4 can be deployed in various deployment models, including
public cloud, private cloud, hybrid cloud or locally, on-premise.
Stratos
StratosLive
Private PaaS
Public PaaS
Choose a deployment
Storage Server option, or create a
hybrid cloud by
combining deploymet
options.
(Same programming
model is used across all
Carbon deployment choices)
On-Premise
12
http://wso2.com
White Paper
13
http://wso2.com
White Paper
WSO2 Business Rules Server Custom rules for LG LG-specific business rules can
(WSO2 BRS) be stored in a multi-tenant
manner. Hence, the same rule, for
instance a LG building tax rule can
have different implementations
at LG level and different
implementation at national level.
An advanced use case that we
have come across is the need for
LG admin users to create new
rules. The WSO2 BRS supports
rules written in Drools being
deployed at run time.
WSO2 Business Process Server Custom business processes and Stateful or stateless long-running
(WSO2 BPS) workflows business processes are written in
BPEL 2.0 with human task support
and can be deployed per tenant
for LG-specific workflows or at
super-tenant level for nation-
wide workflows. Task escalations,
assignment to people or roles,
and task deadline management
can be carried out integrating
with WSO2 IS or by implementing
a custom solution.
WSO2 Business Activity Monitor LG-wide or nation-wide auditing Auditing or operational BI can be
(WSO2 BAM) a legal requirement to monitor
all transactions, both at local
level and national level, which
is supported by WSO2 BAM.
WSO2 BAM can monitor other
servers as well, allowing admins
to take action based on server
performance. Furthermore, KPI
monitoring can also be carried
out for monitoring performance
of users and the LG itself.
WSO2 API Manager (WSO2 APIM) Service and API management Eventually a digital government
system will expose a number
of services as APIs to users,
developers, mobile devices, etc.
APIM is able to create, publish,
discover, and govern API usage.
14
http://wso2.com
White Paper
WSO2 Elastic Load Balancer Intelligent load balancing Elastic load balancing enables
(WSO2 ELB) nodes to scale elastically in
conjunction with the IaaS layer,
depending on various load
balancing parameters. WSO2
nodes/components can be
deployed as manager and worker
nodes. Another useful feature is
to do tenant aware load balancing
where some LG would require
more resources compared with
other LGs.
WSO2 Identity Server (WSO2 IS) Management of users, roles, and A national system can allow LG
federated identity to sign up in a self-sign-up mode,
in which case they would have
to be validated at sign up time.
Else, a manual LG/tenant creation
process can exist where a super
admin at national level creates
the local government tenant,
which in turn instantiates the
other relevant services as well.
WSO2 Private PaaS Management Management of tenants A national system can allow LG
to sign up in a self-sign-up mode,
in which case they would have
to be validated at sign up time.
Else, a manual LG/tenant creation
process can exist where a super
admin at national level creates
the local government tenant,
which in turn instantiates the
other relevant services as well.
WSO2 App Factory Compliance-based application The LG can implement App
lifecycle management Factory as a complete application
lifecycle management solution,
which incorporates the LGs
SLAs, compliance and policy
framework. This would then
ensure that government
applications built through this
process follow a set of enforced
guidelines.
15
http://wso2.com
White Paper
Multi-tenant
Identity Server
Custom configurations
- Tax Rates
- LG specific rules
Application Logic
Dynamic Forms
Custom Workflows
Multi-tenant LA specific documents,
Application DB - Blueprints
- Assessments
- Licenses
Summary
Cloud-based architectures are fast becoming the de-facto solution for digital governments. National
and local government that are capitalizing on the cloud infrastructure are starting to reap benefits with
improved G2G, G2B, and G2C services. WSO2 Private PaaS, the enterprise-grade cloud solution coupled
with WSO2 middleware, offer a myriad of inbuilt services and features that provide an ideal platform
to build flexible, scalable, well-architectured cloud solutions at a faster time to market, enabling digital
connected government at its best.
Glossary
Acronym Abbreviation
CMS Content Management System
G2C Government to Citizen
C2G Citizen to Government
G2B Government to Business
G2G Government to Government
BAU Business as Usual
KPI Key Performance Indicators
SaaS Software as a Service
PaaS Platform as a Service
IaaS Infrastructure as a Service
API Application Programming Interface
BPEL Business Process Execution Language
16
http://wso2.com
White Paper
References
[1] Dimaio, Andrea, “Digital Government is little else than making e-government work”, Sep 2013,
http://blogs.gartner.com/andrea_dimaio/2013/09/18/digital-government-is-little-else-than-making-
e-government-work/
[2] Jeong Chun Hai @Ibrahim. (2007). Fundamental of Development Administration. Selangor: Scholar Press.
ISBN 978-967-5-04508-0
[3] http://cloud.cio.gov/fedramp
[4] http://sw1mush.wikia.com/wiki/Galactic_Empire
17
http://wso2.com
White Paper
About WSO2
WSO2 is the only company that provides a completely integrated enterprise application platform for enabling
a business to build and connect APIs, applications, Web services, iPaaS, PaaS, software as a service and legacy
connections without having to write code; using big data and mobile; and fostering reuse through a social enterprise
store. Only with WSO2 can enterprises use a family of governed secure solutions built on the same code base
to extend their ecosystems across the cloud and on mobile devices to employees, customers and partners in
anyway they like. Hundreds of leading enterprise customers across every sector—health, financial, retail, logistics,
manufacturing, travel, technology, telecom and more—in every region of the world rely on WSO2’s award-winning,
100% open source platform for their mission-critical applications. To learn more, visit http://wso2.com or check out
the WSO2 community on the WSO2 Blog, Twitter, LinkedIn, Facebook, and FriendFeed..