6.22. BARRIERS TO INTEGRATED POLICY ENFORCEMENT MODELS
Based on the discussion above, there are a number of gaps and barriers to realizing a truly integrated policy enforcement model at an enterprise level. We already identified the policy challenges above and the absence of industry standards for unifying the total body of enterprise policies. This problem extends to the lack of industry standards for enforcing policies using various vendor tools and enabling technologies.
The following barriers currently prohibit the integrated enforcement of policies, with or without the development of a unified policy model:
Lack of horizontal integration of tools supporting end-to-end SDLC processes
Lack of mapping design-time policies to quality assurance and testing and runtime policies
Poor to no integration of design-time tools with governance tools supporting design, quality assurance (QA)/test and runtime policy enforcement
Lack of vertical integration of enterprise, corporate, business and process policies with technical policies enforced across a corporate SDLC or project delivery processes
Lack of integration of key governance processes and tools with project execution tools (e.g., portfolio management tools integrated with Integrated Development Environments (IDE) and software development tools, which may in turn integrate with policy engines and policy repositories)
Again, much as the absence of a unified policy model was a call to action, the barriers above should serve as a similar ...
Get Service-Oriented Architecture Governance for the Services Driven Enterprise now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
