Enterprise API Technology
  1. Home
  2. Projects
  3. Enterprise API Technology
  4. Project Brief
  5. Overview

Overview

Background

This project will deliver the prioritised technology (see draft Technology Roadmap) in order to support delivery of APIs.  The deliverables will ensure APIs can be managed and administered effectively and are sustainable.

See Overview of Programme for further detail.

Scope

This project will deliver the prioritised technology in order to support delivery of the API service.

Out of scope:

  1. Other technology products not part of the deliverables listed below.
  2. Designs of APIs / production of TADs etc - this will be undertaken within the individual API projects

Objectives

To support delivery of APIs up by delivering technology products to ensure APIs can be managed and administered effectively and are sustainable.

Deliverables

The project will deliver the following:

  1. Service Discovery [must]
  2. Micro service dashboard [should]
  3. Logging [must]
  4. API support [must]
  5. Automation [should]

Further information on these deliverables

See API Technical Requirements document for further information about the scope of these deliverables (the document can be located in the Digital Transformation Enterprise APIs One Drive folder in Plan / API Technical Requirements).

  1. API management products - market research [should]

The market research will review API management products which have the potential to help with the project's objective of ensuring APIs can be managed and administered effectively and are sustainable - for example products providing the capability of integrating APIs (third party or in house) to produce a consistent approach.

  1. Security analysis [must]

The security analysis will:

  • Review the security model utilised by COM027 including the production OAuth2 Authorisation server which will be adopted by future APIs. 
  • Identify any security risks of exposing data via the APIs, looking at particular threats, how sensitive the data is and the risk when data is exposed.  Doing so will allow the project team to prioritise the risks, feed these into the design (both technical and software), and allow automated tests that focus on (prioritised) security risks.
  • Validate the current and to-be technical and software architecture.
  • Identify risks, prioritise them, undertake and record appropriate actions.
  • Utilise an established threat assessment process to facilitate the above.
  1. Containerisation [could].  This is planned to be undertaken as part of a future follow-on project, and is included in the Project Brief for completeness only.

Benefits

The following benefits are expected by having one foundation technology project that supports multiple API projects:

  1. Products that are relevant and useful to more than one API
  2. Continuity of technical analyst resource(s)
  3. Reuse where possible - no need to 'reinvent the wheel' each time
  4. Improved efficiency
  5. Consistency in the way APIs are deployed, managed and administered

Success Criteria

  1. Individual APIs can be managed and administered effectively and are sustainable.

 

This article was published on

Project Info

Project
Enterprise API Technology
Code
DTI014
Programme
Digital Transformation - Enterprise APIs (DTIP03)
Management Office
ISG PMO
Project Manager
Chris Copner
Project Sponsor
Mark Lang
Current Stage
Close
Status
Closed
Start Date
10-Mar-2017
Planning Date
n/a
Delivery Date
n/a
Close Date
15-Dec-2017
Programme Priority
1
Overall Priority
Highest
Category
Discretionary

Documentation

Plan