Blog Feed Post

Platform-Enabled DevOps for Agile Digital Government

GaaP – Government as a Platform

In Chapter 2 of Open Government Tim O’Reilly first coins the term Government as a Platform, describing how traditional IT for government should become more like Facebook, Twitter and the other Internet pioneers who have been harnessing the evolution of the Cloud to become ‘platforms’, doing so for government would enable a shared infrastructure that enables more rapid digital transformations.

As Francis Maude, Minister for the Cabinet Office, describes in this article one of the biggest cost driving challenges government faces is this duplication across departments, such as the MOJ writing off a £56m project when it discovered the same system was already being developed by the same supplier with the Cabinet Office.

GaaP addresses through building reusable building blocks, the ‘invented wheel’ that does not require reinvention again and again. A particularly powerful and practical example is the GOV.UK Verify ‘IDaaS’ – Identity as a Service, where user identity and authentication is shared across multiple applications to avoid duplicating that function for users.

iPaaS – Integration Platform as a Service

This is very powerfully combined with the role of PaaS as a form of middleware, connecting users and the multiple digital government systems they need to access, defining ‘iPaaS’ – Integration Platform as a Service.

A world-leading example is Estonia’s X-Road system, the Identity-centric middleware platform that enables world-leading Digital Government services for the nation, described in detail in this documentation.

Estonia utilizes a national identity card embedded with a microchip that requires a unique PIN to unlock for each citizen, which then ties in with the X-Road.

“X-Road is the backbone of e-Estonia. It’s the invisible yet crucial environment that allows the nation’s various e-services databases, both in the public and private sector, to link up and operate in harmony.”

With government running hundreds if not thousands of applications a ‘hard coded’ approach, where each API link is coded directly and maintained individually, can become impractical and hard to scale. As this article explains it provides a framework to eliminate data entry duplications, pre-populating government application forms like tax returns.

This then highlights the role of the PaaS (Platform as a Service) layer as ‘middleware’, a set of applications specifically integrated to act as a broker to multiple applications so that developers can ‘write once use many’.

Therefore we can define this integration platform (iPaaS) as a central feature of the GaaP design. As the X-Road name suggests this acts as a “cross roads” between applications, a common highway for exchanging data rather than applications being wired directly together, engendering more flexibility and easier maintenance for the developers.

Key highlights include:

  • X-road core technology has been used in Estonia since 2002.
  • Over 170 databases of their services over X-Road in Estonia.
  • Over 2,000 services are used over X-Road in Estonia.
  • Over 900 organisations use X-Road daily in Estonia.
  • More than 50% of the inhabitants of Estonia use X-Road through the information portal eesti.ee.
  • In 2013 over 287 million queries were done over X-road.

iPaaS and Microservices

This is a complimentary and accelerating architecture for an overall Cloud Native approach. For example in this Slideshare presentation Microsoft describe how the PaaS layer will evolve to become an iPaaS, ideally suited to integrating business systems via microservices.

DevOps: Transforming Procurement for the Composable Enterprise

Although GaaP is naturally a technology heavy conversation it’s actually non-technical aspects that offer the most illumination on the topic, especially for senior executives, most notably the overall organizational transformation in particular Procurement.

You might not have thought Procurement would be relevant to the software engineering scenario, but consider the broader context of IT they exist within and how much of the resource they use is bought in by the organization. When you consider the RFP (Request for Proposal) bidding process is the most common technique used for sourcing business applications for government, and that these can take months and years to conclude you can see how the two begin to relate, how one can act as a throughput bottleneck on the other.

Agile DevOps

In a Linkedin blog David Callner begins to explore how DevOps might be adopted in the public sector, noting how RFPs increasingly now feature a call for the use of Agile rather than Waterfall methods.

http://cloudbestpractices.net/wp-content/uploads/2017/08/govt-devops-300... 300w" sizes="(max-width: 698px) 100vw, 698px" />

In particular he describes how RFPs act to collate large volumes of user requirements, a process which can take months, followed by months of supplier engagement to bid the RFP and then further months for contracts and implementation, stretching out over years beginning to end and unsurprisingly resulting in large failure rates.

In short it’s a process of trying to consume a large elephant and so instead the better approach is to break up the challenge into ‘bite size chunks’. David also describes how in some scenarios they instead work more collaboratively with agencies, to capture requirements into Agile Product Backlogs and organize these into Epic work streams, that can be worked on continuously from beginning through end.

The PaaS approach compliments and accelerates this approach by baking the procurement into the technology, empowering developers to self-serve their own requirements, and critically, employ the use of pre-developed templates and module integrations. The future of enterprise business systems is no longer buying one monolith app from a single vendor, but instead composing together modular solutions that span across internal legacy apps as well as across the XaaS spectrum.

DevOps: Teams and Roles

The reason Pivotal is such a good example of this scenario is not just that they offer a managed implementation of the PaaS, but also bring considerable expertise in the surrounding Cloud Native practices, such as DevOps, Microservices and containers et al.

A great example is this Medium article which explores the dynamics of new team models for DevOps, defining a number of specific roles and how they interoperate, such as:

  • Developer/Engineer
  • Operations
  • Product Owner/Product Manager
  • Designer
  • Tester
  • Architect
  • Data scientist

GaaP on Pivotal Cloud Foundry – Cloud Native DevOps for Government

Defining a repeatable GaaP architecture with these same kinds of capabilities, is considerably easier when you explore a possible real-world implementation, making many of the somewhat esoteric design principles much more tangible.

A great example is the Cloud Foundry offering from Pivotal, where Cloud Foundry is the PaaS implemented to build the Australian digital strategy and also Cloud.gov, enabling USA public sector development teams to build Digital Government systems faster and via standardized best practices, and where Pivotal offer a managed service for others wishing to build a similar Cloud Native approach to business system development.

The article also goes on to describe a detailed PaaS architecture:

http://cloudbestpractices.net/wp-content/uploads/2017/08/pivotal-gaap-30... 300w, http://cloudbestpractices.net/wp-content/uploads/2017/08/pivotal-gaap-76... 768w, http://cloudbestpractices.net/wp-content/uploads/2017/08/pivotal-gaap-10... 1024w, http://cloudbestpractices.net/wp-content/uploads/2017/08/pivotal-gaap-88... 880w" sizes="(max-width: 1500px) 100vw, 1500px" />

Governments can adopt wholesale this Cloud Native approach off the shelf, as it is a common, generic model for increasing the agility and throughput of any software team.

It can then be further tailored for the public sector scenario through defining a second ‘Value Line’ as shown in the diagram, from the top upwards above the apps, to represent a further layer of government-specific modules and tailorings. For example integration of federated identity services such as the IDaaS like Gov.UK Verify.

This will offer government agencies an entirely new paradigm for addressing the most fundamental of their enterprise IT challenges: Joined up, integrated working and sharing of data across multiple agencies and systems. Rather than hard-coding yet another citizen authentication process into another application, this approach instead calls upon shared, component services such as Identity Authentication.

Common Code Architecture

A very complimentary design to PaaS is an approach I describe as a ‘Common Code Architecture’. As the name suggests this means many applications sharing some individual components; in software development terms this is usually based around an approach known as component-based software, and some applications also offer specific implementations.

For example CMS applications like Drupal and WordPress offer installation configurations known as ‘multi-site’ modes, which as you would expect are intended to run multiple different web sites from one common core of modules. The benefits being that you only need to upgrade and maintain one set of software and these changes are applied to all of the web sites.

WordPress support house WPMU Dev offers this in-depth technical explanation of the feature for WordPress.


This identifies the great win/win that is possible for both end users and also Cloud Service Providers, where these tailored configurations can be available templates in their hosting catalogues, saving the public sector huge time and effort to design and build them, and offering providers solutions better tailored to the unique needs of their customer segments.

Read the original blog entry...

More Stories By Cloud Best Practices Network

The Cloud Best Practices Network is an expert community of leading Cloud pioneers. Follow our best practice blogs at http://CloudBestPractices.net

Latest Stories
Cloud resources, although available in abundance, are inherently volatile. For transactional computing, like ERP and most enterprise software, this is a challenge as transactional integrity and data fidelity is paramount – making it a challenge to create cloud native applications while relying on RDBMS. In his session at 21st Cloud Expo, Claus Jepsen, Chief Architect and Head of Innovation Labs at Unit4, will explore that in order to create distributed and scalable solutions ensuring high availa...
For financial firms, the cloud is going to increasingly become a crucial part of dealing with customers over the next five years and beyond, particularly with the growing use and acceptance of virtual currencies. There are new data storage paradigms on the horizon that will deliver secure solutions for storing and moving sensitive financial data around the world without touching terrestrial networks. In his session at 20th Cloud Expo, Cliff Beek, President of Cloud Constellation Corporation, d...
Internet-of-Things discussions can end up either going down the consumer gadget rabbit hole or focused on the sort of data logging that industrial manufacturers have been doing forever. However, in fact, companies today are already using IoT data both to optimize their operational technology and to improve the experience of customer interactions in novel ways. In his session at @ThingsExpo, Gordon Haff, Red Hat Technology Evangelist, shared examples from a wide range of industries – including en...
In IT, we sometimes coin terms for things before we know exactly what they are and how they’ll be used. The resulting terms may capture a common set of aspirations and goals – as “cloud” did broadly for on-demand, self-service, and flexible computing. But such a term can also lump together diverse and even competing practices, technologies, and priorities to the point where important distinctions are glossed over and lost.
In his session at @DevOpsSummit at 20th Cloud Expo, Kelly Looney, director of DevOps consulting for Skytap, showed how an incremental approach to introducing containers into complex, distributed applications results in modernization with less risk and more reward. He also shared the story of how Skytap used Docker to get out of the business of managing infrastructure, and into the business of delivering innovation and business value. Attendees learned how up-front planning allows for a clean sep...
Detecting internal user threats in the Big Data eco-system is challenging and cumbersome. Many organizations monitor internal usage of the Big Data eco-system using a set of alerts. This is not a scalable process given the increase in the number of alerts with the accelerating growth in data volume and user base. Organizations are increasingly leveraging machine learning to monitor only those data elements that are sensitive and critical, autonomously establish monitoring policies, and to detect...
Most companies are adopting or evaluating container technology - Docker in particular - to speed up application deployment, drive down cost, ease management and make application delivery more flexible overall. As with most new architectures, this dream takes a lot of work to become a reality. Even when you do get your application componentized enough and packaged properly, there are still challenges for DevOps teams to making the shift to continuous delivery and achieving that reduction in cost ...
Enterprise architects are increasingly adopting multi-cloud strategies as they seek to utilize existing data center assets, leverage the advantages of cloud computing and avoid cloud vendor lock-in. This requires a globally aware traffic management strategy that can monitor infrastructure health across data centers and end-user experience globally, while responding to control changes and system specification at the speed of today’s DevOps teams. In his session at 20th Cloud Expo, Josh Gray, Chie...
To get the most out of their data, successful companies are not focusing on queries and data lakes, they are actively integrating analytics into their operations with a data-first application development approach. Real-time adjustments to improve revenues, reduce costs, or mitigate risk rely on applications that minimize latency on a variety of data sources. Jack Norris reviews best practices to show how companies develop, deploy, and dynamically update these applications and how this data-first...
Intelligent Automation is now one of the key business imperatives for CIOs and CISOs impacting all areas of business today. In his session at 21st Cloud Expo, Brian Boeggeman, VP Alliances & Partnerships at Ayehu, will talk about how business value is created and delivered through intelligent automation to today’s enterprises. The open ecosystem platform approach toward Intelligent Automation that Ayehu delivers to the market is core to enabling the creation of the self-driving enterprise.
"At the keynote this morning we spoke about the value proposition of Nutanix, of having a DevOps culture and a mindset, and the business outcomes of achieving agility and scale, which everybody here is trying to accomplish," noted Mark Lavi, DevOps Solution Architect at Nutanix, in this SYS-CON.tv interview at @DevOpsSummit at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
"We're here to tell the world about our cloud-scale infrastructure that we have at Juniper combined with the world-class security that we put into the cloud," explained Lisa Guess, VP of Systems Engineering at Juniper Networks, in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
Historically, some banking activities such as trading have been relying heavily on analytics and cutting edge algorithmic tools. The coming of age of powerful data analytics solutions combined with the development of intelligent algorithms have created new opportunities for financial institutions. In his session at 20th Cloud Expo, Sebastien Meunier, Head of Digital for North America at Chappuis Halder & Co., discussed how these tools can be leveraged to develop a lasting competitive advantage ...
WebRTC is the future of browser-to-browser communications, and continues to make inroads into the traditional, difficult, plug-in web communications world. The 6th WebRTC Summit continues our tradition of delivering the latest and greatest presentations within the world of WebRTC. Topics include voice calling, video chat, P2P file sharing, and use cases that have already leveraged the power and convenience of WebRTC.
"We're a cybersecurity firm that specializes in engineering security solutions both at the software and hardware level. Security cannot be an after-the-fact afterthought, which is what it's become," stated Richard Blech, Chief Executive Officer at Secure Channels, in this SYS-CON.tv interview at @ThingsExpo, held November 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA.