Professional Documents
Culture Documents
The GSB (Government Service Bus) is intended to become the central platform
of integration and services for the provision of government electronic services
and transactions, and a provider of common value-add Shared Services which
will be used by all connected entities and government agencies. i.e. Identity
management, e – Payment and core data exchange between government
entities. Figure 1 shows the role of the GSB as an integration enabler to
implement government e – services.
The government service bus project is considered among the most critical
and high – impact projects within YESSER projects portfolio for 2007
Service Registry
The Service Registry will be used to provide a controlled point of access to
service metadata for all services provided by e-Government.
Transaction Management
Transactions are a fundamental concept in building reliable distributed
applications over the KSA GSB. A transaction is a mechanism to insure all the
participants in an application achieve a mutually agreed outcome.
e-Gov Adapters
E-Government Adapters are software components that enable a logical
business transactions to be executed seamlessly between systems.
The e-Gov Data Adapters will allow the GSB, through the Shared Data Service,
to accept requests for data from client systems, invoke the relevant Adapter to
retrieve the data, validate it using the Data Schema Validation engine and
returned in Canonical Data Format to the requester.
The Database Access Service (DAS) enables the GSB to query/update its
RDBMS through a web service.
Data Schema Validation is an important feature of the GSB, ensuring that all data
shared among services conforms to an agreed upon Schema or Metadata rules.
These agreed upon schemas and metadata rules will be defined through the
YEFI process framework.
Security Layer
Security Overview
Since the GSB will be handling sensitive personal and government data,
as well as transactions with legal implication it must provide a high level of
security for access, identification, authorization and non-repudiation.
Below is a list of the general security requirements that will be provided by
the GSB security solution.
Authorization
The GSB LDAP will hold some basic authorization levels that will be
used internally within the GSB and accessible to external systems.
Identity Verification
Government services rely on identity verification before tendering of
service, which is usually done by requesting a citizen to show-up in
person and present identification. In order to prevent fraud, e-
Services need to maintain a strong identity management and
issuance process, so that a user requesting an e-Service can be
verified to be what the user claims to be.
Non-Repudiation
For Phase 1 of the GSB, non-repudiation will be achieved through
1. Authentication (registered user with username/password)
2. One-time Identify verification process as outlined in the
identity verification section.
3. Business transaction logs and audits.
User Management The administration of User Accounts, along with
creation, update, disabling and verification of users is done through
this component
Payment Gateway
Since most e-Government services do require a payment of fees for
the service rendered, it important that the GSB provide a common
shared service for payment processing. This service can be used by
any government agency system that is connected to the GSN. No
need for each agency to have its own integration point into a
payment service/gateway is needed any more.
Logging Engine
The logging engine is responsible for logging different activities (business
transitions and system actions) and errors within the GSB framework. The
logging engine will also provide a framework for logging that can be used by
different component of the GSB.
Interaction Layer
Notification Engine
The Notification engine will “push” or “route” service requests to recipients via a
number of mechanisms, such as SMS, E-mail and even voice calls.
Email Gateway
Among the GSB notification channels, secure e – mail solution will be
used to notify users of the GSB in a reliable and timely manner.
UI Syndication
The UI Syndication engine is the mechanism used to integrate
remote user interface of e-Services developed and hosted by the
various government agencies into the portal of the e-Government of
Saudi Arabia, and to provide web-service interfaces to pages and
user interfaces hosted on the e-Gov Portal or Secure Management
Site to remote portals for use within their UI frameworks.
Auditing & Reporting
Auditing and reporting modules provide access to business and technical activity
logs across the different services and components of the GSB.
Systems Management
The management tools will be used to manage and monitor the GSB hardware
and software components
Orchestration
Orchestration is a type of collaboration in which the primary service directly
invokes other services. The primary service knows the sequence of actions
and the interfaces, responses, and return states of the called services.
Protocol Transformation
Event Management
The GSB Event Management Service is a standard “push service” that
enables decoupling clients from consumers of GSB events. The various GSB
components can publish messages into an Event Channel and the Event
Management Service will deliver the messages to all the appropriate
subscribing users.
Data Transformation
Together with integration, data transformation involves the reformatting of the
source data including files, records and fields, and the removal of data that is not
required in the target system. It may also involve decoding and translating field
values, adding a time attribute (if one is not present in the source data) to reflect
the currency of data, data summarization, and the calculation of derived values.
Data Enrichment
Security Layer
PKI Integration
This is the proposed integration point to external security providers.
The main entities identified so far are: PKI, MoI, and MoCI.
Interaction Layer
SMS Gateway
The Short Message Service Gateway will allow all users of the GSB to integrate
SMS with their existing systems through a single point of entry. The GSB will
enable all providers and users the ability to simply 'plug in' to the SMS gateway
and begin sending SMS messages. For those systems which already send out e-
mail alerts, the SMS Gateway will be able to supplement this alert mechanism
through SMS messaging.
IVR Gateway
The Interactive Voice Response Gateway will provide the necessary interaction
services to handle telephone callers.