Market Scan Proposal - DOC by qqu19633

VIEWS: 4 PAGES: 13

Market Scan Proposal document sample

More Info
									Project Plan
QUT Web Tier AAA Service – Deployment
and handover

Prepared by Terry Smith
Name of area Network Applications




Version number: 1.0
Date of current plan: 19 March 2007



PMF V4.1
CRICOS Institution Code 00213J
                                                                                      PROJECT PLAN
                                               QUT W EB TIER AAA SERVICE – DEPLOYMENT AND HANDOVER


1 PROJECT PLAN DISTRIBUTION LIST
The recipients of the project plan
Name                      Position                   Interest in Project
IAM Program Steering                                 Steering committee for project
committee
Paul Tasker               IAM Program                Coordinator of IAM program
                          Manager
AAA Project Staff                                    Project staff




2 VERSION CONTROL
Record changes to the project plan.
Version
                Date                 Reason/Comments/Approvals
Number
V1.0            19-March-2007        Initial Draft
                                                                                     PROJECT PLAN
                                              QUT W EB TIER AAA SERVICE – DEPLOYMENT AND HANDOVER



3 MANAGEMENT SUMMARY

This project will deliver production Authentication and Authorisation services to the University that
where identified and developed during phase 1 market scan and phase 2 development. The
following objectives are expected to be meet;

       A single Web authentication for the majority of web applications at QUT
       Single sign-on across web applications
       Single sign-on from SOE client desktop and laptop systems to QUT web applications
       Federated authentication and authorisation enabling applications such as the e-Grad
        school.
       Real time provisioning for federated clients into applications such and Blackboard and the
        e-Portfolio enabling access for non-QUT clients
       Integration with the QUT Important message notification
       Develop on-going support arrangements for both QUT and federated partners
       Open source the AAA code
       Work with IT staff at the ATN Universities to ensure they are capable of acting as an
        Identify provider.
       Develop plans for the de-commissioning of the existing QUT Authentication infrastructure.
       Ensure integration with SAMS is achievable.

This work will occur over a 4 month period finishing prior to the start of second semester 2007.

The project is expected to cost $90,000 funded as follows: AMP - $85,000 Operational - $5,000. Of
this $65,000 will be for staff related expenses and $25,000 for server hardware.

The following key business benefits will be realised from this project.

       Improved productivity for all clients through time saved not having to re-authenticate
        through out the day.
       Improved client experience with a consistent authentication.
       Guaranteed delivery of important University notices to all clients as part of the
        authentication process.
       A scalable federation allowing for simplified growth of initiatives such as the e-Grad school.
       Continued leadership in the delivery of the e-Portfolio service.
       Simplified expansion of the e-Portfolio service to members of the Federation. This may
        include all Queensland High schools.
       Authentication services capable of supporting the new SAMS system.
       High level profile in the delivery of Authentication and Authorisation services within the
        University sector.

Key milestones for the project will include

       Initial deployment of the production AAA service.
       Open source code
       Federation with ATN universities.
       Integration with Blackboard – enabling e-Grad school
       Migration of existing QUT web services
       Delivery of important University notices
       SAMS integration proven
       Fully supported AAA service ready for handover into production
                                                                                PROJECT PLAN
                                         QUT W EB TIER AAA SERVICE – DEPLOYMENT AND HANDOVER


           3.1 Major Changes From Project Proposal


Category           Reason for Variance from            Proposed Changes
                   Project Proposal
                                                       (From Project Proposal)
Scope
Time
Cost               Additional costs for Server         Add $25,000 to the cost of the project.
                   hardware for deployment. 2 x
                   Server blades to provide a highly
                   available solution.
Quality
Risk
Management
Communications


           3.2 Detailed Description and Justification for Project
               Changes

CSS have determined this to be a new service and not a service refresh and have therefore
requested that the project fund the cost of servers for deployment.
                                                                                                        PROJECT PLAN
                                                                 QUT W EB TIER AAA SERVICE – DEPLOYMENT AND HANDOVER


Table Of Contents
             Regenerate the Table of Contents as required.
1          PROJECT PLAN DISTRIBUTION LIST ..................................................................................... II
2          VERSION CONTROL............................................................................................................. II
3          M ANAGEMENT SUMMARY ................................................................................................... III
     3.1       Major Changes From Project Proposal ................................................................. iv
     3.2       Detailed Description and Justification for Project Changes .............................. iv
4          PROJECT INFORMATION ..................................................................................................... 1
5          INTRODUCTION AND BACKGROUND..................................................................................... 1
6          OBJECTIVES ...................................................................................................................... 2
7          SCOPE, CONSTRAINTS, ASSUMPTIONS ............................................................................... 3
8          INTERDEPENDENCIES WITH BUSINESS ACTIVITIES, SYSTEMS AND OTHER PROJECTS ............ 3
9          BUSINESS CASE AND BENEFITS REALISATION .................................................................... 4
10         WORK BREAKDOWN STRUCTURE (WBS) ........................................................................... 5
11         RISK MANAGEMENT ........................................................................................................... 5
12         COSTS AND RESOURCES ................................................................................................... 6
     12.1         Costs and resources during the life of the project ............................................ 6
     12.2         Basis for estimated project costs ........................................................................ 7
     12.3         Ongoing costs after project completes ............................................................... 7
     12.4         Basis for estimated ongoing costs ...................................................................... 8
13         TIMELINES ......................................................................................................................... 8
14         QUALITY ........................................................................................................................... 8
15         PROJECT M ANAGEMENT STRUCTURE ................................................................................. 8
16         COMMUNICATION ............................................................................................................... 8
                                                                                         PROJECT PLAN
                                                                                       NAME OF PROJECT



4         PROJECT INFORMATION

    Project Number (if applicable):
    Project Name: QUT Web Tier AAA Service – Deployment and handover
    Date: 12-March-2007
    Project Ownership: Network Applications, as part of the IAM program
    Project Contacts:
              Name                       Position                     Phone                  Email
Primary       Terry Smith                Project Manager              x-82424                t.smith
Other         Brad Beddoes               Lead programmer              x-81702                b.beddoes
Other         Paul Tasker                Program Manager              x-82235                p.tasker


    Project Approval: Information Technology Advisory Committee through the AMP (IT)
    budget


5         INTRODUCTION AND BACKGROUND

During Q3 2006 Phase 1 of the AAA project was undertaken in which a market Scan was
performed. It reviewed the existing QUT Authentication architecture and third party solutions
against the current and future AAA (Authentication, Authorisation and Accounting) requirements of
the University. The changing landscape of major corporate applications such as the Student
Management System, Learning Management System, QUT Virtual and the eGrad School initiatives
where federation is essential for success identified the following findings:

         Off the shelf solutions that fully meet the Universities requirements are still 3 to 5 years
          from fruition.
         Most standards are now defined that would enable the creation of a suitable solution, but
          implementations either don’t exist or are in early phases of development.
         Major application vendors such as ORACLE and Microsoft are beginning to provide and
          document pluggable authentication architectures.
         QUT environment dictates that one size does not fit all. A framework must be established
          in which varying degrees of enterprise AAA can be achieved.
         It is feasible to build a system at QUT in a reasonable time frame that will provide a good fit
          to requirements

     On completion of the market scan Phase 2 of the project was initiated to develop and
     integrate technologies to deliver a pluggable, extensible AAA solution for QUT that will
     provide a good fit to QUT requirements. This technology will be completed with initial
     deployment at QUT around the first semester break, 2007. The technology will provide
     the core authentication and authorisation engine a set of modules that will be plugged
     into Web based applications at QUT to work with the new AAA solution and a small
     number of services configured and migrated (primarily Network Application provided
     services).

     Only a few QUT services will be configured to with the new AAA modules on initial
     deployment. There are many services that currently use QUT Access authentication that
     will need to be identified and upgraded to use the new AAA solution.



PMFPROJECTPLANV4.0
ENTER FILENAME WITH VERSION NUMBER                                                                PAGE 1
CRICOS INSTITUTION CODE 00213J
                                                                                   PROJECT PLAN
                                                                                 NAME OF PROJECT

     The new AAA solution will also provide for a clean user interface ready for federated
     authentication, a foundation component for the e-Grad school and other cross
     institutional service delivery initiatives. The e-Grad school components are being
     migrated from OLT to Blackboard during Semester 1 to align with the provisioning of
     federated AAA.

     Code developed in Phase 2 will be release as Open-Source enabling other Universities
     (ATN Universities in the first instance) to federate without the complexities inherent in
     Shibboleth. This will also enable the final decommissioning of the ATN-Leap
     authentication to be replaced by the a Shibboleth based solution that is integrated into
     the new AAA solution.

    All of these deployment scenarios will not be realised at the end of Phase 2. Thus this
    project is being proposed as the final stage which will ensure the smooth transition of
    QUT services from the old QUT-Access systems and to introduce the scalable federated
    solution based around Shibboleth with a final cleanup and de-commissioning of older
    solutions. It will also ensure a smooth handover from the project to Network Applications
    for ongoing service management.


6       OBJECTIVES

       A single Web authentication site for the majority of web applications at QUT
       Single sign-on across web applications
       Single sign-on from SOE systems with web applications
       Federated authentication and authorisation enabling applications such as the e-Grad
        school.
       Real time provisioning for federated clients into applications such and Blackboard and the
        e-Portfolio enabling access
       Integration with the QUT Important message notification
       Develop on-going support arrangements for both QUT and federated partners
       Open source the AAA code
       Work with IT staff at the ATN Universities to ensure they are capable of acting as an
        Identify provider.
       Develop plans for the de-commissioning of the existing QUT Authentication infrastructure.
       Ensure integration with SAMS is achievable.


     This project plan describes the deployment and handover of the new QUT AAA system
     including the introduction of federated authentication and authorisation for initial use by
     the eGrad school.

     The project will:
         Migrate the majority of existing QUT authenticated web services to the new
             system.
         Provide a federated authentication solution for the eGrad school replacing the
             ATN-Leap authentication.
         Provide all code as Open-Source to enable other institutions to participate in the
             federation without the complexity involved in deploying Shibboleth.
         Put in place plans to de-commission the old QUT Access authentication system
             and the ATN-Leap authentication for when they are no longer required.
         Handover the project outcomes as a production service
         Ensure all clients visit the QUT Important message notification site when they
             have outstanding messages

     It is expected that the majority QUT Web bases systems and services will be migrated
     prior to commencement of Semester 2, 2007 providing more robust Single Sign-on
     solution.


PMFPROJECTPLANV4.0
ENTER FILENAME WITH VERSION NUMBER                                                          PAGE 2
CRICOS INSTITUTION CODE 00213J
                                                                                   PROJECT PLAN
                                                                                 NAME OF PROJECT

7        SCOPE, CONSTRAINTS, ASSUMPTIONS

    Scope

    Within Scope
    Full scale deployment to significant number of QUT IT services, including:
           QUT Virtual
           Blackboard (LMS)
           Internet Access
           Web mail, both staff and student
           Faculty and Divisional services
    Corporate web service
    Initial deployment of Federated Authentication for eGrad school
    Ensure integration with SAMS system for 2008
    Handover into production
    De-commissioning of old QUT Access authentication and ATN-Leap authentication
    systems.
    Integration with QUT Important message notification

    Outside Scope
    OLT Will not be migrated



    Constraints




    Assumptions
    MAMS Level 2 Federation will be sufficient for initial rollout of eGrad school as production
    service, until the Level 3 Federation is in place.




8        INTERDEPENDENCIES WITH BUSINESS ACTIVITIES,
           SYSTEMS AND OTHER PROJECTS


            Interdependent Activity                             Possible Impact
    Provisioning Project                             Real time provisioning for federated clients
                                                     to enable access to the e-Grad school

PMFPROJECTPLANV4.0
ENTER FILENAME WITH VERSION NUMBER                                                         PAGE 3
CRICOS INSTITUTION CODE 00213J
                                                                                   PROJECT PLAN
                                                                                 NAME OF PROJECT

           Interdependent Activity                             Possible Impact
                                                    using Blackboard.
    LMS / Blackboard as delivery platform for       Integration of the new AAA with
    eGrad School                                    Blackboard. Provisioning of federated
                                                    clients.
    MAMS Federation                                 Ensure all federated members are ready
                                                    for federation and Shibboleth based
                                                    access to the e-Grad school.
    QUT Web sites that use current QUT-Access       Replacement of existing QUT-Access or
    authentication systems                          JAuth modules with the new AAA
                                                    modules. Registering services.
    SAMS Project                                    Ensuring alignment of the AAA project with
                                                    Authentication requirements of SAMS
    QUT Virtual                                     University Notices


9        BUSINESS CASE AND BENEFITS REALISATION

                      Benefits                                   How to Measure
    Strategic alignment with QUT Blueprint & University Plans
    Buy and build information resources in          Range of wider teaching resources that can
    support of learning and teaching                be supported due to use of new technologies
                                                    and open approach at the AAA level
    Expand and improve application of online        This new architecture will present direct links
    teaching and related resources                  between Blackboard, QUT Virtual and others
                                                    for users allowing high security without need
                                                    for interruptive authentication screens
    Financial: quantitative, for example, saves money, increases revenue
    Removal of old QUT-Access authentication        Reduced maintenance cost
    systems
    Reduced configuration effort, simpler           Money spent on project time to integrate AAA
    integration to newer technologies               reduced due to quicker install and
                                                    configuration time
    Other, for example, legislative compliance, infrastructure refresh, local benefit
    Compliance                                      Improved logging and auditing. Finer grained
                                                    authentication controls over access to
                                                    services.
    Infrastructure refresh                          Reduced security vulnerabilities,
    Improved patching regime                        Reduced number of identifiable version of
                                                    code distributed.
                                                    Reduced time to apply patches due to
                                                    reduced complexity of distributed modules.



         Impact of NOT proceeding                                How to Measure
    Increased sign-ons and client dissatisfaction   Average number of sign-ons per session

PMFPROJECTPLANV4.0
ENTER FILENAME WITH VERSION NUMBER                                                         PAGE 4
CRICOS INSTITUTION CODE 00213J
                                                                              PROJECT PLAN
                                                                            NAME OF PROJECT

         Impact of NOT proceeding                            How to Measure
                                                 stays same of increases.
   Security vulnerabilities                      Current security model is broken by QUT
                                                 student or staff member and QUT Access
                                                 accounts are directly compromised as a
                                                 result
   Continued course grained authorisation        Number of services using old QUT-Access
                                                 authentication




10 WORK BREAKDOWN STRUCTURE (WBS)
    Refer to attached WBS document.


11 RISK MANAGEMENT

   Refer to attached Risk management document.




PMFPROJECTPLANV4.0
ENTER FILENAME WITH VERSION NUMBER                                                   PAGE 5
CRICOS INSTITUTION CODE 00213J
                                                                                  PROJECT PLAN
                                                                                NAME OF PROJECT




12 COSTS AND RESOURCES

           12.1 Costs and resources during the life of the project



#          Category                  Details        Length         Funding           Amount
                                                    of Time        Source
                                                                    (eg, Op
                                                       (as
                                                                   Grant or
                                                    applicable)
                                                                   AMP (IT))
Recommended Option 1
Salaries
    Sen Dev HEW 8            Senior Developer       4 Months      AMP             20,000
    Dev HEW 6                Developer              4 Months      AMP             17,000
    HEWA 7                   Network Applications   1 Month       Operational     5,000
                             programmer
    Project Mgr              Project Manager 1      1 Month       AMP             10,000
                             day per week
    CRM                      Client Relationship    1 Month       AMP             10,000
                             Manger
Non-Capitalised Expenditure, including Hardware <$5K and Software <$100K




Travel & Related Staff Development & Training
    QUESTNet                 Present Paper on                     AMP             2,500
                             project


Other, Including General Consumables, Printing and Stationery, Telecommunications,
Consultancy and Contractors
    General                                                       AMP             500
    Consumables


Capitalised Expenditure, including Hardware >$5K, Software >$100K
2   Servers                  2 servers to provide                 AMP             25,000
                             HA platform for
                             central AAA service



Grand total (all costs)                                                           90,000

Total from Operating Grant                                                        5,000


PMFPROJECTPLANV4.0
ENTER FILENAME WITH VERSION NUMBER                                                        PAGE 6
CRICOS INSTITUTION CODE 00213J
                                                                               PROJECT PLAN
                                                                             NAME OF PROJECT

#          Category                  Details      Length        Funding            Amount
                                                  of Time       Source
                                                                  (eg, Op
                                                     (as
                                                                 Grant or
                                                  applicable)
                                                                 AMP (IT))

Total from other funding (eg, faculties, carry forwards)                       0

Total project funds requested, (eg, from AMP (IT))                             85,000

Year(s) to receive above requested funding (eg If total requested = $100K,     Year 1 –
then, 2006: $40K, 2007: $60K)
                                                                               200x: amount
                                                                               Year 2 –
                                                                               200x: amount




           12.2 Basis for estimated project costs

             Salary costs are based on estimates provided by FRP.

             Server costs are based on estimates provided by CSS.



           12.3 Ongoing costs after project completes

  Ongoing                   Detail           Funding        Annual          Name of
 Maintenance                               Source after     Amount         Delegate of
                                           Project Ends                  Funding Source
                                                                          Who Agreed
Salaries
HEW 6                  Network             SAMA            70,000 pa     Already committed for
                       Programmer                                        3 years as part of the
                                                                         IAM program.




Equipment




Software




Other


Total


PMFPROJECTPLANV4.0
ENTER FILENAME WITH VERSION NUMBER                                                    PAGE 7
CRICOS INSTITUTION CODE 00213J
                                                                                   PROJECT PLAN
                                                                                 NAME OF PROJECT

          12.4 Basis for estimated ongoing costs

              Salary costs are based on estimates provided by FRP with on-costs.




13 TIMELINES
              Refer to attached WBS for more detailed list of activities, deliverables and
              timeframes.



           Activity or Deliverable                     Timeframe                Kill/Milestone
                                                                                     Date
    Initial deployment of the production AAA      1 Month                    April
    service.
    Open source code                              1 Month                    April
    Federation with ATN universities.             2 Months                   May
    Integration with Blackboard – enabling e-     2 Months                   May
    Grad school
    Migration of existing QUT web services        Ongoing through the
                                                  project and beyond
    Delivery of important University notices      1 Month                    June
    SAMS integration proven                       1 Month                    June
    Fully supported AAA service ready for         1 Month                    July
    handover into production




14 QUALITY
     Refer to attached Quality plan.



15 PROJECT MANAGEMENT STRUCTURE
         Refer to the Identity and Access management programme for details of the Steering
         committee membership.




16 COMMUNICATION

         Refer to attached communications plan.
.



PMFPROJECTPLANV4.0
ENTER FILENAME WITH VERSION NUMBER                                                           PAGE 8
CRICOS INSTITUTION CODE 00213J

								
To top