Anjar Priandoyo

Catatan Setiap Hari

Posts Tagged ‘SDLC


leave a comment »

Written by Anjar Priandoyo

Mei 31, 2023 at 7:11 pm

Ditulis dalam Business

Tagged with

SOA Jargon

leave a comment »

API, Microservices, Middleware, Service Oriented Architecture (SOA) Concept

  • Service-oriented architecture (SOA) has an enterprise scope, while the microservices architecture has an application scope.
  • API = any way of communicating exposed by a software component. SOA = a set of enterprise architectural design principles to solve scalability issues by splitting responsibility into services.

Digital Transformation Jargon

  • There’s an entire API economy that can be used to fuel your digital transformation strategy
  • APIs have become a standardized machine-readable mechanism for connecting partners
  • APIs are part of an application that communicates with other applications. APIs can be used to enable microservices. APIs enable a digital transformation strategy by Sharing business capabilities in a partner ecosystem, Unlocking new business channels, Creating customer value.
  • Microservices become one of the enablers in the digital transformation journey.

How jargon enable digital transformation (replace jargon with any kind of buzzword)

Written by Anjar Priandoyo

Maret 18, 2022 at 5:59 pm

Ditulis dalam Science

Tagged with ,

IT Jargon in Group

leave a comment »

APIs are part of an application that communicates with other applications. APIs can be used to enable microservices. APIs enable a digital transformation strategy by Sharing business capabilities in a partner ecosystem, Unlocking new business channels, Creating customer value.

Model–view–controller, traditionally used for desktop graphical user interfaces (GUIs), this pattern became popular for designing web applications

Facebook Group:

WEB FRAMEWORK (Web CMS Framework to Web Application Framework)
Drupal Indonesia (Jun 2008), 4.3K
WordPress Indonesia (Mar 2012), 73K – Three Tier (not MVC)
CodeIgniter Indonesia (Mar 2009, name changed Feb 2020), 100K
Laravel Indonesia (April 2020), 17K
Ruby on Rails Indonesia (Dec 2011), 5.5K

PHP Indonesia (Aug 2008), 164K
Python Indonesia (Nov 2012), 39K
Node.js Indonesia (May 2012), 27K
Javascript Programmer Indonesia (Feb 2018, name changed Nov 2020), 14K

ReactJS Indonesia (Aug 2015), 26K
Angular Indonesia (Aug 2013, name changed Mar 2017), 12K
VueJS Indoensia (Nov 2015), 19K

Odoo Indonesia (Aug 2014), 1.7K
MongoDB Indonesia (Mar 2012), 2.2K
AWS User Group Indonesia (Sep 2013), 3.2K
Taudata Analytics: Data Science, Big Data, IOT (Jan 2014, name changed Feb 2022), 19K

Hosting: Dreamhost, Hostgator

Written by Anjar Priandoyo

Maret 7, 2022 at 7:26 pm

Ditulis dalam Science

Tagged with ,

Full Stack Web Development

leave a comment »

medium: Full Stack Web Developer Roadmap 2022

Interesting, better late then never. Well I know, I am old school now. However, in my understanding so far the timeline as follows:

To simplify I think look like this:

2000s: Content Management System: WordPress, Drupal
Service Oriented Architecture, Web Services

2010s: Web Development Framework (Web Application):
PHP: Codeigniter, Laravel, Ruby on Rails
Python: Django, Flask

2020s: Full Stack Web Development (Front end-Backend), (Vue.js React.js Angular)

MVC, Full-Stack MVC, and REST API frameworks.
REST API: Express.js MongoDB

Written by Anjar Priandoyo

Maret 6, 2022 at 8:26 pm

Ditulis dalam Science

Tagged with


leave a comment »

Interesting. Node.js as backend and Vue.js as front end.

Tutorial node.js using visual studio ref
codeigniter a 2010 framework

Written by Anjar Priandoyo

Maret 4, 2022 at 3:21 pm

Ditulis dalam Science

Tagged with

Cloud Computing, Git

leave a comment »

Written by Anjar Priandoyo

Maret 13, 2021 at 8:11 am

Ditulis dalam Science

Tagged with

SFIA Organization Design

leave a comment »

Story about competency framework

SFIA (first published 2000), SFIA 7

Cross domain themes engineering: TOGAF, PMBOK
2.cyber security: CISSP, NIST CSF transformation
4.agile & DevOps: ITIL, COBIT, ISO 20000
5.big data and informatics: DMBOK

1. Strategy & Architecture (Strategy, Planning)
2. Change & Transformation (Change Implementation/Project, Change Management)
3. Development & Implementation (Development & Testing, UX, Installation & Integration)
4. Delivery & Operation (Service Design, Service Transition, Service Operation): ITIL
5. Skills & Quality (Skill, People, Quality)
6. Relationship & Engagement (Stakeholder, Sales/Marketing)

*Interesting, Project Management can be interpreted as Change Implementation, while Change Management itself is post project activity.

Organization can be divided by function/process and product/object. IT usually divided by function, the classic is IT Development and IT Operation. However some company divided into IT Front-End and IT Back-End.

The biggest challenge is to put the themes into the organization e.g Governance (should be separation between development and operation), Security (should be separatation between security monitoring and operation), Data (should be separation between design and operation)

abpmp – BPM CBOK

Written by Anjar Priandoyo

November 29, 2020 at 12:04 pm

Ditulis dalam Society

Tagged with ,

Testing and Assurance Industry

leave a comment »

Interesting, I found many classification with what so called software testing industry.

First, some classify like this:

SIT: System Integration Test
– Functional Test (Automated & Manual)
– Vulnerability Assessment and Penetration Testing (VAPT)

– Functional Test (Manual Test)
– Performance Test

Industrial Test (Staging Environment)
– Functional Test
– Performance Test
– Stress Test
– Load Test
– VAPT Aplikasi

While other classify like this:
Functional Test:
– Unit Test
– Vendor Integration Test
– System Integration Test
– User Acceptance Test
– Regression Test

Performance Test: (Non-functional test)
– Load Test
– Stress Test
– Endurance / Soak Test
– Spike Test
– Configuration Test

Specialized/Security Test:
– Penetration Test, Vulnerability Test

Written by Anjar Priandoyo

Agustus 4, 2020 at 8:50 am

Ditulis dalam Science

Tagged with ,

DevOps Complexity

leave a comment »

I get a sense that client basically expecting two things 1) They want to use a single paid software instead of using multiple open source software 2) They don’t want to create things from the scratch. Basically they don’t want too many software, they want a simple things.

.NET Core is a free and open-source, managed computer software framework for Windows, Linux, and macOS operating systems. It is a cross-platform successor to .NET Framework (since 2016)

Grafana is multi-platform open source analytics and interactive visualization software available since 2014. It provides charts, graphs, and alerts for the web when connected to supported data sources. It is expandable through a plug-in system.

As a visualization tool, Grafana is a popular component in monitoring stacks, often used in combination with time series databases such as Prometheus and Graphite; monitoring platforms such as Sensu, Icinga, Zabbix, Netdata, and PRTG; SIEMs such as Elasticsearch and Splunk; and other data sources.

A minimum viable product (MVP) is a version of a product with just enough features to satisfy early customers and provide feedback for future product development.

Product backlog, a list of requirements for a software product in development

Docker is a set of platform as a service (PaaS) products that uses OS-level virtualization to deliver software in packages called containers. Containers are isolated from one another and bundle their own software, libraries and configuration files; they can communicate with each other through well-defined channels. All containers are run by a single operating system kernel and therefore use fewer resources than virtual machines.

Harbor is an open source container image registry that secures images with role-based access control, scans images for vulnerabilities, and signs images as trusted. As a CNCF (Cloud Native Cloud Computing) Incubating project, Harbor delivers compliance, performance, and interoperability to help you consistently and securely manage images across cloud native compute platforms like Kubernetes and Docker.

Container is a standard unit of software that packages up code and all its dependencies so the application runs quickly and reliably from one computing environment to another. A Docker container image is a lightweight, standalone, executable package of software that includes everything needed to run an application: code, runtime, system tools, system libraries and settings.

Kubernetes is an open-source container-orchestration system for automating application deployment, scaling, and management. It was originally designed by Google, and is now maintained by the Cloud Native Computing Foundation.

OpenShift is a family of containerization software developed by Red Hat. Its flagship product is the OpenShift Container Platform—an on-premises platform as a service built around Docker containers orchestrated and managed by Kubernetes on a foundation of Red Hat Enterprise Linux.

A software repository, or “repo” for short, is a storage location for software packages. Often a table of contents is stored, as well as metadata. Repositories group packages. Sometimes the grouping is for a programming language, such as CPAN for the Perl programming language, sometimes for an entire operating system, sometimes the license of the contents is the criteria

JFrog is Software Repository; Jfrog OSS

Maven is a build automation tool used primarily for Java projects. Maven can also be used to build and manage projects written in C#, Ruby, Scala, and other languages.

SAP PI/PO (Process Integration/Process Orchestration) is a tool that allows you to integrate solutions. facilitates interaction for heterogeneous systems (application integration middleware)

Azure DevOps Server (formerly Team Foundation Server (TFS) and Visual Studio Team System) is a Microsoft product that provides version control (either with Team Foundation Version Control (TFVC) or Git), reporting, requirements management, project management (for both agile software development and waterfall teams), automated builds, lab management, testing and release management capabilities. It covers the entire application lifecycle, and enables DevOps capabilities.

Azure DevOps can be used as a back-end to numerous integrated development environments (IDEs) but is tailored for Microsoft Visual Studio and Eclipse on all platforms.

Software configuration management (SCM or S/W CM) is the task of tracking and controlling changes in the software, part of the larger cross-disciplinary field of configuration management.

Wiki: Build Automation Software, Issue Tracking Systems, Version Control Software, Sofware Configuration Management (SCM)

npm (originally short for Node Package Manager) is a package manager for the JavaScript programming language, part of Github.

itHub, Inc. was originally a flat organization with no middle managers; in other words, “everyone is a manager” (self-management). Employees could choose to work on projects that interested them (open allocation), but salaries were set by the chief executive.

In 2014, GitHub, Inc. introduced a layer of middle management

Written by Anjar Priandoyo

Mei 14, 2020 at 2:02 pm

Ditulis dalam Science

Tagged with

Information Security Technologies

leave a comment »

Information Security is a complex field, it involves the Process (where more people involve, e.g review, audit) and Technology (where less people involve, e.g substantive log review). In my experience, I work more with Process than Technology, but actually the bridge between this two is blurred.

Information Security also complex field as it is related also with Information Operation field. Log Monitoring vs Log Management vs (Data) Log Analytics can this technology can be used for diferent purpose e.g (negative security purpose) Identifying Security Breach vs Gaining the pattern of user (positive, understanding user buying behaviour).

For example, Splunk, Mint and Elasticsearch (ELK: Logstash, Kibana) can be considered as different tools with totally different purpose.
– Web Analytics Tools
– Log Management and Analytics
– Information Retrieval Libraries
– Search Engine & Content Analytics
– Big Data

Just imagine like WordPress that can be use as Blog, E-commerce or even Discussion Forum.

Qualys: Vulnerability Management, Cloud Security
Kibana: Data visualization dashboard for Elasticsearch.

NIST Cybersecurity Framework v1.1 (2014/2018) ref
NIST SP 800-53 Rev. 4
ISA 62443-3-3:2013

Cybersecurity assurance standards

Product assurance:
– ISO/IEC 15408, Common Criteria
– ISO/IEC 19790, Security requirements for cryptographic modules
(similar to NIST FIPS 140-2)
– ISO/IEC TR/19791, Security assessment of operational systems

Process assurance:
– ISO/IEC 21827, SSE capability maturity model (SSE-CMM®)
– ISO/IEC 17799, Code of practice for information security Mgmt
– COBIT – Control objectives for information and related technology
– draft ISA S99 standards: Concepts and process guidance

Quality assurance: ISO 9000
Environment assurance: ISO 14000

IEC 62443: Industrial Network and System Security

Written by Anjar Priandoyo

Mei 2, 2020 at 7:38 am

Ditulis dalam Science

Tagged with ,