From Requirements to Production Managing Cross-Regional API Deployments at Capital One
DOI:
https://doi.org/10.15662/IJEETR.2024.0602013Keywords:
EAPI, RTM, Capital One, API Framework, Microservices, Integration Service, OSB, Splunk, Agile Methodology, Continuous Integration, Financial Technology, Service-Oriented Architecture, JUnit, SVN, ObservabilityAbstract
The financial sector requires dependable, expandable, and safe API framework solutions that enable seamless communication between customer facing applications and wellness systems. This paper discusses in detail a case study on the design and implementation of the Enterprise Application Programming Interface (EAPI) framework inside the Runtime Container (RTM) at Capital One. The EAPI framework has been designed to support commercial and retail banking users by providing efficient communication throughout a multi-layered service model of Proxy, Restful, and Integration Services. This paper will discuss, in detail, the complete software development lifecycle of creating new APIs, including gathering requirements, managing Agile projects, developing and deploying those new APIs into production across all Capital One locations using a structured approach for version control; continuous integration; and rigorous testing phases including JUnit automation; as well as managing Integration Service (IS) and Oracle Service Bus (OSB) components. The paper will also provide details about using monitoring tools such as Splunk to monitor the reliability of the systems. The methodology presented in this case study has proven the value of using a structured approach for creating API frameworks at large organizations; thus, establishing a blueprint and demonstrating improved efficiency for deploying large enterprise-wide API Frameworks in regulated industries
References
1. Papazoglou, M. P., & Van den Heuvel, W. J. (2007). Service-oriented architectures: Approaches, technologies and research issues. The VLDB Journal, 16(3), 389-415.
2. Megargel, A., & Shankararaman, V. (2021). Digital banking accelerator: A service-oriented architecture starter kit for banks. IEEE Software, 38(3). doi:10.1109/MS.2020.3029876.
3. Majedi, M. R., & Osman, K. A. (2008). A novel architectural design model for enterprise systems: Evaluating enterprise resource planning system and enterprise application integration against service oriented architecture. In 2008 3rd International Conference on Pervasive Computing and Applications (ICPCA08). doi:10.1109/ICPCA.2008.4783558
4. Riad, A. M., Hassan, A. E., & Hassan, Q. F. (2008). Leveraging SOA in banking systems' integration. Journal of Applied Economic Sciences, 3(2).
5. Hustad, E., & Olsen, D. H. (2021). Creating a sustainable digital infrastructure: The role of service-oriented architecture. Procedia Computer Science. doi:10.1016/j.procs.2021.01.210.
6. Grant, D., & Yeo, B. (2021). Enterprise integration using service-oriented architecture. Issues in Information Systems, 22(1), 164-177. doi:10.48009/1_iis_2021_164-177.
7. Papazoglou, M. P., & Van den Heuvel, W. J. (2007), “Service-oriented architectures: approaches, technologies and research issues” The VLDB Journal, 16(3), 389-415, https://journals.riverpublishers.com/index.php/JICTS/article/download/30005/22765?inline=1.
8. Grolinger, K., Capretz, M. A. M., Cunha, A., & Tazi, S. (2014). Integration of business process modeling and Web services: A survey. Service Oriented Computing and Applications. doi:10.1007/s11761-013-0138-2Tekinerdogan, B., Köksal, Ö., & Çelik, T. (2023), “System architecture design of IoT-based smart cities”, Applied Sciences, 13(7), 4173, https://doi.org/10.3390/app13074173.
9. Liu, L., Li, W., Aljohani, N. R., Lytras, M. D., Hassan, S. U., & Nawaz, R. (2020). A framework to evaluate the interoperability of information systems – Measuring the maturity of the business process alignment. International Journal of Information Management, 54. doi:10.1016/j.ijinfomgt.2020.102153
10. Traceable AI. (2023), “API Security Report: Financial Sector Vulnerabilities”, Industry Research, https://www.traceable.ai/2023-state-of-api-security.
