Artifact: Business Zone

A Business Security Zone is an environment or context that is defined by security policies, security models, and security architecture. It defines sub-sets of resources (and levels of security) within a Business Domain.

Work Product Kinds: Business Level Elements

Relationships

Container Artifact	Business Locations Model
Process Usage	IT Architecture Delivery > Review the Architecture > Review Business Perspective > Business Zone IT Architecture Delivery > Business Perspective Delivery > Business Perspective Iteration [n] > Business Zone IT Architecture Delivery > Architectural Decision Delivery > Business Zone IT Architecture Delivery > Business Perspective Delivery > Business Zone IT Architecture Delivery > Logical Perspective Delivery > Logical Perspective Iteration [n] > Business Zone IT Architecture Delivery > Maintain Architecture > Deliver Updated Business Perspective > Business Zone IT Architecture Processes > Define Solution and Impacts > Business Zone IT Architecture Processes > Define Business Perspective > Business Zone IT Architecture Processes > Define Logical Perspective > Business Zone IT Architecture Processes > Review an Architecture > Business Zone IT Architecture Processes > Manage Architectural Decisions > Business Zone IT Architecture Processes > Develop a Migration Plan > Business Zone IT Architecture Processes > Analyze Models > Business Zone IT Architecture Processes > Develop Training > Business Zone IT Architecture Processes > Consult with Stakeholders > Business Zone IT Architecture Processes > Business Zone IT Architecture Processes > Update Business Perspective > Business Zone IT Architecture Processes > Update Logical Perspective > Business Zone IT Architecture Processes > Update Technical Perspective > Business Zone

Description

Main Description

A Business Security Zone is an environment or context that is defined by security policies, security models, and security architecture, including a set of resources and set of system entities that are authorized to access the resources. A Business Zone may contain one or more sub-zones. Different sub-zones are created when security models or policies (and possibly architecture) are significantly different from one zone to the other, or are conflicting. Separate Business Zones provide clearer separation of concerns and ease policy enforcement and system management. Synonyms: security zone or policy zone.

Key Considerations

A Business Security Zone is represented as a simple cloud shaped background geometric shape (of an appropriate color if desired to illustrate the fundamental nature of the Zone) with the name applied to one corner or outside the perimeter (e.g. “HR Services”).

Tailoring

Representation Options

UML Representation: «stereotype» BPL_Zone

Extends: «metaclass» Node and «metaclass» Classifier and «metaclass» Package

It has the following properties:

id: string - This attribute is used to uniquely identify elements.
name: string - A descriptive name for the Zone.
owner: string - The owner of the Zone normally defined as a specific organizational position within the enterprise or business line (e.g. HR) which owns the information within the Zone. Sub-zones inherit ownership from the parent Zone. The (parent Domain) Authority may delegate responsibilities to Zone owners.
parentDomain: domain [0..1] - The Domain within which the Zone is contained.
parentZone: zone [0..1] - The Zone, if any, within which the Zone is contained.
location: string - The location of the zone within the system or enterprise.

Constraints

Zones must be wholly contained within other Zones;
Zones must be wholly contained within one Domain;
Wholly contains (classifies) Activities, Tasks, and Sub-Processes;
Zones are defined only when needed.

More Information

Concepts	Location Aspect
Guidelines	Domains and Zones
Supporting Materials	BPL Summary