Sie sind auf Seite 1von 25

Graduation Project Application Scenarios for Security Validation & Testing

Boufahja Dhiaeddine Supervised by Dr.Li Keqin & Pr.Bassem Hemidi

2012-2013

Agenda

Introduction
Problematic Analysis & Requirements Design

Realization

Hello SAP Netweaver Cloud! Roles User Experience

CSRF Attack

Conclusion

2012 SAP AG. All rights reserved.

Introduction

Introduction

A complete solution of Security Validation & Testing

2012 SAP AG. All rights reserved.

SPaCIoS Partners

2012 SAP AG. All rights reserved.

Introduction

Administration

Pervasive Retail Application

SPaCIoS
Students Professors

2012 SAP AG. All rights reserved.

Approach

Realization Design Analysis of needs

Tests & Validation

2012 SAP AG. All rights reserved.

Analysis & Requirements

Methodology - SCRUM

2012 SAP AG. All rights reserved.

Design

10

Whats in each solution?

SAP Rapid Deployment solutions

Software Quickly address the most urgent business processes Content SAP-supported best practices, templates, and tools make solution adoption easier Enablement Guides and educational material speed end-user adoption Service Fixed scope and price provide maximum predictability and lower risk

2012 SAP AG. All rights reserved.

11

Analysis of needs
Functionnal Needs
For administrator

real time management of Students and Professors demands


management of schedules management of users

For simple users


making demands to the administration online see schedules

2012 SAP AG. All rights reserved.

12

Software Scope Overview

SAP ERP HCM

SAP NetWeaver Process Integration

HCM core Organization Management


SAP HCM Add-on

Employee & Organizational Data

BizX Suite

Personnel Administration
Payroll

Salary & Compensation Data

Analytics Data

2012 SAP AG. All rights reserved.

13

In the system

Key process flows covered


Initial transfer of basic personnel administration organizational data Transfer of changed data records following a process-driven event, such as new hire, rehire, termination, transfer, change of personal employee data (name and address, for example), change of e-mail address and user ID, and new manager

SAP ERP HCM SAP HCM Add-on

SAP NetWeaver Process Integration Employee & Organizational Data


<WSDL>

SuccessFactors Business Execution

Administration Administraion and Organization

Employee Data
<WSDL>

2012 SAP AG. All rights reserved.

14

Realization

15

In the system

Key process flows covered


Relevant salary and pay-grade data is transferred from SAP ERP HCM to SuccessFactors Business Execution Changed compensation data such as salary change, lump-sum payment, or long-term incentive is transferred from SuccessFactors to SAP ERP HCM

SAP ERP HCM


<WSDL>

SAP NetWeaver Process Integration Current Salary Data

<WSDL>

Administration and Payroll

SAP HCM Add-on

SuccessFactors Business Execution

Employee Data
Compensation Allocations

2012 SAP AG. All rights reserved.

16

Conclusion

17

Go live in as little as 5 weeks

1 Start

2 Deploy

3 Run

Expectations
Project management Kick-off workshop participation Scoping workshop Preparing technical infrastructure Solution activation and confirmation Implementation of options Knowledge transfer to key users Master data load Testing of solution Switch to QA and production Successful rollout and adoption Configuration documentation End user training Data migration Hand over of solution Go-Live Post go-live support and activities

Results
Mutually-approved options selected Working SAP system

Superior support to ensure smooth functioning

2012 SAP AG. All rights reserved.

18

Engineered Services for Rapid Deployment Solutions


Your path to Go-Live: fast, efficiently and at predictable cost
Fixed-price Implementation Services Pre-defined Project Methodology Ready-to-use Accelerators 1 Start
Project management Kick-off workshop participation Select options workshop Preparing technical infrastructure

2 Deploy
Solution activation and confirmation Implementation of options Knowledge transfer to key users Master data load Testing of solution Switch to QA and production

3 Run
End user training Data migration Hand over of solution Go-Live Post go-live support and activities

Accelerators / Deliverables
Service delivery model Pre-delivery requirements and checklist Work breakdown structure (WBS) Consulting delivery guide Solution details Solution summary Scoping questionnaire and options Kick-off presentation Software requirements Solution Manager template

Accelerators / Deliverables
Training Materials Business process documentation, process-flow recordings etc. Delivery acceptance forms

Accelerators / Deliverables
Quick guide Business process documentation Best-Practices content (pre-configuration) Scoping questionnaire and options Configuration guides Test plans and scripts

2012 SAP AG. All rights reserved.

19

Implementation methodology

Start

Deploy
Configuration Guide

Run

Kickoff Workshop

Project Schedule

Scoping Questionnaire

Check Lists

Support Portal

2012 SAP AG. All rights reserved.

20

Project plan and timelines

Start

Deploy

Run

Prepare Project Kick off workshop Select Options Check Installation

Activate Solution Confirm Solution Acceptance Testing Train Key Users Set up Customer Data Transport

End-user Training and Organisation Change Management Prepare Production Project Sign-off &Support

SAP involvement

Customer involvement

Note: This slide represents a typical deployment. Exact details may differ according to solution.
2012 SAP AG. All rights reserved. 21

Project team: SAP

SAP Project Manager


Serves as a central contact person for SAP, from project initiation to going live and support Responsible for the coordination of SAP tasks and project management assistance with the customers project manager.

SAP Consultants
Responsible for implementation of the agreed upon scope for the rapid-deployment solution

2012 SAP AG. All rights reserved.

22

Project team: customer

Leading Project Manager


Serves as a central contact person from the customer, from project initiation to going live and support On your side: responsible for functional and commercial project management, coordination of customer tasks, overall project controlling and updates to the project steering committee

Basis staff
Especially responsible for the installation and administration of the SAP system landscapes

Functional department staff / key users


Responsible for workshops, questions from SAP, end-user training, and possibly as a power user for simple configurations

Specialized Staff (Optional)


Responsible for further specialized areas such as customization and configuration
2012 SAP AG. All rights reserved. 23

Thank you for your attention