1. CVR Computerized Statewide Voter Registration System and Services Appendix I Strategic Information Technology Plan Statewide Technical Architecture State of Maine Department of the Secretary of State May 28, 2004

2. Office of theChief Information Officer and Gartner Consulting STRATEGIC INFORMATION TECHNOLOGY PLAN Statewide Technical Architecture November 29, 2001 3. Table of Contents

Introductionto Bricks ....... 2

State of Maine Brick Yard Overview ........... 7

Bricks Recap .. 13

Brick Details ... 26

Data Services .... 27

Application Services.. 33

Integration Services .. 47

Computing Infrastructure . 49

Network Services .. 69

Security Services .. 84

4. Introduction to Bricks 5. Technical Architecture Specification Model Definitions

Each architecture component is decomposed into a set of specific elements. Each technology (and process element where appropriate) element is discussed based on industry status and outlook. The status is based on availability of standards (e.g., formal or de facto, vendors, and products both emerging and currently deployed).

Baseline :The current technology or process element in use by an organization.

Tactical :Technology(ies) that the State may use in the near term, tactical time frame, now to two years. Currently available products needed to meet existing business needs are identified here.

Strategic :Technologies that the State envisions using in the future that provide strategic advantage. Usually anticipated marketplace products are identified here.

Retirement :Technology and/or process elements targeted for deinvestment during the architecture planning horizon (e.g., five years).

Containment :Technology and/or process elements targeted for limited (maintenance or current commitment) investment during the architecture planning horizon.

Mainstream :Technology and/or process elements targeted as the primary deployment/investment option for new systems or legacy system migration over the architecture planning horizon.

Emerging :Technology and/or process elements to be evaluated for future integration into the target architecture (e.g., mainstream) based on technology availability and business need (key for evergreening).

Tactical Deployment Strategic Direction Retirement Targets Containment Targets Mainstream Standards Emerging Standards Current Two Years Five Years Implications and Dependencies Baseline 6. Sample of a Brick Baseline Environment Tactical Deployment Strategic Direction Retirement Targets Current 2 Years 5 Years Implications and Dependencies Emerging Platforms Mainstream Platforms(must be supported and candidate for use) Containment Targets(fully supported but no new development) (Current Technology) (Technology that may be used during the next two years) (Technologies that may be used in the future that will be strategically advantageous ) (Technologies that will be discarded) (Technologies considered for future integration ) Shared Agency (Shared Statewide- the mainstream platforms will be supported) (Maintained by agency/ agencies) 7. Specification ModelExisting Technology Migration Paths Source: Gartner /TAS Architecture Element Specifications/Standards Technology Transition (Outbound) Baseline Environment Tactical Deployment Strategic Direction Retirement Targets Containment Targets Mainstream Standards Emerging Standards Current 2 Years 5 Years Element Specific Issues Element Specific Implications/Dependencies IT Principles Computing Models Tactical Business/IS Priorities Strategic Business/IS Directions Technology Management Strategies Technology Delivery Strategies Technology/SystemsMigration Plan Exit From Environment Current Technology Deployed 8. Specification ModelNew Technology Introduction and Migration Architecture Element Specifications/Standards Exit From Environment Baseline Environment Tactical Deployment Strategic Direction Retirement Targets Containment Targets Mainstream Standards Emerging Standards Current Element Specific Issues Element Specific Implications/Dependencies IT Principles Computing Models Tactical Business/IS Priorities Strategic Business/IS Directions Technology Management Strategies Technology Delivery Strategies Technology/SystemsMigration Plan Introduction to Environment (via Evergreening) Technology Transition (Inbound) Technology Transition (Outbound) 2 Years 5 Years Source: Gartner /TAS 9. State of Maine Bricks Overview 10. Operating Systems Security Network E-Mail/ Messaging Middleware Database Workgroup Computing Systems Management The BricksN-Tier Architecture Document Management Application Development 11. Technology Domains Map Brick Yard Computing Infrastructure Systems Mgmt Storage Application Services Middleware Integration Services Data Services Network Services DBMS Data Warehouse Decision Support Tools LAN WAN Access Technologies Security Services Authorization Authentication Network Security Physical Security Other Security Services Operating Systems & Hardware Storage Web Infrastructure Environment Systems Management Application Development Environment Programming Languages CollaborativeSystems ApplicationArchitectures GIS Topology Voice Technologies Network Hardware 12. Data Services

Database Technologies

DBMS Access Methods

Data Marts/Warehouse

Business Intelligence Tools

Reporting Tools

Server Side Programming Languages

Client Side Programming Languages

Integrated Development Environment (IDE)

DB Modeling Tools

Repository

Application Development Methodology

QA Tools

GIS Tools

Groupware & Messaging

Document Management

DBMS Data Warehouse Decision Support Tools Programming Languages Applications Devt. Environment Collaborative Systems ApplicationArchitectures

Component Model

Application Servers

Thin Client Servers

GIS Application Services 13. Integration Services

Platform, Communication, Integration

Computing Infrastructure

Desktop Applications

Desktop Operating System

Mobile - Laptop, Wireless, PDA

Application/Data Server

Network Operating Systems

Printers

Browser (Internal Users)

Web Portal

Web Server

Content Mgmt/ Development Tools

Directory Server

Publishing Formats

Storage Area Networks

Tape

Optical/ CD

RAID High Availability

Network Systems Management

IP Administration

Middleware Operating Systems and Hardware Web Infrastructure Environment Storage Systems Management

Application (Distributed) Topology

Topology 14. Network Services LAN

LAN Protocols

LAN Wiring

LAN Topology

WAN Transport

WAN Protocols

WAN Security Services

Authorization Directories

Internal & External Authentication

PKI

Network - Firewalls

Internet - Firewalls

Data Center

Intrusion Detection

Virus Protection

Access Technologies

Remote Access Users

Terminal Emulators/Gateways

Wireless - LAN/WAN

Voice/Data Convergence

Accessibility

Video Conferencing

Authorization Authentication Network Security Physical Security Other Security Services Voice Technologies

Voice/ Data VoIP

Voice/Data Voice Mail

Hubs/ Routers Vendors

Network Hardware 15. Bricks Recap 16. Bricks- Recap Brick Baseline Tactical Strategic Containment Retirement Emerging Shared Agency dB Technologies Oracle dBSQL Server Access dB Progress dB Approach DB2 Rbase FoxPro VSAM Oracle dBSQL Server Access dB Progress dB Oracle8i dBSQL Server Approach DB2 Rbase FoxPro VSAM XML Databases DBMS Access Methods SQL*NET ODBC JDBC Progress Access Methods PL SQL (Pre-compilers) SQL*NET ODBC JDBC Progress Access Methods SQL*NET ODBC (2-tier) PL SQL (Pre-compilers) SQL-J Data Services Data Marts / Warehouse Oracle (Data warehouse/ Data Marts) Oracle (Data warehouse / Data Marts) Oracle (Data warehouse / Data Marts) Data Warehouse - a Statewide Endeavor Data Marts Business Intelligence Tools Oracle Discover BIQ CorVuGQL Oracle Discover BIQ CorVuOracle Discover GQL Web Analytics Oracle/ DW Web Analytics Web Analytics Reporting Tools Access Oracle Report WriterBIQ CorVu Crystal Report Writer (Very light-weight applications) Discover Progress GQL Infor Reports Report SmithEasytrieve Access Oracle Report WriterBIQ CorVu Crystal Report Writer Discover Progress Market Watch GQL Infor Reports Report SmithEasytrieve GQL Identify 2 common reporting tools for the State 17. Bricks- Recap Brick Baseline Tactical Strategic Containment Retirement Emerging Shared Agency Application Services Server Side Programming Languages Java OraclePL SQLStored Procedures Progress Application Server Perl Shell VB Cobol/ Accu CobolDelphi C++ C PL/1 Java OraclePL SQLStored Procedures Progress Application Server Perl Shell VB Java OraclePL SQLStored Procedures Jcobol Cobol/ Accu CobolDelphi C C++ PL/1 Market Watch Oracle Progress Client Side Programming Languages Java ProgressOracle Development Tools Power Builder VBDelphi C++ Java ProgressOracle Development Tools Power Builder Market Watch VBDelphi C++ Save our WAN study Integrated Development Environment (IDE) Progress Development Tools Oracle Designer ( Web PL SQL) Oracle Developer 2000 MS Developer Studio Enterprise Progress Development Tools Oracle DesignerOracle Developer 2000 MS Developer Studio Enterprise Market Watch Java ISEs Conduct an IDE/ISE study dB Modeling Tools Erwin Oracle Designer Developer Studio Erwin Oracle Designer Developer Studio Market Watch UML-Based Modeling Tools/ Methodologies, Oracle 9ais Oracle Repository Microsoft Visual SourceSafe CA-Panvalet (Mainframe)PVCS SCCS Microsoft Visual SourceSafe CA-Panvalet (Mainframe) SCCS Market Watch PVCS 18. Bricks- Recap Brick Baseline Tactical Strategic Containment Retirement Emerging Shared Agency Application Services (Contd) Applications Development Methodology Universal Software Dev.Process (USDP) The Guide- Waterfall MethodJAD CAD USDP The Guide- Waterfall MethodThin Client Market Watch XP (Extreme Programming), RUP QA Tools Mercury Interactive Oracle Enterprise Manager HP Glance Plus Mercury Interactive Oracle Enterprise Manager Market Watch Statewide HP Glance Plus GroupWare and Messaging Outlook CC Mail Exchange 2000MS Exchange5.5 IMAP FaxServe Lotus Notes Outlook Exchange 2000FaxServe Outlook Exchange 2000 MS Exchange5.5 Lotus Notes CC MailIMAP Document Management Fortis - File Magic PCDoc Enterprise Fortis - File Magic PCDoc Enterprise Market Watch Portal Products Component Model COM+ Market Watch COM+ Java J2EE .Net Application Servers OracleBEA Web Logic OracleBEA Web Logic Market Watch Web Sphere Thin Client Servers Citrix Citrix Market Watch GIS Tools ArcInfo 8 ArcView 3 ArcGIS ArcSTE (State level) ArcIMS (State level) MapIfo Microstation The Captain Nobletec Delorme ArcInfo 8 ArcView 3 ArcGIS ArcSTEArcIMSMapIfo ArcInfo 8 ArcView 3 ArcGIS ArcSTEArcIMSMapIfo Microstation The Captain Nobletec Delorme 19. Bricks- Recap Brick Baseline Tactical Strategic Containment Retirement Emerging Shared Agency Integration Services Middleware Tuxedo CICs Momentum- eBiz CICs Momentum- eBiz Market WatchTuxedo Enterprise Application Integration (EAI)= MQ Series MTS 20. Bricks- Recap Brick Baseline Tactical Strategic Containment Retirement Emerging Shared Agency Computing Infrastructure Desktop Applications MS Office 2000MS Office 97Lotus Smart Suite 97 Auto CADMicrosoft Visio Micro Station MS Project As-One Artemis MS Office 2000Auto CADMicrosoft Visio MS Project Market Watch Auto CAD MS Office 97Micro Station As-One Artemis Office XP Lotus Smart Suite 97 Desktop Operating Systems Windows 2000NT 3.5/ 4.0Windows 98 WinME Windows NT Windows 95 Windows 2000NT 3.5/ 4.0XP XP Windows 98 WinME Windows NT XP Windows 95 Mobile - Laptop, Wireless, PDA Palm O/S Windows CE Market Watch Application/ Data Server Sun- Solaris IBM Mainframe Intel - NT HP UXCompaq Dell ServerIBM RS 6000 (AIX) SCO Unix Servers Unisys XR7 UnixWare BSD Unix Servers DEC Unix DecAlpha Novell Servers AS/400Linux Bull Mainframe Enterprise: Sun- Solaris IBM O/S 390 Unix - Departmental Sun Solaris HP-UX Server (File, Application etc) Intel (Compaq) - NT Family Enterprise: Sun- Solaris IBM O/S 390 Unix - Departmental Sun Solaris IBM RS 6000 (AIX) SCO Unix Servers Unisys XR7 UnixWare BSD Unix Servers DEC Unix DecAlpha Novell Servers AS/400Linux Linux Bull Mainframe Statewide Licensing, support & training Palm O/S Windows CE 21. Bricks- Recap Brick Baseline Tactical Strategic Containment Retirement Emerging Shared Agency Computing Infrastructure (Contd) Printers Xerox 4635 (BIS 2, DOL 1) Xerox 4635 (BIS 2, DOL 1) Xerox 4635 (BIS 2, DOL 1) Web Portal Oracle PortalInforME (External Service Provider) Oracle PortalInforME (External Service Provider) Market Watch Plum Tree J2EE Application Servers Browser (Internal Users) Internet Explorer 5.5Netscape Internet Explorer IE 5.0 Internet Explorer 5.5Netscape Market Watch Internet Explorer IE 5.0 Web Server IIS - Intel IIS Apache - Sun/Apache IISApache Market Watch Linux/ Apache Content Mgmt/ Development Tools DreamWeaver Ws FTP MS Front Page MS Word HotDog Adobe Go Live DreamWeaver Ws FTP MS Front Page MS Word HotDog Adobe Go Live Market Watch Network Operating Systems NT File and Print Novell File and Print Novell Directory Services (NDS) NT Domains NT File and Print NT Domains Active Directory NT File and Print Active Directory Novell File and Print Novell Directory Services (NDS) Peer-to-peer AD Directory Server Domain Name Service (DNS) Administration Limited use of Unix BIND Domain Name Service (DNS) Administration SDNS Limited use of Unix BIND LDAP Active Directory Market Watch NDS Notes Active Directory (AD) XNS 22. Bricks- Recap Brick Baseline Tactical Strategic Containment Retirement Emerging Shared Agency Computing Infrastructure (Contd) Storage (SAN, NAS) EMC NAS Compaq IBM HP Compaq EMC NAS Compaq IBM HP Compaq Market Watch Publishing Formats PDFMS Word HTML PDFMS Word HTML Market Watch Tape 34A 3590 (IBM) 3480 (BULL) LTO DAT DLT LDOS DDS Market Watch for consolidated products Optical/ CD HP CD Writer IBM 3995 HP Juke Boxes HP CD Writer IBM 3995 Market Watch for consolidated productsHP Juke Boxes RAID High Availability RAID 1 & 5 RAID 1 & 5 Market Watch for consolidated products Network Systems Management HP OpenView IP Administration DHCP Static DHCP DHCPStatic Assignment for workstations and NOT for routers, firewalls and server Application (Distributed) Topology 2-tier 3-tier (n-tier) Stand alone (local applications) 3-tier (n-tier) Stand alone (local applications) 3-tier (n-tier) Stand alone (local applications) 2-tier HP OpenView 34A 3590 (IBM) 3480 (BULL) LTO DAT DLT LDOS DDS Market Watch 23. Bricks- Recap Brick Baseline Tactical Strategic Containment Retirement Emerging Shared Agency Network Services LAN Protocols IP IPX/ SPX Apple Talk DLCNETBEUI IP IP IPX/SPX (File and Print) NET BUI (No WAN access- LAN only), Appletalk, DLC NET BEUI IPX/SPX Market Watch IPV 6 (Addressing and Security) Statewide Standards WAN Transport Asynchronous Transfer Mode ( ATM) Frame Private Line (PPP) ATM Frame Private Line (PPP) ATM Frame SONET State Standards LAN Topology 10/100 MB wire 100 MB Switched 10 MB Ethernet 10 MB switched to desktop 100 MB Ethernet Flat (Hubs) Ethernet 10/100 MB - (Layer 2/3 Switched) Switched Layer 2 or 3 Flat (Hubs) Switched Ethernet Switched Layer 3- Larger Campuses 10 MB (Cat 3 only) Shared Ethernet will be contained. Market WatchGigabit Ethernet to Desktop State Standards Specific/ Special Standards LAN Wiring CAT 5E CAT 3CAT 5 Ethernet 100 MB - Switched Layer 3 CAT 5E Fiber - Data Center Floor Risers CAT 5E - Offices, Non-shared Floors Offices : Ethernet 100MB Data Centers or Major Nodes: Gigabit EthernetSwitched Layer 3, Fiber Market Watch (Keeping with IEEE standards) Token Ring CAT 3 CAT 5 Shared Ethernet Cat 6 Gigabit Ethernet - Data Center Statewide Standards 24. Bricks- Recap Brick Baseline Tactical Strategic Containment Retirement Emerging Shared Agency Network Services (Contd) WAN Protocols IP OSPF Flat Network Bridged WAN-IP-Learning Tree Bridge Multicast IP OSPF Multicast IP OSPF Bridged WAN Flat Network RIP-IPX RIP-IP IP WAN App. Development (WAN Guidelines) Remote access Users IPRSShiva (Others) Red Creek- Ravlin Check Point- SecuRemote IPRSRed Creek- Ravlin Check Point- SecuRemote Market Watch IPRS Shiva Market Watch State Standards Terminal Emulators/ Gateways Humming Bird Communication Suite 3270 Emulators SCO Ansi (Telnet) 5250 Humming Bird Communication Suite SNA Gateways Browser based, TN 3270E IP Service Gateways Eliminate Windows Citrix Market Watch for browser based products. Sco Ansi (Telnet) 3270 Emulators Gateways 5250 Market Watch State Standards Wireless - LAN/WAN Nortel Cisco Lucent Wavelan 2-way radio (State Police will be implementing approx. 100 CDPD mobile units in 02) State Standards Voice/Data Convergence Voice and Data Converged for small sites Separate large sites. Market Watch for converged products Nortel Cisco Lucent Wavelan 2-way radio Market Watch 25. Bricks- Recap Brick Baseline Tactical Strategic Containment Retirement Emerging Shared Agency Network Services (Contd) Accessibility Access Methods TDD (TTY) at BIS JAWS MAG IC Large print display Dragon Dictate Naturally Speaking Standards EIS is ADA (W3C) compliance Rehabilitation Act of 1973, Section 508 via Voice Gold Access Methods TDD (TTY) at BIS JAWS MAG IC Large print display Dragon Dictate Naturally Speaking Market Watch Standards Standard WCAG2.0 Standards base market watch Market Watch Accessibility standards and processes Video Conferencing Net Meeting Picture Tel Polycom Zydacron Net Meeting Picture Tel Polycom Zydacron Market Watch Market Watch. Should support G series of standards: H.323 compliant. Statewide Standards Voice/Data VoIP Voice/Data Voice Mail PBX Meridian- Nortel Centrex- Verizon Audix Nortel PBX Definity PBX- Lucent Voice Mail Provided/ maintained by BIS Centrex Small site- VoIP PBX Large Site- PBX enabled with VoIP Trunking Audio Messaging Interchange Standards (AMIS) VoIP-PBX VoIP-PBX Voice/ Data & Dial Plan standards Hubs/ Routers Vendors Nortel 100MB switched Cabletron Smart Switch DLINK 1600i & DLINK 1400 3COM Cisco Series 3Com SSR-16 Switched, Layer 3 e-Net * Nortel Layer 3 * Cisco Market Watch for vendors BIS WAN Layer 2 switching Market Watch Market Watch 26. Bricks- Recap Brick Baseline Tactical Strategic Containment Retirement Emerging Shared Agency Security Services Authorization Directories NDS NT Domains RACF Oracle and DB2 Directories Unix Password Files Directory specific Active Directory (AD) Authentication Internal Individual User ID/ Passwords Shared User ID/ Passwords External Individual User ID/ Passwords Secure ID Internal Individual User ID/ Passwords External Individual User ID/ Passwords Secure ID Market Watch Role based authentication. Netegrity. Personal Digital Certificates. Single Sign-on (SSO), LDAP Shared User ID Market Watch Active Directory (AD) LDAP NDS RACF Oracle and DB2 Directories Unix Password Files Active Directory (AD) LDAP NT Domains Policies for Technology PKI Server certificates required for all servers (verisign) Server certificates required for all servers (verisign) Market Watch Network Firewalls Departmental State police will be implementing a firewall in CY 02 More of the same and application specific firewalls. Explicit firewall configuration policy Internet Firewalls BIS provided. Market Watch on Threats Redundant firewalls. Data Center No data recovery plans in place 27. Bricks- Recap Brick Baseline Tactical Strategic Containment Retirement Emerging Shared Agency Security Services (Contd) Virus Protection Vshield (PC) Norton Sabari Antigen (email) Netshield Vshield (PC) Norton Sabari Antigen Netshield Market Watch Intrusion Detection Network Base None Server Tripwire - Unix NukeNabber (Dynamsol) - NT Real Secure Critical Networks All Servers Critical Servers All Servers Critical Networks ISS Real Alert Critical Servers Tripwire - Unix Market Watch Policy and standards under review 28. Brick Details 29. Data Services 30. Data Services:Database Technologies Source:Gartner/TAS Baseline Environment Tactical Deployment Strategic Direction Retirement Targets Mainstream Platforms(must be supported) Current 2 Years 5 Years Implications and Dependencies Containment Targets(fully supported but no new development) Emerging Platforms Shared Oracle dBSQL Server Access dB Progress dB Approach DB2 Rbase FoxPro VSAMRbase, DB2, FoxPro, VSAM, Approach XML Databases

MFASIS financial system is dependent on VSAM. DOT, DHS and Taxation also use VSAM. VSAM will be contained for 2-3 years.

FoxPro will be contained to support numerous small applications.

Access dB will be used to support small scale shared applications and standalone applications.

SQL servers will support small scale, opportunistic applications only. If a DBA is required for its maintenance, it should be moved to Oracle.

Progress is suitable for purchased applications. If progress is to be used for application development, it will require additional tools and personal to support it.

Evaluate the use of Progress on a per-project basis..

Agency Progress dB, Oracle, Access (desktop) Rbase Small/ light-weight applications only Small scale opportunistic projects only 31. Data Services:DBMS Access Methods Source:Gartner/TAS Baseline Environment Tactical Deployment Strategic Direction Retirement Targets Mainstream Platforms(must be supported) Current 2 Years 5 Years Implications and Dependencies Containment Targets(fully supported but no new development) Emerging Platforms SQL*NET ODBC JDBC Progress access methods PL SQL (Pre-compilers) SQL*NET, ODBC, JDBC, Progress SQL-J Shared Agency PL SQL (pre-compilers), ODBC (2-tier)

ODBC used mainly for 2-tier

32. Data Services:Data Marts/Warehouse Source:Gartner/TAS Baseline Environment Tactical Deployment Strategic Direction Retirement Targets Current 2 Years 5 Years Implications and Dependencies Emerging Platforms Mainstream Platforms(must be supported) Containment Targets(fully supported but no new development) Oracle (Data warehouse/ Data Marts) OracleShared Agency Data Warehouse- a statewide EndeavorData Marts

At present, data is shared at an application level.

IT PROJECT:Create a Statewide data warehouse consisting of employer information, citizen information (address, etc).

33. Data Services:Business Intelligence Tools Source:Gartner/TAS Baseline Environment Tactical Deployment Strategic Direction Retirement Targets Current 2 Years 5 Years Implications and Dependencies Emerging Platforms Mainstream Platforms(must be supported) Containment Targets(fully supported but no new development) Oracle Discover BIQ CorVuGQL Oracle Discover Web Analytics Shared Agency

Tools must have payback