Service lifecycle
Service deployment
Digital and Population Data Services Agency recommends joining the development environment before the deployment of the Suomi.fi Data Exchange Layer.
The deployment of the Data Exchange Layer requires:
- a security server, which needs to be considered in system, software and maintenance costs. Read more about security server.
- functional interfaces between the client organisation’s own services and the Data Exchange Layer
- acceptance of terms of use. See terms of use for the Data Exchange Layer: Suomi.fi Data Exchange Layer Terms and Conditions of Use (PDF, 473.41 kB)Opens in a new window.
- a connection to the test environment before joining the Data Exchange Layer’s production environment.
Digital and Population Data Services Agency will provide the client organisation with the installation and maintenance instructions for the security server installation package. Regarding the use of the security server the client organisation is required to;
- monitor and update security updates as notified by the Data Exchange Layer operator
- report any security incidents to the Data Exchange Layer operator
- maintain a secure security server in terms of licenses, user IDs, backup, and incident management
- authorize the Data Exchange Layer operator remote access for server management and port scanning
- perform application validation OWASP TOP 10.
A precondition for the service to be utilised through the Data Exchange Layer is a contractual relationship between the service provider and the service user. The service provider, the service user or both must represent a public body.
The application for, renewal of, and management of access rights related to certificates used in the Suomi.fi Data Exchange Layer are handled by the client organisation or, in accordance with an agreement between the client organisation and an intermediary, by the intermediary that owns the security server throughout the entire service lifecycle.
Client Description and roles
Clients can be broken down as follows:
- users of information and services
- providers of information resources and services
- service association and security server providers/operators.
Service maintenance
The client organisation is responsible for the services it provides to its own customers and for the security server it owns. The security server requires maintenance; for example, monitoring free disk space and performing software and security updates are the responsibility of the client organisation.
Service changes
The Digital and Population Data Services Agency informs client organisations of changes in the service in accordance with the contact information provided by them. The Digital and Population Data Services Agency is not obliged to report matters that do not affect the service that the client organisation connects to the service channel.
The client organisation can update its own contact and technical data and change the operator of its service by contacting the Technical Support of the Data Exchange Layer.Opens in a new window. Learn more about the maintenance.
Termination of service
The client organisation is required to announce that the service will be terminated by contacting the Technical Support of the Data Exchange LayerOpens in a new window.. Learn more about terminating use of the service.