Tandemworld eNewsletter for August 2014

Gold Sponsor is

Silver Sponsor is

 

 

   
 

Tandemworld eNewsletter for August 2014


Contents

TANDsoft Introduces FileSync AppendOnly for SUper Fast Synchronization of Large Files

Fly and be Free

Gravic Presents Week-Long Shadowbase Solutions and Technical Deep-Dive Training for HP Personnel

Brightstrand Security Review

Musings on NonStop August, '14

Shadowbase Success Story: Replicating BASE24 Classic Data to an Oracle RAC Target

NonStop Technical Bootcamp

Version 3.0 of PCI DSS Compliance technical white paper released

The comForteLounge blog site has moved

Third Data Corporation

comForte - Modernizing Legacy HP NonStop Applications: From the Ground Up and from the User in.

 Access Rights Management on NonStop

comForte at events near you in 2014

Check CPU Status and Storage From a Browser or Mobile Device

XYPRO's Steve Tcherchian Reports on BlackHat 2014

Look at those Backups RUN!!!

Where we are in The World...

PeruseWeb 2014: A new Product version

XYPRO’s Top 10 List of NonStop Security Fundamentals #2

Denicratic Republic of Congo Partners With BankServaAfrica to Use Tango System

Electronic Payment Systems Provider Depends on OmniPayments Preauthorization Services for Fraud Reduction

Availability Digest Explains How the Internet Hit a Capacity Limit on August 12, 2014

Online Version

Current Subscribers 14992


TANDsoft Introduces FileSync AppendOnly for SUper Fast Synchronization of Large Files

TANDsoft, Inc. continues to expand the value proposition of its flagship product FileSync, which replicates and synchronizes application environments and non-database files across HP NonStop servers. In recent months, TANDsoft has introduced FileSync Data Deduplication and FileSync Incremental. The newest addition to the FileSync family is FileSync AppendOnly, especially useful with very large transaction log files that require frequent synchronization.

As is the case with all TANDsoft products, FileSync AppendOnly is available for review via TANDsoft’s free trial program.

FileSync automatically monitors, replicates and synchronizes source files, program environments, application environments, configuration files, programs – anything non-database that needs to be kept current across the network. It supports qualified expressions and referential integrity as well as the synchronization of SQL/MX catalogues, schemas, tables, partitions, and indices. In addition, FileSync supports the SQL/MX filter. FileSync supports all Guardian files – audited, unaudited, structured and unstructured; all OSS files; NonStop SQL/MP Catalogs, Tables and Partitions; program source and object files; and configuration and TACL files. TANDsoft customers use FileSync for system migrations, disaster recovery, upgrades, and backups. It works closely with all NonStop real-time data replication products to provide a comprehensive solution for maintaining duplicate system and application environments.

FileSync Data Deduplication, or client deduplication, takes place at the system hosting the primary database. It significantly reduces bandwidth requirements and the size of backups by streaming to the backup database only changed data, not entire files. FileSync deduplication decreases disk loads, increases Recovery Point Objective (RPO), and reduces Recovery Time Objective (RTO).

FileSync Incremental eliminates the need to analyze all files. Instead, FileSync Incremental asks the system to provide for review only those files that have changed within specified time parameters – 12 hours, one day, a week, and so on. The result is a smaller, much faster synchronization effort, a substantial savings both in time and processing power. For large files, FileSync Incremental can be used in conjunction with FileSync Data Deduplication.

Filesync AppendOnly was created at the request of a TANDsoft customer whose OSS environment included very large, unaudited files that were synchronized every few minutes. With FileSync AppendOnly, changes made to a file are “appended” to the end of the file. When AppendOnly checks for changes since the last synchronization, it needs only look at the end of the last changed data update. FileSync AppendOnly can be used in conjunction with FileSync Data Deduplication and FileSync Incremental.

For one TANDsoft customer with large transaction log files that required frequent synchronization, FileSync AppendOnly reduced the processing time from seven minutes with whole file synchronization to 48 seconds with FileSync Data Deduplication to less than five seconds with FileSync AppendOnly.

In addition to FileSync, TANDsoft solutions include: the OPTA2000 virtual clock- and time-zone simulator; the OPTA suite of interception and trace utilities (OPTA¬Trace Online Process Tracer and Analyzer, Recycle Bin, EMS Alerts Online Startup and Termination Capture Utility, Low Pin Optimizer); Stack Monitor, which alerts developers to the impending threat of a stack overflow; Command Stream Replicator, which logs and automatically replicates TMF-audited/unaudited FUP, SQL/MP and SQL/MX DDL structure and other environment changes to target systems; AutoLib, which automatically loads a user library or a DLL for executing processes; the Enscribe-2-SQL and TMF-Audit Toolkits and the

Enscribe-2-SQL Data Replicator, all of which offer flexible, affordable alternatives to more expensive conversion products or manual conversion techniques; E2S-Lite, which permits efficient, low-cost Enscribe modifications without the need to change a program’s source code; and SDI/LOG (Sensitive Data Intercept), which provides logging of Sensitive Data access to Enscribe files and SQL/MP tables.

TANDsoft products require no application source-code modifications, are available for all HP NonStop servers, and support major third-party applications. Visit www.tandsoft.com, or contact Jack Di Giacomo at +1 (514) 695-2234. Drop by our booth at the upcoming NonStop Technical Boot Camp in San Jose, California, USA (16 – 19 November).

 


Fly and be Free

I am having a nostalgic moment today as I write this. My youngest daughter headed off to University this weekend. She is the last of the kids to leave the nest. We moved her into her dorm at the University of Iowa last Thursday. We gave her a hug and told her to “fly and be free”. Where have the past 18 years gone?

Back in 1996 I was working for ACI heading their tools division. In those days the whole concept of DR was new. NTI had been out with a product for many years and the boys from GoldenGate were just introducing their first version.

ACI was distributing GoldenGate. I spent some time with GoldenGate in those early years, understanding the technology and learning from Customers how it could be used. It was a tough sell convincing a Tandem customer to buy two machines. These were truly groundbreaking times.

In 2002 I joined up with my friend Mike Nee and the amazing techies at NTI. These folks are the true pioneers of the DR business. Passionate about their technology. Accurate as hell. Itching to spread DRNet around the world. That became my job. Visit the customers. Tell our story. Introduce the Tandem install base to our unique Hyper Replication method. Fly. Fly. Fly. 

Which brings me to this past weekend and the realization that 18 years have flown by. So what comes next? Today most Tandem customers run dual sites so data replication has become a standard requirement. Customer by customer our install base keeps growing. Every hour of every day DRNet protects millions of IO’s across hundreds of customers spanning the globe. One thing is for sure, DRNet is here to stay.

 

Gotta go… I have a plane to catch.

 

DRNet® is world class NonStop Data Replication technology.

·       Real-time Active/Active Data Replication

·       Real-time Tandem to OPEN Data Replication

·       Real-time File Synchronization

·       Refreshingly Real-Time Support from Real Engineers

 

Jim.McFadden@network-tech.com

+1 (402) 968 3674

 


Gravic Presents Week-Long Shadowbase Solutions and Technical Deep-Dive Training for HP Personnel

This month, Gravic presented a week-long Deep-Dive training session on Shadowbase solutions and technical architecture, including data replication (business continuity), data and application integration (homogeneous and heterogeneous), and other advanced topics with live demos. We hosted several onsite HP personnel as well as many others attending the webinar virtually around the world. The sessions were recorded and are available for subsequent viewing by HP personnel who were unable to attend. We are very pleased with the turnout, and the discussion points proved invaluable. We look forward to working further with you!

 

HP employees who would like to access this training material, please contact your Product Manager at: Ajaya.Gummadi@hp.com. If you would like access to any of these training materials and are not an HP employee, then please contact us at +1.610.647.6250 or SBProductManagement@gravic.com. For more information on Shadowbase solutions, please visit: www.gravic.com/shadowbase.

 

Please Register for MATUG September 25 Meeting

 

Please register for the Mid-Atlantic Tandem User Group (MATUG) Meeting scheduled for 8am-5pm on Thursday, September 25, 2014 at the Renaissance Philadelphia Airport Hotel, PA, USA. Expect several informative HP and vendor presentations, as well as a special presentation by Dr. Bill Highleyman. The MATUG meeting is open to any HP NonStop customer, partner, user, consultant, or interested party. Please contact Susan Loeliger (Chapter Secretary/Treasurer) at sbproductmanagement@gravic.com to register. Please forward this announcement to others in your organization who may be interested in attending. Members are usually from the following states: Pennsylvania, New Jersey, Maryland, Delaware, Virginia, Washington, D.C., and West Virginia, although anyone can attend. MATUG provides members with the opportunity to participate in quality informational sessions, and learn about new HP products and services as well as interact with fellow HP NonStop users. Please visit the MATUG Connect Chapter web page for more information.

 

Please Visit Gravic at these Upcoming Events

 

VNUG Conference Balsta, Sweden, 9-10 September

 

MATUG Meeting Philadelphia, PA, 25 September

 

The Payments Knowledge Forum London, 29-30 September

 

CTUG Fall Conference Toronto, 9-10 October

 

Connect NonStop Technical Boot Camp San Jose, CA, 16-19 November

 

BITUG BIG SIG London, 2 December

 

Please Visit Gravic at these Sites

 

Website  http://www.gravic.com/shadowbase

 

Twitter  https://twitter.com/GravicSB

 

LinkedIn  http://www.linkedin.com/company/gravic-inc./shadowbase-data-replication-305119/product

 

Facebook  http://www.facebook.com/pages/Gravic-Shadowbase/116969767814

 

Google +  https://plus.google.com/b/117288516055822969721/117288516055822969721/posts

 


Brightstrand Security Review
 

Today, the task of building and maintaining IT systems is more complex than ever before. The need for business continuity, an increase in critical transactional links to other systems and personal privacy requirements, to name but a few, all place security into focus. This is all in an environment of increasing regulation by government and industry organisations.

Businesses now have to ensure that their investments in security are delivering on the promised protection of their IT environments. Does the business make best use of security products and services ? Does the business follow best practices ? Is exposure to risk minimised ?  

Customers are finding that a Security Review from an independent third party is now welcome before they are exposed to a searching Security Audit.

This is where BrightStrand International can help. We have skilled and experienced NonStop Security consultants who can undertake detailed Security Reviews to ratify that your security is sound or to identify situations where it can be improved. BrightStrand can then work with you to apply any necessary changes to meet today’s stringent Security standards.

 

BrightStrand continues to deliver a full range of services that include:

           

·       Systems and Operations Management

·       Performance and Tuning / Capacity Planning

·       Database Design and Administration

·       Communications Subsystems

·       Web Services

·       Security Reviews

·       IBM WebSphere MQ Series environments.

·       NonStop Integrity and Blade Migrations

·       System Healthchecks (Pre or Post-Migration)

·       Specialist Consultancy

·       Disaster Recovery and Service Continuity Planning

 

All, or some of these elements can be brought together in a Fully Managed Service that can be tailored to the particular needs of the customer – including remote bridging, hosting or operations support, adding further value to the BrightStrand quality services.

                                 

Call Dave Stewart today on +44 (0)7831 775115 or email him on dstewart@brightstrand.com for more information.


Musings on NonStop August, '14

The opinions expressed here are solely
those of the now self-employed author

While working on background for another commentary I had searched early posts to the NonStop community blog, Real Time View. Quite the trip down memory lane it turned out to be as this blog tracks major events in my career – and that’s food for thought and for musings at another time. By the way, have you seen how dramatic the uptick in readership there’s been since last year – following Moonshot and then NonStop on x86? As I write this musing, there are still another ten days to go but even so, with two thirds of the month behind us, these numbers continue to stay very high (and for the month of September, are on track to clear 8,500 again):

 

 

While there was a peak at 10,000 following the NonStop on x86 posts, since then readership has continued to hover above 8,000 – so, many thanks to all of you who do take time to check out these posts. Shortly, I will be celebrating seven years of blogging - who knew! However, it was the post of January 26, 2008, (yes, Australia Day, no less) that caught my attention – Neoview; a new view? In this post I recalled the occasion of a business trip to London where I caught up with folks in the financial heart of London – the City.

In that post I refer to how I had caught up with Dave Barnes. “Dave produces the widely read Tandemworld Newsletter that is another channel that I plan to support with commentary,” I noted, but probably, what proved more telling was an observation that followed. “What I took away from the few days I spent in the City was the resilience of the establishments and how each, in their own way, responded to changing market conditions and client requirements.” Ignoring the title of the post, and considering this was an observation made almost seven years ago, I can’t shake the thought about the resiliency of NonStop.

“From the custom, bespoke NonStop servers needed by the most demanding of applications, to being a configuration option of a multi-OS package of blades in support of mission critical transactions (very similar to what Yash of OmniPayments, Inc. is building today), as well as to participating in a complete integrated hardware / OS / application package (what the folks supporting telco’s have been doing for quite some time), the influence of NonStop technology on future HP product families is beginning to be more visible,” I wrote.

Influence on the future? For anyone following the discussion on the LinkedIn group, Tandem User Group, OK fools, quick question ... it would have been hard to miss the remarks made by long-time NonStop developer and advocate, and now an independent NonStop computer professional (who I have as much time for as I can free up these days), Dean Malone. “Let's up the ante with quantum processors,” said Malone.  

 

“Things are about to get a whole lot faster, my friends and not just for NonStop. With this kind of quantum computing, applications will emerge that we haven't even dreamed up yet. My prediction is that Shared Nothing Multi-Processing architectures are about to take over. The capabilities of NonStop are going to become more than necessary. They are going to become essential. I think the Machine will look more like a NonStop than anything else currently available.”

Bold words and a strong prediction but again, it’s hard to rule out the resilience of NonStop and just how long-lived the architecture will prove to be – I for one wouldn’t have expected to see a world where HP NonStop systems and IBM Mainframes continue to be the engines driving the processing (albeit, the transactional processing) of the Global 1000. No, believe me, there was a time when working for Nixdorf Computer, I thought that, like dinosaurs of eons past, these systems would have a very predictable end of life, but their resilience has surprised me. Then again, whatever happened to Nixdorf? Wang? Prime? Burroughs, and the rest of the BUNCH? Data General? Digital?

Yes, I know, I stuck this last one in there based on recent announcements by HP but I can count many more manufacturers who evangelized different architectures and programming models that are no longer participating in this debate. I came across two meanings for resilience and I liked them both as they convey the message I so readily associate with NonStop. Resilience is “the ability of a substance or object to spring back into shape; elasticity”. It is also “the capacity to recover quickly from difficulties; toughness”. Elasticity and yet, toughness!

There’s not a day that goes past without at least one conversation about the upcoming arrival of NonStop supporting the Intel x86 architecture. Talk about elasticity – how many chip architectures has Tandem / NonStop supported over the years? And not just a change of vendor, mind you, but real changes of chip architectures. From the original proprietary chips, to Risc, then Epic, and now Xeon - the multiprocessing- or multi-socket-capable engine – NonStop has bent and twisted to accommodate and exploit them all. Have you ever looked at Intel’s roadmap for Xeon? Check out the history all the way back to the earliest Pentium chips – it’s impressive!

Toughness – well, I assign some of the presence of this attribute as much to the NonStop community as anything HP has done per se, although it’s shown every bit of the capacity to recover quickly from difficulties that’s also part of being resilient. I am not all that quick to jump on the latest hype or to unashamedly promote the newest gee-whiz gadget. Even though there’s been times where I have felt like King Canute trying to stem the flow of the incoming tide. Cloud computing and Big Data? These I do believe will, in time, reshape the NonStop architecture in new and innovative ways.

If you haven’t been following actions of NonStop community vendors then you may have missed comForte, via InfraSoft, offering support of Clouds with maRunga, WebAction offering support of Big Data, IR monitoring Clouds even as it derives greater business insight from Bog Data, in addition to OmniPayments building their own hybrid computers anchoring Cloud offerings to come – so yes, a lot of activity in support of key focus areas you may have missed.  

From my unabashed support for SOA and Web services in the late 1990s to the value proposition of Asynchronous Transfer Mode (ATM) in the early 1990s, there are technologies I see as holding great promise. Yes, I still think there’s a market for entry-level NonStop systems whose only application is in support of monitoring and management but I will leave further debate on that topic for another time. However, the fact that NonStop continues to make headway in marketplaces apart from the traditional strongholds for NonStop in finance and telco just goes to show how resilient NonStop systems really are these days.

We are now just a few weeks away from the NonStop technical bootcamp. I will be participating (as I will be at both MATUG and CTUG in the lead up to bootcamp) and I hope to see as many of you as I can – and I am sure there will be opportunities to talk about current implementations demonstrating the resilience of NonStop. It’s been long-lived, resilient and for nearly all of us, unmatched. And I see no lessening of the applicability of NonStop to what is coming down the pipe – so much so, I will likely look back at some point to this month’s musings and use it to develop further corroborating evidence in support of NonStop!

And with that, I will wrap up this month’s musings and return to posts and discussions for even more lively interaction with you all!

 

Richard Buckle
Founder and CEO

Pyalla Technologies, LLC
Email:             richard@pyalla-technologies.com

Following my blogs? My web publications? My discussion Groups?

Check out (copy and paste to your browser):

Real Time View at http://www.itug-connection.blogspot.com/

…. And check out the Group on LinkedIn, Real Time View

comForte Lounge at http://comfortelounge.blogspot.com/

…. And check out the Group on LinkedIn, comForte Lounge

Realtime.ir at http://realtime.ir.com/

…. And check out the Group on LinkedIn, realtime.ir

ATMmarketplace at
http://www.atmmarketplace.com/blogger.php?id=130763

buckle-up at http://www.buckle-up-travel.blogspot.com/

…. And check out the SubGroup on LinkedIn, Pyalla Track Days


 

Shadowbase Success Story: Replicating BASE24 Classic Data to an Oracle RAC Target

 

Early in May, Gravic heard from a European-based banking institution that they wished to explore replacing a competing and well-known replication product with a Shadowbase solution. Though the customer was originally satisfied with its previous solution, it decided it needed to migrate to a Shadowbase solution primarily for budgetary reasons and needed the entire replacement project finished in just a few weeks due to their current contract expiring.

 

The customer runs an HP NonStop-based BASE24 Classic application, and utilizes real-time replication to feed its Enscribe BASE24 data into several of its downstream billing and administration applications. These applications reside on a Unix Oracle RAC cluster using the Oracle database.

 

A trained Gravic delivery technician went onsite and worked with the bank’s team to complete an accelerated professional services (PS) project. Normally, this type of PS can be done remotely; however, due to the proprietary nature of the application data, testing and acceptance using the actual data could only be performed onsite with week one slated for initial configuration and unit testing, week two for User Acceptance Testing, and week three for the production roll-out and training.

 

As it sometimes happens, there was extensive data manipulation, transformation, and filtering needed—all tasks that Shadowbase technology is well-suited to perform efficiently. These tasks were followed by an extensive sequence of acceptance testing, including running both products in parallel and comparing the generated target data. After validation, the Shadowbase software was deployed into production within budget and on schedule. Customer management personnel thanked Gravic for its fast and accurate response, noting that they were quite pleased with the overall effort and that they plan to look to Shadowbase software for solutions for their business continuity needs. Please contact us at +1.610.647.6250 or SBProductManagement@gravic.com if you would like details on this type of fast-replacement project.


 NonStop Technical Boot Camp 2014

 

Registration is open!  https://www.regonline.com/builder/site/?eventid=1496544

Price:             $1295

Hotel:            Due to high demand, Dolce Hayes Mansion rooms are now available only Sunday, Monday and Tuesday nights. 

(Use these dates when making an online reservation to see available rooms.)

(Contact me if you need help finding an alternative hotel in the area)
 

Example of Customer Sessions:

  • Upgrading to NB56000c - Experiences from a Customer Perspective
  • Tokenization of Databases
  • You may think you are PCI compliant but are you actually secure?

31 NonStop Partners are exhibiting at the Boot Camp!

 

ACI

Ascert

Attunity

BlackWood Systems

Canam Software

Carr Scott

comForte

CSP

Crystal Point

ESQ

ETI-NET

Gravic

HP Services

Lusis Payments

Marshall Resources

Merlon

Network Concepts

Network Technologies

NuWave

OmniPayments

Oracle

Prognosis by Integrated Research

QSA

Resource 1

TANDsoft

Third Data

TIC

Tributary Systems

Voltage Security

WebAction

XYPRO

 

 

The Partner SIG looks forward to reuniting with Customers and HP this fall!

 

Kathy Wood

NonStop Partner SIG/Vendor Chair

kwood@blackwood-systems.com

 


Version 3.0 of PCI DSS Compliance technical white paper released

Since its first release in 2010, the PCI DSS Compliance for HP NonStop Servers technical white paper has become an industry standard tool for any HP NonStop organization that needs to be PCI compliant. Used also by Qualified Security Assessors (QSAs) during PCI assessments to assist in the specifics of PCI DSS as they relate to the NonStop platform, this paper is an indispensable tool for anybody tackling the requirements of PCI DSS.

 

HP NonStop security and system specialist, Greg Swedosh (Knightcraft Technology), along with payment industry security specialist and QSA, UL (PCI Service Stream), have updated the white paper to reflect the changes for version 3.0 of the PCI standard and to cater for the recently released Template for Report On Compliance (ROC).

 

This newly updated 130+ page paper was created with several goals in mind. The paper provides an insight into how a QSA may approach an assessment in regards to a NonStop system and how you can best prepare. Primarily, the intention is to assist organizations in their PCI compliance projects by suggesting considerations for configuring HP NonStop security and subsystems to meet PCI DSS. It also highlights the requirements where compliance cannot be achieved without the use of third party solutions. Independent of software vendors, where third party tools are required the paper provides a checklist of questions to put to the relevant security vendors, to help ensure that any software you are considering will meet the company requirements and objectives. Finally, the paper can assist QSAs who are unfamiliar with the HP NonStop platform, to help them provide the best and most robust assessments possible.

 

The paper is available to download from the Knightcraft Technology website at http://www.knightcraft.com.

 

About the Authors.

Greg Swedosh is a Senior Consultant and owner of Knightcraft Technology. He’s spent over 25 years working with the NonStop platform, as a system, security and compliance expert for a number of international organisations running mission critical applications. Greg is a co-author of the book Securing HP NonStop Servers in an Open Systems World and has delivered presentations on NonStop system security in numerous countries around the globe. Knightcraft Technology specializes in providing security, compliance and system services to HP NonStop based organizations throughout the world.

 

Dr. Sajal Islam is Audit Manager with UL (PCI Service Stream), and a leading independent consultant in information security with specialist expertise in the payments sector. UL is certified by PCI as a QSA, PA QSA and P2PE QSA company, an Approved Scanning Vendor (ASV), and owns three of only eight laboratories around the world that are accredited to evaluate devices against the PCI PIN Transaction Security (PCI PTS) standard. UL is an independent PCI QSA Company and as such does not endorse any specific commercial product. Furthermore, UL does not receive any material gain from any product that its clients choose to implement to assist with PCI DSS compliance or system security in general. [Website: http://industries.ul.com/transaction-security].

 

Constructive feedback is both welcomed and encouraged via the PCI DSS page on Knightcraft’s website www.knightcraft.com. Or send Greg an email at greg.swedosh@knightcraft.com.


The comForteLounge blog site has moved

 

We recently moved the comForteLounge blog to its new home at … www.blog.comforte.com … and we hope that you like the new look and feel. We'd like to invite you to visit the comForteLounge blog and look for anything that's of interest to you.

 

To wet your appetite here are the two most recent ones:

 

The cost of PCI-non-compliance – some real numbers at last

In this post Thomas Burg, comForte CTO, presents some numbers on the cost of not being PCI compliant. A very interesting read as these numbers are not easy to come by.

 

Security – comForte ensures our valuables are safely out of reach!

Richard Buckle, CEO of Pyalla Technologies, looks at the importance of strengthening an organizations' security. It refers to a security opinion paper that spells out this topic in more detail.

 

Visit the comForteLounge and subscribe.


 


 

Third Date Corporation

High Performance Switching and Secure Data Storage

888-301-2431 / sales@thirddata.com

                                                                                                                                      

               Third Data Corporation provides numerous products which can reside on HP Nonstop and other HP and Non-HP  hardware platforms. In addition we provide custom high performance software design and development for our clients.

 

FastBuild Switch – When building a switch be it ATM-POS, Wire Transfer, EFT, Medical, or any other type of data that needs to get from one place to another, you are usually faced with three choices. Take an existing package and modify your system to match it. Get the vendor to “enhance” their system to meet your needs. Write a new system from scratch. The FastBuild Switch integrates with your existing system, or if you are building from scratch gives you a great start. The switch is also built around the latest HP technology to maximize performance. It integrates several of our other products to maximize cost savings and security in a fault tolerant manner. In a cross platform environment it also runs on other non-Guardian HP supplied platforms.

 

SecureStore – If you are security conscience trying to become compliant (PCI, HIPAA, etc) then you know that you can not leave sensitive data readily viewable. SecureStore does three things for you. The data is encrypted so that you can become compliant. The data is compressed so that your hardware costs are reduced. As part of disaster recovery your data is sent to multiple locations so it will be available when you need it. As a bonus for those having trouble with Guardian 4K limits there is no record size. It supports Big Data with up to 18 Exabytes. It can also integrate with SQL systems (SQL MX/MP, Oracle, Postgres etc).

 

NxLib – NxLib provides a platform and utility libraries for developing a high performance multi-threaded applications on NonStop Guardian. The platform provides threading, queuing and network capabilities. This enables development of an application written single threaded style to perform as multi-threaded.   Extensible command processing and help are supported.  Development time can be cut to a fraction of the time it would normally take.  This results in fast  application development with consistent look and feel across multiple projects.

 

NxWeb – A high performance web server which provides support for NxLib applications.  It also can be used without NxLib.  It provides for secure connections, virtual domains, full http support and interfaces to pathway and IPC communications.

 

NxFile+ – NxFile+ provides compression and encryption to Enscribe structured files.  The files are configured through a GUI interface and the results are provided seamlessly to your applications, typically without any code changes.  In addition this provides for dynamic key changes on the fly so data stored at-rest may have its encryption keys changed as required.  Because the records can be compressed prior to encryption, it’s also possible to have records which significantly exceed the 4k record size limitations.

 

NxSSL – NxSSL is an SSL proxy which may be used to provide SSL encryption and authentication services to TCP/IP connections.  It provides full support for certificates and multiple encryption standards.  It has been carefully tuned to provide the highest performance available for any NonStop SSL connection.

 

NxUndelete – Files accidentally deleted can be a real problem.  Even when a backup is available, it is frequently a significant effort to retrieve it from a backup tape.  NxUndelete implements a recycle bin function on the the HP NonStop system.  Files deleted may be easily recovered using its GUI interface.

 


comForte - Modernizing Legacy HP NonStop Applications: From the Ground Up and from the User in.

 

The Imperative to Modernize Legacy Applications - When you take a step back and look at how the world of IT has changed in the past few years, it is pretty astounding. Advancements in mobile devices and applications, cloud services, big data, and a number of other areas have contributed to fundamental shifts in virtually every industry—and the pace only seems to be quickening.

These rapid and substantive changes can bring both opportunities and challenges for organizations. Eventually, for organizations to survive in this quickly changing environment, they have to evolve and enhance their services and capabilities — and legacy technologies can represent an increasingly significant impediment in meeting this demand.

For IT teams, it isn’t necessarily straightforward to know whether to try to keep working with legacy technologies as is, modernize them, or scrap them altogether. While the costs of tackling the challenges of legacy technologies directly can be significant, they can pale in comparison to the expenses of continuing to work with these legacy systems in their current state.

 

Read the full article - which was published in the July/August issue of The Connection - at ...

www.comforte.com/solutions/modernization/

 


Access Rights Management on NonStop

Getting your file permissions right is fundamental to good security, and your auditors will like it too!

CSP can deliver real access rights management on NonStop – for Guardian and OSS files:

·       Interactive Permissions Analysis

·       Compliance and Policy reports

·       GUI tools to define, implement and review file permissions

·       Graphical Access Matrix for granular access rights control

-    CSP’s solutions leverage the built-in Safeguard, Guardian and OSS controls to provide robust and effective security.

Find out more at:

www.cspsecurity.com and www.protect-ux.com


comForte at events near you in 2014

Join us at these events:

 

VNUG

9-10 Sept 2014

Stockholm, Sweden

PCI Community Meeting, North America

9-11 Sept 2014

Orlando, FL, USA

MATUG

25 Sept 2014

Philadelphia, USA

EBUG Knowledge Forum

29-30 Sept 2014

London, UK

PCI Community Meeting, Europe

7-9 Oct 2014

Berlin, Germany

CTUG

9 Oct 2014

Toronto, Canada

CONNECT Advanced Technical Boot Camp

16-19 Nov 2014

San Jose, USA

PCI Community Meeting, Asia Pacific

19 Nov 2014

Sydney, Australia

BITUG BIG SIG

2 Dec 2014

London, UK

 

 

 

And there is more, join the security discussion in the HP NonStop [Tandem] Security Group on LinkedIn.

 

Last but not least, follow us on ...

comForteLounge Blog

comForteLounge LinkedIn Group

comForteLounge Twitter

comForte on YouTube


comForte at events near you in 2014

Join us at these events:

 

VNUG

9-10 Sept 2014

Stockholm, Sweden

PCI Community Meeting, North America

9-11 Sept 2014

Orlando, FL, USA

MATUG

25 Sept 2014

Philadelphia, USA

EBUG Knowledge Forum

29-30 Sept 2014

London, UK

PCI Community Meeting, Europe

7-9 Oct 2014

Berlin, Germany

CTUG

9 Oct 2014

Toronto, Canada

CONNECT Advanced Technical Boot Camp

16-19 Nov 2014

San Jose, USA

PCI Community Meeting, Asia Pacific

19 Nov 2014

Sydney, Australia

BITUG BIG SIG

2 Dec 2014

London, UK

 

 

 

And there is more, join the security discussion in the HP NonStop [Tandem] Security Group on LinkedIn.

 

Last but not least, follow us on ...

comForteLounge BlogSpot

comForteLounge LinkedIn Group

comForteLounge Twitter

comForte on YouTube


 

comForte's SecurData product suite gains traction around the world

An increasing number of comForte customers around the world see the benefits of a solution such as SecurData which allows organizations to monitor and log access to sensitive data (SecurData/Audit) and which provides a tokenization solution on HP NonStop (SecurData/Base and SecurData/24 for BASE24-classic users). Numerous proof of concepts, imminent go-lives and customers in production worldwide are impressed by the robustness and performance of the solution.

One of the main drivers for the growing demand is PCI but also customers realize in general that it's a good practice to properly protect their data at rest.

In case of PCI, PCI requirement 3.4 demands PANs to be "rendered unreadable anywhere it is stored" by encryption, tokenization or other suitable mechanisms. SecurData/24 provides a fully compliant solution for the protection of PANs in BASE24-classic, enabling processors to take complete control of their sensitive data, lowering compliance costs and significantly reducing the risk of data breaches all without any changes to the BASE24 application and no need for compensating controls to pass a PCI audit.

We put together a series of whiteboard sessions on this topic which will help you understand why you might want to start looking at options and then explains the solution comForte is offering.

 

In Part 1, we explain why you should care about tokenization of PAN data

In Part 2, we take a look at how you can get PCI 3.4 compliant using SecurData/24 from a high level.

And lastly, in Part 3, we'll show you how SecurData/24 works in detail.

 

Visit www.comforte.com/securdata24 to learn more.


Check CPU Status and Storage From a Browser or Mobile Device

NuWave's new LightWave demo shows how applications can use LightWave to obtain information from your NonStop servers. The Explorer demo is a web application that uses LightWave behind the scenes, allowing you to check NonStop CPU status and storage from your browser. You can try it for yourself at http://explorer.lightwave.mobi/. The Explorer mobile application (for Android) shows how you can incorporate LightWave's capabilities into a mobile app, and can be downloaded at http://explorer.lightwave.mobi/apk/NonStopExplorer-0.0.3.apk.


LightWave allows you to develop neat applications like Explorer and Explorer Mobile quickly and easily, so you can obtain information from your NonStop anywhere, from any device. The information that you can have access to goes way beyond CPU status and storage, giving you endless possibilities. Learn more about LightWave at http://www.nuwavetech.com/lightwave.


XYPRO's Steve Tcherchian Reports on BlackHat 2014

Part 1: Memory Scraping - That’s Gonna Leave a Mark

August 25 2014

Over 8,000 security professionals and enthusiasts gathered in Las Vegas this month for a very successful BlackHat 2014 US Conference. Deemed one of the top security conferences of the year, researchers, federal agencies, security firms, critical infrastructure, foreign governments and just plain old hackers met to discuss and demonstrate the threats we're all currently facing and the outlook of the cyber-security landscape.

You’re never more than a few steps away from a sign reminding you you’re at a security conference, and due to the “exploratory” nature of (some) of our fellow attendees, you're warned to keep your Wi-Fi & Bluetooth disabled and other communications devices off unless you really want to cause yourself some grief. Story after story about phones being wiped or hijacked could be heard walking down the hallways. Some people consider it fun, others are unsuspecting while others are simply gluttons for punishment. I wasn’t taking any chances, especially after seeing some of the demonstrations of what’s capable first hand. My devices were off. If you need to get a hold of me, grab a pen and a pad of paper!

Here a Breach, There a Breach... [click to read the rest of the report...]

 

Stay Connected with XYPRO

Facebook
Twitter
LinkedIn Group
BlogSpot
YouTube

Look at those Backups RUN!!!

Really!  With the Tape Drive Monitor (Q/TDM) from QSA Enterprises, LLC you can see all of the activity for all of the tape drives on a NonStop node in real-time.  Q/TDM displays all of the tape drives in a window on a windows PC and shows when the tape drive is free, when it’s in use and all of the details about the tape drive opener and any tape volume that is mounted.

Q/TDM also shows mount requests in real-time with a configurable color change to get your attention if the mount request is active for a set amount of time, which is also configurable.  Never let an unresolved mount request halt your backup runs again.

When there is a situation where you have to take action on a tape mount or tape drive configuration you can perform all TAPEMOUNT and TAPEDRIVE Mediacom commands from the Q/TDM window with the click of a mouse.  How convenient is that!?

For more information about Q/TDM and our other solutions, visit our web site at WWW.QSA.COM, email us at info@qsa.com or give us a call at 703-771-9447.


Where we are in The World...

Join XYPRO at these upcoming Events in 2014


VNUG Conference
September 9-10, 2014
Aronsborg, Balsta, Sweden
www.vnug.biz


 
 



 

PCI SSC North American
Community Meeting

September 10-11, 2014
Orlando, Florida
www.pcisecuritystandards.org

 
 
MATUG

September 25th, 2014
Renaissance Philadelphia Airport Hotel
Philadelphia, PA


 

The Payments Knowledge Forum (EBUG)

September 29-30, 2014
Central London, United Kingdom
www.thepkf.org
 
  CTUG
October 9-10, 2014
Toronto, Canada
www.ctug.ca


PCI SSC European

Community Meeting
October 8-9, 2014
Berlin, Germany
www.pcisecuritystandards.org


 

 
HP NonStop Technical
Bootcamp
November 16-19, 2014
San Jose, CA
www.hp.com



PCI SSC Asia Pacific

Community Meeting

November 18-19, 2014
Sydney, Australia
www.pcisecuritystandards.org


 

 
BITUG-BIG SIG
December 2nd, 2014
London, United Kingdom
www.bitug.com
 

 

Stay Connected with XYPRO

Facebook
Twitter
LinkedIn Group
BlogSpot
YouTube

PeruseWeb 2014: A new Product version is available from River Rock Software

PeruseWeb 2014 allows spoolfiles to be viewed using the most popular web browsers. A user's spoolfiles are displayed in a 'Job List' webpage. Choose the appropriate spoolfile and it will be downloaded displaying the entire contents in a 132 character wide scrollable window. The new features added in this release are:

1.      Supported web browsers; Internet Explorer, Firefox, Chrome, Safari, and Opera.

2.      Supported devices are desktops, laptops, tablets, and smartphones.

3.      Configure PeruseWeb 2014 to run under NonStop SSL.

4.      Spoolfiles can be downloaded to the Job List webpage or a new web browser tab.

5.      A server, client, or floating license can be purchased.

6.      A PDF help file has been added that can easily be modified per a customer’s requirements.

PeruseWeb 2014 is on sale through October 31, 2014. The web interface can be 'branded' to match a customer's website or to a customer's specification free of charge.

The only products required are TCP/IP and a web browser. All Guardian releases on S-Series, Itanium, and Blade platforms are supported. Installation is typically completed in 15 minutes.

 

Download a product brief or free demo at: http://www.RiverRockSoftware.com/PeruseWeb.html and click the 'Download Now’ button.  The demo expires September 30, 2014.

For more information contact: sales@RiverRockSoftware.com or call us at  +1 916 797-6746


XYPRO’s Top 10 List of NonStop Security Fundamentals #2

Continuously Monitor Security Compliance: 

Because high-availability and fault-tolerant systems need strong security

Alright, so let’s assume that you’ve followed the best practices described in items #3 to #10 of XYPRO’s Top 10 NonStop Security Fundamentals, as well as security recommendations from HP and other sources, and you’ve established strong security procedures for your HP NonStop system—how can you actually assess the strength of your security configuration and verify compliance with corporate policy, industry best practices and regulations, like PCI DSS or SOX? And equally important, how do you re-assess and maintain that strong security configuration over time as changes occur?

Those questions bring us to #2 on our Top 10 List:

#2: Continuously monitor security compliance

Defining a security policy and applying it to your system is essential to protecting your NonStop system and complying with government and commercial regulations. Of course, applying a security policy is not a one-time event. Managing system settings, access rules and security configurations is an on-going requirement that must account for new users, new objects, new rules or other system changes.

In a complex payments environment, for example, there may be thousands of security parameters that need to be measured, managed and reported to auditors—manually monitoring and measuring security compliance is not really feasible, it’s time consuming, a resource hog and prone to human error. XYPRO recommends a systematic approach using NonStop-specific compliance monitoring software. There are a few 3rd-party vendor compliance solutions for the NonStop, including XYGATE Compliance PRO (XSW).

Whichever solution you choose, it should enable you to easily research the security on your HP NonStop server, report the information found, build policies that monitor the state of the security rules in your environment and compare your existing security against supplied PCI, SOX, HIPAA and standard best practice policy recommendations. Furthermore, the solution should allow you to analyze configuration data for security, audit and system management information in the current snapshot, compared over time or compared against a set of absolute rules. Of course, this compliance information is important to auditors (both internal and external) so the solution should have the ability to automate investigations and report generation for security and system configuration information.

An effective compliance monitoring program should include, at least, the following aspects:

 
  • Monitor compliance with Corporate Security Policy and Standards.
  • Systematically review security settings vs. NonStop best practices.
  • Assess compliance with applicable government or industry regulations (e.g., PCI, SOX, HIPAA).
  • Monitor security configuration changes.
  • Enable security compliance alerting.
  • Conduct periodic integrity checking of operating system and application object files to ensure that only authorized and tested versions are in use.
  • Obtain file access maps for Safeguard, Guardian, and access management software , such as XYGATE Object Security (XOS) and XYGATE Access Control (XAC).
  • Report compliance with key regulations (like PCI DSS, SOX or HIPAA) and your own information security policy.
Continue Reading...

 

Stay Connected with XYPRO

Facebook
Twitter
LinkedIn Group
BlogSpot
YouTube

Denicratic Republic of Congo Partners With BankServaAfrica to Use Tango System

(Johannesburg) — The Democratic Republic of Congo (DRC) has partnered with BankservAfrica to become the first African client outside of South Africa to deploy the TANGO solution to implement an in-country national payment switch. BankservAfrica recently revealed a partnership with Lusis Payments to provide TANGO, a payment switching and processing software solution, in South Africa and across the African continent. BankservAfrica’s interoperable switching platform has been running on TANGO software since April 2012, and as a result BankservAfrica became a re-seller in early 2014. “Today South Africa has a trusted payments platform, with enhanced flexibility and responsiveness. This truly scalable and proven architecture can translate into lower costs for low-volume clients,” said Anton van der Merwe of BankservAfrica.  “Tango allows for individual scalability for clients large and small, while reducing costs.”

 

“The opportunity to expand Tango’s payments reach beyond South Africa, into other parts of Africa, is exciting,” said Philippe Preval, president of Lusis Payments. “Tango is a sophisticated payments system and will continue to serve BankservAfrica and the DRC’s needs.”

 

Read the complete press release HERE.

 

For more information about TANGO contact Brian Miller at brian.miller@lusispayments.com or visit http://www.lusispayments.com


Electronic Payment Systems Provider Depends on OmniPayments Preauthorization Services for Fraud Reduction

One of Latin America’s largest suppliers of electronic transactions now counts on Opsol Integrators’ OmniPayments solution for preauthorization services.  The EPS provider’s financial-transaction network runs on HP NonStop servers and routes credit- and debit-card transactions for authorization to the banks that issued the cards. Card transactions originate at ATMs or point-of-sale (POS) terminals and are captured by the acquiring banks that manage the ATM or POS-terminal networks. Based on various parameters such as available credit and usage history, the issuing banks authorize or deny transactions. These determinations are returned to the ATMs or POS terminals to complete or void the transactions. At day’s end, all completed transactions are sent to the acquiring and issuing banks for settlement and clearing. 

 

A specialized function offered by the EPS provider is preauthorization.  It is a popular service and allows banks to preauthorize transactions based on fraud parameters of their choosing. The preauthorization rules can apply to individual cardholders, groups of cardholders, individual retailers, groups of retailers, or any other classification of transaction sources such as individual cards.  Only if a transaction passes the rules is it forwarded to the issuing bank for approval.  Rule requests are collected during the day and are updated every night via a batch run.

 

The EPS provider’s preauthorization function was large and complex.  In addition, the provider wanted to add significant functionality that could not be supported easily by its financial-transaction switch.  It therefore decided to move the preauthorization function to an external preauthorization solution.  After researching options, the provider replaced its older, massive preauthorization system with Opsol’s newer, simpler, yet even more effective OmniPayments’ Preauthorization Engine. 

 

OmniPayments is a comprehensive architecture by which financial institutions acquire, authenticate, route, switch and authorize transactions across multiple input channels such as ATMs, POS terminals, kiosks, IVRs and the Internet. It supplies a full set of functionalities to support payment transactions. Based on a modern Service Oriented Architecture (SOA), OmniPayments consists of several service components, all built for the HP NonStop platform. 

 

One of those components is the OmniPayments Preauthorization Engine.  In the case of the Latin American EPS provider, OmniPayments seamlessly interfaces to the provider’s financial-transaction switch via an Opsol-created custom support module (CSM).  The switch routes all financial transactions to OmniPayments for preauthorization prior to submitting the transactions to the issuing banks for final approval. This amounts to almost 200 million transactions per month. 

 

With successful implementations at many customer sites, OmniPayments is just one member of the Opsol family of solutions for the financial industry. Opsol Integrators specializes in NonStop mission-critical applications and offers customers all the requisite functionality to manage credit/debit-card transactions. OmniPayments is easily expandable to provide additional functionality when needed.

 

OmniPayments supplies complete security functions for every financial transaction that it handles, including encryption-at-rest and encryption-in-flight. Available around the clock, OmniPayments will survive any single fault, requires no downtime for maintenance or upgrades, and supports a range of disaster-recovery solutions. For further information, visit www.omnipayments.com. Contact Yash Kapadia at +1 408-446-9274 or at yash@omnipayments.com.  Visit our booth at the upcoming NonStop Technical Boot Camp in San Jose, California, USA (16 – 19 November). 


Availability Digest Explains How the Internet Hit a Capacity Limit on August 12, 2014

Blame it on the Border Gateway Protocol (BGP). The BGP is the Internet highway. It routes data and other information across the Internet and makes it possible for ISPs to connect to each other. BGP became an Internet standard in 1989. It is the only protocol that was designed to map a network the size of the Internet. Changes to the network in one part of the world propagate globally within seconds.

Early BGP routers, many of which are still in use, were configured to handle a maximum capacity of 512 thousand routes. This long-known limit was rapidly approaching, and older routers that had not been upgraded by ISPs, corporations, and universities were in danger of crashing if the 512K limit was exceeded. Enter Verizon Communications. On August 12th, Verizon launched 15,000 new routes into the Internet, inadvertently exceeding the 512K limit and bringing the Internet to its knees. “The Internet Hits a Capacity Limit” describes what happened next and what can be done to avoid future crashes.

In addition to “The Internet Hits a Capacity Limit,” read the following articles in the Digest’s August issue:

OpenVMS Support to Continue Indefinitely – HP has reversed course on last year’s announcement to sunset OpenVMS on future HP server generations. VMS Software Inc. (VSI) recently completed a perpetual, exclusive licensing agreement with HP to port OpenVMS to new systems and to support OpenVMS indefinitely.

Is It Safe to Use the Cloud for Your Critical Applications? – Guest Author Paul Holenstein, Executive Vice President of Gravic, Inc., discusses the challenges faced by companies who for cost-savings purposes want to move their applications to public cloud providers, which struggle to achieve even three nines of availability. Paul offers a hybrid alternative that uses data replication to connect critical applications running on fault-¬tolerant, in-house servers to less critical, cloud-based applications.

Attunity Replicate – Attunity Replicate from Attunity Ltd. is a powerful data replication engine that synchronizes both homogeneous and heterogeneous databases. It supports active/active systems for continuous availability and integrates on-premise systems to cloud services. Attunity Replicate is multi-threaded to provide scalability, can meet any capacity requirement, and is redundant to avoid single points of failure in the replication channel.

@availabilitydig – The Twitter Feed of Outages - This article highlights some of the @availabilitydig tweets that made headlines in recent days. If you currently are not following @availabilitydig, consider making our Twitter presence a daily read.

The Availability Digest offers one-day and multi-day seminars on High Availability: Concepts and Practices. Seminars are given both onsite and online and are tailored to an organization’s specific needs. We also offer technical and marketing writing services as well as consulting services.

Published monthly, the Digest is free and lives at www.availabilitydigest.com. Please visit our Continuous Availability Forum on LinkedIn. We’re at 650 members and counting. Follow us on Twitter @availabilitydig. Digest Managing Editor Dr. Bill Highleyman will speak at MATUG on 25 September in Philadelphia, PA USA.


 

Find out more about us at www.tandemworld.net

 



www.tandemworld.net

+44 (0) 20 8304 7979


We would like to thank the sponsors of the Augist 2014 eNewsletter

Gold Sponsor

 

Silver Sponsor

 


To enquire about Sponsorship opportunities for the Tandemworld Newsletter please click here.

Current Subscribers 14992

Our company, Tandemworld, accepts no liability for the content of this email, or for the consequences of any actions taken on the basis of the information provided.
To Unsubscribe or Change your Subscription Please click here