Meeting Your Security Integration Objectives - CyberArk, ServiceNow, Splunk and more...
COVID-19 and its security ramifications continue in 2021. Threats brought to the fore when we were sent to work from home got added to the growing set of risks we were already trying to mitigate.
Even though we’ve been dealt these additional challenges for the past year, we cannot allow ourselves to be distracted from our primary objective - keeping our customers’ data safe.
XYPRO’s 2021 product roadmap includes updates to meet your enterprise data protection goals and cybersecurity objectives.
New features and functionality maximize your HPE NonStop investment via XYPRO's latest security advances in (PCI-DSS required) Multi-Factor Authentication (MFA), Compliance and Anomaly Detection, HPE NonStop integrations with Splunk, SailPoint, CyberArk, Servicenow and more.
Our 2021 product direction is simple. Continuing to provide innovative security solutions to address real world business challenges. We partner with our customers and HPE to ensure the functionality not only maximizes your HPE NonStop investment but addresses your security and integration needs.
Servicenow Integration for HPE NonStop Servers
Enforcing proper change management in an expanding IT ecosystem can be a daunting task. Inadequate change control leaves you exposed to cybersecurity risk and compliance issues. In many environments, Servicenow IT Service Management (ITSM) is the primary solution for IT change management. ServiceNow ensures that all activity has an approved change ticket for tracking and visibility. Integrating your mission critical systems and applications with ServiceNow is literally “critical”.
ServiceNow and XYPRO
The Servicenow add-on for XYGATE Access Control (XAC) integrates your HPE NonStop servers with Servicenow ITSM. READ MORE…….
Gravic Announces New Video on
HPE Shadowbase Compare and Repair Software for Data Validation
HPE Shadowbase Compare software validates and verifies that the source and target databases match. The comparison can be accomplished while the application is actively running, and in an online business continuity replication configuration. It can prove data consistency to key stakeholders and to help satisfy regulatory and audit compliance requirements. It is designed for comparing like-to-like datasets, such as HPE NonStop to HPE NonStop sources and targets (Enscribe-to-Enscribe or SQL-to-SQL), and works across TCP/IP or Expand connectivity.
The HPE Shadowbase Repair function can correct discrepancies found in the SQL/MP or SQL/MX tables, including fixing extra or missing data, or repairing data in both that does not match. The user defines either the source or target table as the correct value to ensure that the data in both tables match. Please enjoy our video!
Publishes New Article on Zero Downtime for
Application, Modernization, and Digital Transformation
Gravic recently published the article, Parts Distributor Utilizes Zero Downtime for Application, Modernization, and Digital Transformation in the March/April issue of The Connection. The current pandemic has opened the world's eyes to how quickly everyday life can be negatively affected. Contingency, backup, and disaster recovery planning has been brought back to the forefront of IT's concerns. This article examines how this concern inspired one company to improve its IT infrastructure, turning a challenging situation into an advantageous one.
The sales associates of a large multibillion-dollar company service a customer base primarily comprised of original equipment manufacturers and maintenance, repair, and operations companies representing virtually every industry. These associates depend on an HPE NonStop order-processing system to answer customer questions, help with product selection, monitor inventory, accept orders, and monitor order status. The distributor
successfully transformed and integrated its legacy application with other enterprise systems, while keeping its application available 24x7. Query functions were offloaded from the NonStop system onto a separate system that was optimized for reporting functions, by using HPE Shadowbase software to replicate the NonStop SQL/MP database to a SQL Server database.
This case study is just one example of how a company can take advantage of a harsh situation similar to the pandemic. The pandemic has shown how quickly things can go wrong, and brought contingency, backup, and disaster recovery planning to the forefront of IT's concerns. It has also shown that
HPE NonStop Servers are an exemplification of globalization, and continue to flourish as countries grow and international business increases.
Gravic Publishes New Article on Easily Modernizing and Exposing Valuable Enscribe Data by Eliminating Data Silos
Gravic recently published the article, Is Your Attunity NonStop Solution for Sharing Data at End-of-Service-Life (EOSL)? in the Spring issue of Connect Converge. Several customers recently approached us looking for solutions to their remote data access/connection requirements. HPE Shadowbase software data replication/integration architecture met their needs, and was successfully deployed. These companies had faced a dilemma: "What do we do if our solution has gone End-of-Service-Life (EOSL)?” Answer: A proven and preferably original solution that leverages data replication capabilities to eliminate past problems.
This article reviews two case studies and examines why HPE Shadowbase off-platform and on-platform replication architectures are popular and have significant advantages over alternative architectures, and which one is best for you. Think about where you have valuable and isolated data, and consider how you could use data replication to unlock this value for competitive advantage and to build new solutions for your business.
Hewlett Packard Enterprise globally sells and supports Shadowbase solutions under the name HPE Shadowbase. For more information, please contact your local HPE Shadowbase representative or visit our website. For additional information, please view our Shadowbase solution videos: https://vimeo.com/shadowbasesoftware.
Specifications subject to change without notice. Trademarks mentioned are the property of their respective owners. Copyright 2021.
BrightStrand International
NonStop(tm) Services
No smoke, no mirrors, no snake oil.
Just NonStop Services to suit you.
THE CONNECTION BETWEEN BUSINESS INNOVATION, DIGITAL TRANSFORMATION AND VENTURE INVESTING
What do “ Business Innovation “ , “ Digital Transformation “ and “ Venture Investing “ have in common ?
It turns out – lots !
For example, all are expected to meaningfully improve outcomes with –
1. Higher sales / bottom line
2. Expanded revenue streams
3. Being good at identifying, scaling and monetizing value creation
4. Providing opportunities and a rewarding environment for Associates
5. The ability to better manage the changing nature of risk
6. Above average financial returns for stakeholders
7. Have a “ Portfolio Strategy “ with high quality projects / initiatives
8. Better position the organization to benefit from change
9. Increase organization appeal to attract and retain top talent
10. Be a more agile, entrepreneurial and opportunistic organization
As well, the 3 disciplines have many of the same challenges – that if not addressed, frequently lead to failure.
For insights on this, see the associated articles at Innovation for Impact and www.cail.com/venture-investing and the following –
Newsletters
Missed a Newsletter? Catch Up Here
Find out about
Tandemworld
Hackers Exploit Microsoft Exchange Server
Zero-Day Vulnerability
Hafnium, a Chinese-backed, nation-state hacking group, has infiltrated hundreds of thousands of on-premise Microsoft Exchange Server instances worldwide. Microsoft identified the primary attacker as Hafnium and is urging organizations running the email server to install newly released security patches. The group has penetrated more than 30,000 organizations in the United States alone.
While most attacks have been against servers located in the United States, threat actors have been targeting the servers of governments, law firms, and private companies in other parts of the world.
There were three stages to the attacks. First, hackers would gain access to an Exchange Server, either with stolen passwords or by using the previously undiscovered vulnerabilities to disguise themselves as someone with access. Second, they would create a web-shell to control the compromised server remotely. Third, they would use that remote access to steal data from an organization’s network.
The impact of the Microsoft Exchange Server vulnerability could be massive, possibly thousands of servers compromised per hour globally. If the predicted number of victims is this high, the potential impact would be higher than the 18,0000 organizations compromised by December's SolarWinds. Hafnium has also increased its attacks on unpatched Exchange Servers since Microsoft announced the vulnerability.
It’s worth noting that the vulnerability does not apply to Office 365 Exchange Online, only to the on-premises versions of Microsoft’s email server platform. A CISA alert sent out on Saturday, March 6, 2021, warned that "Successful exploitation of these vulnerabilities allows an unauthenticated attacker to execute arbitrary code on vulnerable Exchange Servers, enabling the attacker to gain persistent system access, as well as access to files and mailboxes on the server and to credentials stored on that system."
Despite Microsoft issuing patches almost eight months ago, 61% of Exchange servers are still vulnerable. The vulnerability in question, identified as CVE-2020-0688, exists in the control panel of Microsoft Exchange's mail and calendaring server. The flaw, which stems from the server's failure to create unique keys during installation, was fixed as part of Microsoft's February 2021 Patch updates. Microsoft warned security administrators that unpatched servers were being exploited by unnamed threat actors earlier this month.
TIC Software Webinar: LightWave and API Strategy
Join us this April 14th from 2:00pm to 3:00pm EDT
to learn more about LightWave!
If you had attended our TIC User Forum last month, you would have enjoyed some very interesting NonStop User presentations, including the “API Strategy using LightWave” by our client US Foods. The speakers, Ajay and Kevin, did an excellent job in presenting their approach and experience in implementing enterprise interoperability utilizing RESTful API.
We have requests from a few users expressing interest to learn more about the LightWave product. So, we want to follow up with this webinar to do a deeper dive on the LightWave Server and Client to explore:
- What are the LightWave architecture and components?
- How does the LightWave achieve its high performance?
- How easy is it to develop applications using LightWave?
- How would you get started with REST and LightWave?
We will also explore the NuWave samples available on Github. We hope you will join us!
For more information please visit our website www.ticsoftware.com or contact us via email
Follow us on LinkedIn | Twitter | TIC Blogs
Ask TandemWorld
Got a question about NonStop ? ASK Tandemworld
Keep up with us on
Twitter @tandemworld
We are currently seeking skilled resources across the EMEA region,
contact us for More Info
www.tandemworld.net
Minimize security gaps with Multi-Factor Authentication
Modern authentication methods represent a more robust security structure, and also provide a better user experience when logging into applications. MFA also makes it easier for auditors to get answers to critical compliance questions; providing information such as which users are granted access to which system, and also how the access policy is being reliably enforced. Additionally, some of the modern MFA applications available today also include reporting capabilities, which ensure that compliance standards, such as PCI DSS, are being met.
CSP Authenticator+™ supports numerous authentication factors for NonStop. It provides a RESTful interface that supports multi-factor authenticated logins on NonStop systems. CSP Authenticator+ resides on the NonStop Platform and uses an OSS “bridge” to connect to the RESTful interface of the CSP Authenticator+ web server.
CSP Authenticator+ can provide authentication services via Safeguard Authentication SEEP, or Pathway and Non-Pathway servers. Almost any application, including TACL, can now easily support multi-factor authentication (MFA).
Authentication methods such as RADIUS, RSA Cloud, Active Directory, and Open LDAP are supported. Additional authentication methods include RSA SecurID, Email, Text Message, and Google Authenticator. You can now enable MFA logins for different applications, making them more secure!
CSP Authenticator+ Key Features:
· Support for various authentication methods
· Browser-based user-friendly interface
· Standardized authentication across platforms
· Configurable for all or selected users
· Support for virtual addressing
CSP - Compliance at your Fingertips™
For complimentary access to CSP-Wiki®, an extensive repository of NonStop security knowledge and best practices, please visit wiki.cspsecurity.com
We Built the Wiki for NonStop Security ®
The CSP Team+1(905) 568 –8900
Repair Corrupted Files in Seconds with TANDsoft’s FS Compare and Repair
All it took was a comment and a question from a potential TANDsoft customer. Comment: “I have a serious database issue.” Question: “Can your product FS Compare and Repair fix corrupted files?” The answer is “yes.” Regardless of the cause - bad disk file, mismatch in the internal File Control Block, inconsistent structure in a structured file - FS Compare and Repair incorporates block technology in general and Block Hash Compare specifically to repair corrupted files - no matter the size - in seconds.
FS Compare and Repair identifies, reports, and resolves rows, records, columns and field inconsistencies in both live and offline databases. Block Hash Compare technology is what makes this solution blazing fast. In addition, FS Compare and Repair efficiently performs multiple partition and index comparisons in parallel rather than sequentially. Between block-level comparisons, Block Hash Compare, and parallel processing capabilities, FS Compare and Repair is the fastest solution of its kind for use in the HPE NonStop environment.
Typically, a file that has been corrupted may take hours to rebuild and additional hours to synchronize. Even if only a part of the file has been corrupted, record mode requires a whole file rebuild, a record at a time. The corrupted elements cannot be repaired at the record level. You start from zero. In the meantime, applications that must access the file cannot proceed.
Block technology, on the other hand, is a key component of FS Compare and Repair as well as several other TANDsoft solutions. It compares source and target files via chunks of a file, or blocks. It is not cognizant of the need for sequential order or internal structure. Block technology compares source and target hash block signatures to determine if the corresponding blocks are equal.
If, for instance, there are 1,000 blocks, but only Blocks #5 and #537 are out-of-sync between the source and target databases, block technology is able to open a file that has been corrupted, identify the broken blocks, repair them, and resynchronize newly repaired blocks with the source database. Instead of whole file rebuild, you have block resynchronization. Using FS Compare and Repair, hours to fix a corrupted file are reduced to seconds. Fast.
In addition to FS Compare and Repair, two other TANDsoft products are based on block technology. They repair all file types, work with all HPE NonStop replication vendors, and require only seconds to repair a corrupted file, not hours.
FileSync automatically monitors, replicates and synchronizes application environments and non-database files (edit, objects, source, TACL, blobs, OSS, SQL/MP, SQL/MX) across HPE NonStop servers. It reduces the errors associated with maintaining duplicate system and application environments. Use FileSync for system migrations, upgrades, and backups. Its affordability and ease-of-use complement other NonStop third-party data replication products for a complete business continuity solution. For large, unaudited files, FileSync Data Deduplication transmits only changed data blocks, not entire files, to synchronize a backup database.
Backup times that formerly may take hours can be reduced to minutes with FS Backup and Restore. Rather than archive whole files to disk, tape or virtual tape, FS Backup detects file data-block modifications and archives only the changes. FS Restore then retrieves the saved file data-block modifications and will apply the changes to rebuild the original file. FS Backup and Restore complements the HPE NonStop Backup and Restore utilities as well as all third-party storage solutions.
TANDsoft is a global provider of innovative HPE NonStop software solutions for use in time virtualization, application modernization, security, and business continuity. Our intercept technology is used by many NonStop customers to enhance application functionality with no program modifications. Our products are easy to install, easy to use, and are certified on all HPE NonStop servers. Check us out at www.tandsoft.com. Then contact Jack Di Giacomo (+1 514-695-2234 / jack.digiacomo@tandsoft.com) or Dieter Orlowski (+1 303-263-4381 / dieter.orlowski@tandsoft.com.)
Who will be the last person to pay “Cash”?
How often do you find yourself sitting at home scouring the internet pages looking for products? How easy and comfortable is it to compare prices at home rather than traipsing around all the stores? How convenient is it to know that once ordered, you know when it’s going to arrive? I ask this question knowing that like a lot of people, e-commerce has become a habit, and one which is becoming entrenched.
As a comparison I wandered into a home improvement store the other day just to check if they had what I was looking for, and guess what, the shelves were a little bare, the products on the shelves were damaged, and the pricing not clear at all. It made me realise that some commerce is likely to die out and be replaced by e-commerce before very long.
This experience ties in very well with the meteoric rise of Stripe, the e-commerce payments company which has been in the press recently, and while still private carries an estimated valuation of some $95 billion. Now this may be the press preparing the company for a flotation, but given that it’s never turned a profit, it’s starting to feel a little "dot com" and reminds me of the 2001 boom and bust.
Here are OmniPayments we are seeing increasing levels of interest in exactly this flavour of payments. It’s no longer enough to be accepting only in-store payments, the volume of e-commerce payments is mushrooming almost quicker than we can count them. So it’s good that we can handle well over 10,000 transactions a second. It’s good that we can scale up beyond there and that the new NonStop NS8 x86 systems will process even higher volumes than that.
OmniPayments are embracing the world of e-commerce with our Internet Payment Gateway (IPG) being just one more channel being added to the broad portfolio of channels that we already support. Our Services Oriented Architecture (SOA), with XML & JSON formatted message support makes it relatively simple for us to extend the product out to these channels.
OmniPayments’ OmniCloudX service supports the immediate payment processing of transactions originating in e-commerce front-ends. It includes improved fraud-prevention, trapping fraud while minimising false positives and subsequent revenue losses. You can get started with OmniPayments from as little as $5,000 per month. OmniCloudX is quick, flexible, and efficient, without imposing heavy costs on your business model. Get a better return on your merchant payment processing with OmniCloudX. Help your business take off with OmniCloudX.
For up to date information, follow @omnipayments on Twitter, visit OmniPayments.com or email us at sales@OmniPayments.com
TOP BANKS AROUND THE WORLD HAVE CHOSEN LUSIS PAYMENTS
These organizations have demanded a modern, open architecture with superior availability, scalability and data integrity as they look to the future. They have sought Lusis Payments for a proven migration scheme that guarantees smooth operations with gradual on-boarding to an upgraded system.
TANGO is being utilized within every possible combination of mission critical and high- performance environments. Lusis Payments minimizes your conversion risk with our vast experience of legacy replacements. If it is time to modernize your payments processing ecosystem, let us show you the power of TANGO.
Contact us or click on the button to watch a brief 13 minute video on TANGO's business framework and differentiators.
https://www.lusispayments.com/tango.html#tangovideo
Brian
Miller
General Manager
Lusis Payments
www.lusispayments.com
NuWave Is Hiring!
Want to join a tight-knit company with a focus on innovation and modern technology? NuWave is currently hiring product development engineers with NonStop experience! Check out the latest job openings at
http://www.nuwavetech.com/about-nuwave/it-jobs.
Find out more about us at
www.tandemworld.net