ibm innovation series - what’s new in ibm sterling connect:direct for z/os 5.2?
Post on 11-Jun-2015
707 Views
Preview:
DESCRIPTION
TRANSCRIPT
© 2014 IBM Corporation
IBM Innovation Series What’s New in IBM Sterling Connect:Direct for z/OS 5.2?
Dirk Maney Product Line Manager IBM Software Group – B2B & Commerce / Aspera Tel: + 1 720 342-6341 Email: dmaney@us.ibm.com
© 2014 IBM Corporation
Disclaimer
§ IBM’s statements regarding its plans, direc5ons, and intent are subject to change or withdrawal without no5ce at IBM’s sole discre5on.
§ Informa5on regarding poten5al future products is intended to outline our general product direc5on and it should not be relied on in making a purchasing decision.
§ The informa5on men5oned regarding poten5al future products is not a commitment, promise, or legal obliga5on to deliver any material, code or func5onality. Informa5on about poten5al future products may not be incorporated into any contract. The development, release, and 5ming of any future features or func5onality described for our products remains at our sole discre5on.
§ Performance is based on measurements and projec5ons using standard IBM benchmarks in a controlled environment. The actual throughput or performance that any user will experience will vary depending upon many factors, including considera5ons such as the amount of mul5programming in the user's job stream, the I/O configura5on, the storage configura5on, and the workload processed. Therefore, no assurance can be given that an individual user will achieve results similar to those stated here.
2
© 2014 IBM Corporation
What’s been driving IBM MFT innova5on?
First we decentralized.
Then we centralized. Now we are doing
centralized decentralization!
My big data is getting bigger – more files, more
nodes, more users…
If I get one more audit request…
Every user wants their own access. You
3
© 2014 IBM Corporation
The IBM Managed File Transfer is posi5oned to support Your Innova*on
Integration services
Flexible cloud technologies and expert services host business communities
Integration gateways
Orchestration and automation for key partner processes
Transformation engines
Governance
Security Common perimeter services, proxy and authentication IBM Sterling Secure Proxy
Actionable visibility for business, operations and compliance IBM Sterling Control Center (on prem) and InFlight (cloud)
Single, universal engine for internal and external file and message transformation needs
Managed file transfer
Security-enhanced, reliable data transfers connecting systems, communities and people
• IBM Connect:Direct • IBM MQ MFT • IBM Connect:Express • IBM Sterling File Gateway • IBM File Transfer Service • Aspera Transfer Servers* • Aspera Faspex* • Aspera Sync*
• IBM B2B Collaboration Network
• IBM B2B Sterling Integration Services
• IBM B2B Integrator (with MEIG option)
• IBM WebSphere Transformation Extender
• IBM Standards Processing Engine
4
© 2014 IBM Corporation 5
Agenda
Explosive growth in data Increasing risk management requirements
What’s next
Q&A and Wrap-up
© 2014 IBM Corporation
…. Still massive amounts of data are not being compressed and need a different approach to compress more “active” data
Explosive growth in data Every day 2.5 quintillion bytes of data are created
6
Data needs to be shared cross platform
Managing and storing data can push expenses up for IT
Many types of compression are used today
§ Today’s modular business applications are deployed on heterogeneous platforms
§ Applications need to be able to efficiently share and process large files
§ Many compression applications consume CPU resources
§ Batch workloads and some data types can drive up compression requirements
§ Not being able to compress files can contribute to added disk expense
§ Many offerings for archive – creating data that will be infrequently accessed
§ Some is done to create smaller files allowing for faster network transfers
§ Industry standard compression offerings in market like zlib
§ IBM System z® offers hardware compression on all System z processor chips
© 2014 IBM Corporation
Release Themes for IBM Sterling Connect:Direct for z/OS 5.2
§ Strategic client ini5a5ves focused on Big Data, Analy*cs, and Governance, Risk & Compliance (GRC) are placing new demands on mainframe-‐based Managed File Transfer processes. Whether in Financial Services, Insurance, Telecommunica5ons, Manufacturing, or Retail, clients are responding to the explosive growth in digital content with expanding needs to transfer files to and from IBM System z mainframe servers and distributed plaVorms in a secure, reliable, and automated manner.
§ IBM Sterling Connect:Direct for z/OS 5.2 helps clients address these needs with new capabili*es to improve performance and security, including:
– New capability to leverage the IBM zEnterprise Data Compression (zEDC) specialty processor and off-‐load file compression (a CPU-‐intensive task) from the general purpose processors
– New high-‐speed file transfer interface with the IBM DS8000 line of storage solu5ons – offering improved file transfer rates and reduced TCP/IP network consump5on
– New security and encryp*on capabili*es to help clients meet various internal security and regulatory compliance ini5a5ves, including FIPS, NIST SP800-‐131a, and TLS 1.2/1.2
7
© 2014 IBM Corporation
IBM zEnterprise Data Compression (zEDC)
New data compression offering that can reduce resource usage
8 8
What is it? ü An combined software (z/OS V2.1) and
hardware (zEDC Express) solution designed to help reduce resource consumption, disk utilization and optimize cross platform exchange of data
How is it different
§ Performance: Efficient alternative for larger files § Efficient: Optimized algorithms scan text to
locate the re-use of phrases and refers back to earlier references
§ Compatible: Compatible with open zlib based compression – used today by Java™ and other applications including IBM Sterling Connect:Direct
§ Economical: Savings expected in CPU resources, disk storage
© 2014 IBM Corporation
Benefits of zEDC with IBM Sterling Connect:Direct
§ File compression performance improvements – Sterling Connect:Direct with zEDC Express Accelerator
• Reduced CPU consump5on • Improved file transfer throughput
– zlib 1.2.7 (included with zEDC) offers improvements over zlib 1.2.3 • Reduced CPU consump5on • Faster than previous version of zlib
§ Results of transferring a 1GB file with zEDC vs zlib sodware compression – Compression ra5o of 85.4% with zEDC vs. 74.4% with zlib – 13.111 seconds reduced to 5.600 seconds – 12.184 CPU seconds reduced to .718 CPU seconds
§ Mul5ple approaches to file compression now offer client flexibility – zlib sodware compression – zIIP specialty processor offload – zEDC Express Accelerator offload
9
© 2014 IBM Corporation
Data growth also creates cross-platform file transfer challenges Introducing IBM Sterling Connect:Direct for z/OS with zFBA
Customer Challenges Current technologies Sterling Connect:Direct with zFBA
• Customers require large (e.g., petabytes) mission-critical Operational Data Store environments.
• Data from z/OS needs be copied from the ODS frequently (peak data copy can exceed one Terabyte per hour) to large UNIX servers.
• A TCP/IP solution, based on a dedicated IP network, or storage-based data sharing solution, cannot handle the volumes, causing significant server load on the both System z and UNIX servers.
• Aggressive Service Level Objectives (SLOs) stipulate specific time windows for copying this data. Failure to meet these windows can adversely affect the total business process.
• Enterprises use their TCP/IP network to transmit bulk data between open systems server(s) and System z, which can create TCP/IP network gridlock.
• This gridlock can disturb necessary business processes needed to maintain and continue growth.
Problems this creates: • Elapsed time to move the data is
becoming a critical bottleneck • CPU Utilization can be high enough
to cause disruptions to other workloads.
A better approach: IBM Sterling Connect:Direct for z/OS and zFBA on IBM DS8000 storage solutions • Reduces the stress off TCP/IP network by moving data at the channel level • Reduce latency required to handle data volume • Reduce CPU utilization for file transfers, which could be as high as 30 percent, to 2-3 percent.
Benefits: • Fast ROI • Reduced file copy elapsed time • Offloading the file transfer processing from the host saves critical cycles • Reduced monitoring staff due to built in functionality.
10
© 2014 IBM Corporation
Offloading file transfer from TCP/IP network A sample communica.on flow with zFBA
1. C:D z/OS establishes the TCP/IP connection with its remote partner as its normal communication path.
2. C:D z/OS utilizes the channel connected DS8800 as its data path.
3. C:D z/OS utilizes an IOS API to allocate FBA devices on the DS8800
4. C:D z/OS writes/reads I/O buffer to these allocated devices.
5. C:D z/OS communicates via the IP connection to the remote C:D node that data is available on said device.
6. C:D UNIX processes the device as a SCSI device to read/write the data then write the output to the destination file.
TCP/IP Network
DS8800 FBA LUN FBA LUN FBA LUN FBA LUN FBA LUN FBA LUN FBA LUN 2000
2001 2002 2003 2004 2005 2006
25 26 27 28 29 2A 2B
Sterling Connect:Direct
for z/OS
1
1
2 3, 4
2
5
5
Destination File
6
Storage Area Network (SAN)
Sterling Connect:Direct for UNIX (AIX)
11
© 2014 IBM Corporation
CPU Improvement for AIX – z/OS File Transfers with zFBA
12
© 2014 IBM Corporation
Throughput Improvement for AIX – z/OS File Transfers with zFBA
13
© 2014 IBM Corporation 14
Agenda
Explosive growth in data Increasing risk management requirements
What’s next
Q&A and Wrap-up
© 2014 IBM Corporation
2014 Vanson Bourne B2B Priorities, Global Study for IBM.
The number of regulations continues to grow globally…
15
© 2014 IBM Corporation
* Thomson Reuters, “The Cost of Compliance”
Leading to the greatest compliance challenges in 2013
16
© 2014 IBM Corporation
Assess
Mi5gate
Monitor
Respond
Business objectives should identify the risks
IT controls and related best practices mitigate the risk
Processes & tools help you test & document controls are working
Priority issues are remediated and also result in process/control/tool improvements
* Corporate Compliance Insights: GRC Management: Best Practices Framework for More Effective Governance, Risk, and Compliance Management
GRC Frameworks provide prac5cal guidance for conceptual regulatory requirements
17
© 2014 IBM Corporation
Support growth without compromising security & control
Know who’s doing what and when
IBM Managed File Transfer can help the enterprise establish effec5ve controls for data exchange
Confidentiality Cryptography Availability
Protect and retain data
Integration Automation Deployment
Change Mgmt Continuity Centralization Emergency Procedures
Security
Control
Scale
Data & Transaction Integrity Standards Support Identity, Authentication, Access
Enterprise Architecture Performance Job Scheduling
Auditing & logging Exec communication Manage Service Levels Configuration Management
18
© 2014 IBM Corporation
Release Themes for IBM Sterling Connect:Direct for z/OS 5.2
§ Strategic client ini5a5ves focused on Big Data, Analy*cs, and Governance, Risk & Compliance (GRC) are placing new demands on mainframe-‐based Managed File Transfer processes. Whether in Financial Services, Insurance, Telecommunica5ons, Manufacturing, or Retail, clients are responding to the explosive growth in digital content with expanding needs to transfer files to and from IBM System z mainframe servers and distributed plaVorms in a secure, reliable, and automated manner.
§ IBM Sterling Connect:Direct for z/OS 5.2 helps clients address these needs with new capabili*es to improve performance and security, including:
– New capability to leverage the IBM zEnterprise Data Compression (zEDC) specialty processor and off-‐load file compression (a CPU-‐intensive task) from the general purpose processors
– New high-‐speed file transfer interface with the IBM DS8000 line of storage solu5ons – offering improved file transfer rates and reduced TCP/IP network consump5on
– New security and encryp*on capabili*es to help clients meet various internal security and regulatory compliance ini5a5ves, including FIPS, NIST SP800-‐131a, and TLS 1.2/1.2
19
© 2014 IBM Corporation
Helping clients meet Governance, Risk & Compliance mandates New Secure Plus features introduced on Connect:Direct for z/OS 5.2
§ Addi5on of TLSv1.1 and TLS1.2 Protocols – Requires z/OS V2R1 or PTF for V1R13
§ Expanded Cipher list based on Security Modes and Protocol
§ SP800-‐131a Security Modes – Enable in Transi5on Mode – Enable in Strict Mode
§ NSA Suite B Security Modes – Enable Suite B 128 bit mode – Enable Suite B 192 bit mode – Requires zOS V2R1
§ Improved user experience with SPAdmin tool
20
© 2014 IBM Corporation
Configuring Connect:Direct for z/OS for various compliance modes
21
© 2014 IBM Corporation
Governance and visibility for MFT & B2B Integra5on Ac.onable visibility for business, opera.ons and compliance
IBM Sterling Control Center (SCC)
Track & Trace
• Where is my file? • Where are my business processes? • Did I get notified about an issue?
Governance & Compliance
• Are servers configured according to policy? • Do activities match my expectations? • Can I identify and mitigate risks?
Reporting & Analysis
• What is the volume of transactions? • Who is my biggest trading partner or node? • Can I anticipate what’s going to happen tomorrow?
Integration & Automation
• Am I leveraging integration with other enterprise systems? • Have I automated where possible?
Managed File Transfer
Integration Gateways
Non-IBM solutions
Connect:Direct, Sterling File Gateway, Connect:Express,
MQ MFT
B2B Integrator FTP
22
© 2014 IBM Corporation
IBM Sterling Control Center (SCC)
Console
C:D Browser
Mobile (for iPhone)
Engine Database
B2Bi Browser
myFileGateway
Web Console Email Server
Enterprise Mgmt or
Other Systems
Cognos BI Server
Governance and visibility for MFT & B2B Integra5on Ac.onable visibility for business, opera.ons and compliance
Managed File Transfer
Integration Gateways
Non-IBM solutions
Connect:Direct, Sterling File Gateway, Connect:Express,
MQ MFT
B2B Integrator FTP
23
© 2014 IBM Corporation
Sterling Control Center provides governance and visibility for the B2B and MFT porVolios
Integration services
Flexible cloud technologies and expert services host business communities
Integration gateways
Orchestration and automation for key partner processes
Transformation engines
Security Common perimeter services, proxy and authentication IBM Sterling Secure Proxy
Single, universal engine for internal and external file and message transformation needs
Managed file transfer
Security-enhanced, reliable data transfers connecting systems, communities and people
System-centric MFT • IBM Connect:Direct • IBM MQ MFT • IBM Connect:Express Community Centric MFT • IBM Sterling File Gateway • IBM File Transfer Service Person Centric • IBM QuickFile
• IBM B2B Collaboration Network
• IBM B2B Sterling Integration Services
• IBM B2B Integrator • IBM WebSphere Transformation Extender
• IBM Standards Processing Engine
Governance Actionable visibility for business, operations and compliance IBM Sterling Control Center (on prem) and InFlight (cloud)
24
© 2014 IBM Corporation 25
IBM Sterling Control Center delivers greater insight for MFT & B2B IntegraEon SCC v5.4.2 eGA Nov 2013
Track & Trace
Governance & Compliance
Report & Analyze
Integrate & Automate
© 2014 IBM Corporation 26
IBM Sterling Control Center delivers greater insight for MFT & B2B IntegraEon SCC v5.4.2 eGA Nov 2013
Track & Trace
Governance & Compliance
Report & Analyze
Integrate & Automate
© 2014 IBM Corporation
Track & trace with key data, right on the main dashboard
27
• At-‐a-‐glance view of the environment
• See how many files and how many errors
Track & Trace
© 2014 IBM Corporation
More quickly answer the ques5on, “Where’s my file?”
28
Quick search to find a specific file among thousands
Track & Trace
© 2014 IBM Corporation
Drill into detailed data when you need it
29
Always have access to deep technical detail that helps with troubleshooEng
Track & Trace
© 2014 IBM Corporation 30
IBM Sterling Control Center delivers greater insight for MFT & B2B IntegraEon SCC v5.4.2 eGA Nov 2013
Track & Trace
Governance & Compliance
Report & Analyze
Integrate & Automate
© 2014 IBM Corporation
Support GRC ini5a5ves for Connect:Direct
31
• Ensure compliance to policy for all configs
• Reduce errors with syntax and valid value checking
• Save Eme with Search, compare, and copy
Governance & Compliance
* SCC Configured Managed Servers are an add-‐on that is licensed/priced separately from monitoring
© 2014 IBM Corporation
Retain an audit trail for all configura5on changes – a key requirement of many regula5ons
Governance & Compliance
InteracEve audit log or scheduled report
32
© 2014 IBM Corporation 33
IBM Sterling Control Center delivers greater insight for MFT & B2B IntegraEon SCC v5.4.2 eGA Nov 2013
Track & Trace
Governance & Compliance
Report & Analyze
Integrate & Automate
© 2014 IBM Corporation
Enhanced Repor5ng Powered by Cognos Business Intelligence
* No addi5onal license cost required for Cognos, but only for use with SCC. Needs addi5onal training to fully u5lize.
• Use SCC for canned reports • Launch Cognos for more control and features
• Run ad-‐hoc reports or schedule/email
Report & Analyze
34
© 2014 IBM Corporation 35
IBM Sterling Control Center delivers greater insight for MFT & B2B IntegraEon SCC v5.4.2 eGA Nov 2013
Track & Trace
Governance & Compliance
Report & Analyze
Integrate & Automate
© 2014 IBM Corporation
APIs enable integra5on and automa5on
36
• RESTful APIs that support the dashboard • alerts by severity, server/adapter status, file transfers by status
• Java APIs that support: • SCC configuraEon – users, roles, servers, server groups
• Connect:Direct Unix, Windows, z/OS configuraEon – netmaps, initparms, user auth, Secure+
Integrate & Automate
© 2014 IBM Corporation 37
top related