Every now and again, it’s good to know that there’s more to life than the serious business of running a company successfully. Sometimes, it’s a good idea to take a break and do something that’s fun. I’ve recently been playing with Version 6 of Crazy Talk from Reallusion, and it’s a great piece of software for having fun.
Very simply, what you do is take a picture of yourself, your dog, or even a famous painting (the list is really endless), and make it talk! The software moves the character’s head, blinks the eyes, and makes the mouth open and close as the image “talks”.
It’s also now possible to have two people (or pets or cartoon characters – you get the idea) in the picture and animate both of them so they appear to be having a conversation. And if you feel very adventurous you can animate up to four heads at any one time. And all the 2D images really do appear to be 3D.
The process is very straightforward. You select an image, and the software comes with some examples if you don’t have any pictures on your computer. You can crop and rotate the image to get what you want. You can also improve the colour levels etc at this stage.
Next it guesses where the eyes and mouth are (pretty accurately on a picture of a face), and you can move these numbered circles if you wish. Next you can tell it whether the face is looking to one side or forward, and the shape of the face – important with animals!
Then you pick out the eyes you want. You can have cartoon eyes, anime, animal, comic, or human. And human come with or without a variety of eye make-up. Once you apply the eyes, they look really strange, so the next stage is to make them fit the eyes in the original picture. It’s always a good idea to zoom in and get this right. You can also change other points around the head and hair, and the lips. And you can have more points to move if you need to – and I usually do).
Next you can choose your animation’s teeth. These include the whiter than white variety, through yellow, decayed, missing, to animal!
And finally you need the head movement. You choices are affirmative, angry, calm, dislike, etc, etc. And you can select a “head motion strength”. Clicking the preview button let’s you see the head move and the eyes blink. But there’s more.
Clicking on the script button gives you the option to add sound. You could type in a script and let one of the computer default voices say it. You could record yourself, or you could import an audio file – and, of course, it comes with some example files. Plus you have emotive faces you can add, and a puppeteering panel for fine control.
So, when you are happy that the Mona Lisa is now endorsing you or your company (or whatever) you can output the file. There are already tabs for the Web and YouTube and widgets, or you can output to a media file. There is the expected range of choices starting with AVI.
Because Crazy Talk 6 comes with so many templates, it’s easy to create something that’s fun, and it’s strangely rewarding to create something that is really very clever by spending a little more time and getting down to those nitty gritty details.
It’s a great way to relax and make your friends laugh at a simple creation, it’s also quite compelling – giving your boss exact fitting snake eyes, vampire teeth, and using the default laugh! There’s hours of fun with it. And there’s more than I’ve mentioned in this short review. You can find out more at www.reallusion.com/crazytalk/.
Sunday, 12 July 2009
Monday, 6 July 2009
Who can you trust?
Do you remember how in George Orwell’s 1984, O’Brien encourages Winston Smith, the central character, to practise “doublethink” – the ability to hold two contradictory ideas at the same time. It seems that the computing world is engaging in the same activity.
Now let’s be completely honest about this, you only need to get two IT “experts” in a room to have two opinions, and inviting in a third expert doesn’t settle the argument, it simply provides another opinion.
Anyway, where I’m going with this is that we either believe that mainframes are so clever at everything – like SOA, cloud computing, and finding the ultimate answer – that we don’t pay any attention to companies encouraging us to migrate our workloads off the mainframe and on to Windows servers, or we don’t. In which case we believe that Windows or Macs, or Linux machines in general are the way forward and mainframes are strange dinosaurs, mere relics of a bygone age. You can’t have it both way – unless you indulge in doublethink.
So what I am talking about? Well, The Computer & Communications Industry Association (CCIA) and a company called T3 Technologies may be bringing an antitrust action against IBM. It started life in Europe, but there is now a US lawsuit. They argue that IBM has unfairly sewn up the market for mainframes! You may think that good products and clever marketing meant IBM beat the BUNCH (Burroughs, UNIVAC, NCR, Control Data Corporation, and Honeywell) – for those of you who remember those far-off days.
And perhaps, as an ordinary punter who has to stump up the cash for my mainframe hardware and monthly licence fees, I might feel a distinct lack of competition. If it were a car, I could buy an alternative from a different manufacturer and perhaps save money. I’d certainly be able to drive it home from the garage. But if I don’t buy an IBM mainframe, then the alternative – products from Sun or Microsoft – leave you with a metaphorical car that you don’t know how to drive and runs on a completely different type of petrol!
You might think that the CCIA would comprise all those companies that used to sell mainframes and no longer do – the BUNCH perhaps, or companies that kept the faith and feel hard done by now that IBM rules the roost. But this is where the doublethink comes in. The very companies that eschew mainframes, that think of them as living relics – like coelacanths – are the leaders of the CCIA. We’re talking about Oracle and Microsoft, AMD and Google.
I’m an IBM Data Champion, so I tend to be on the side of the mainframe being an excellent solution for medium and large-sized organizations. I’m also a Microsoft Office Specialist Master Instructor, and I know that for many everyday activities people everywhere are using Word and Excel. But it seems like a huge amount of doublethink for Microsoft – the Windows everywhere people – to bring an antitrust suit against IBM for selling a technology to customers that they can’t satisfy.
Or does Microsoft want a slice of the mainframe market? Who can you trust?
Now let’s be completely honest about this, you only need to get two IT “experts” in a room to have two opinions, and inviting in a third expert doesn’t settle the argument, it simply provides another opinion.
Anyway, where I’m going with this is that we either believe that mainframes are so clever at everything – like SOA, cloud computing, and finding the ultimate answer – that we don’t pay any attention to companies encouraging us to migrate our workloads off the mainframe and on to Windows servers, or we don’t. In which case we believe that Windows or Macs, or Linux machines in general are the way forward and mainframes are strange dinosaurs, mere relics of a bygone age. You can’t have it both way – unless you indulge in doublethink.
So what I am talking about? Well, The Computer & Communications Industry Association (CCIA) and a company called T3 Technologies may be bringing an antitrust action against IBM. It started life in Europe, but there is now a US lawsuit. They argue that IBM has unfairly sewn up the market for mainframes! You may think that good products and clever marketing meant IBM beat the BUNCH (Burroughs, UNIVAC, NCR, Control Data Corporation, and Honeywell) – for those of you who remember those far-off days.
And perhaps, as an ordinary punter who has to stump up the cash for my mainframe hardware and monthly licence fees, I might feel a distinct lack of competition. If it were a car, I could buy an alternative from a different manufacturer and perhaps save money. I’d certainly be able to drive it home from the garage. But if I don’t buy an IBM mainframe, then the alternative – products from Sun or Microsoft – leave you with a metaphorical car that you don’t know how to drive and runs on a completely different type of petrol!
You might think that the CCIA would comprise all those companies that used to sell mainframes and no longer do – the BUNCH perhaps, or companies that kept the faith and feel hard done by now that IBM rules the roost. But this is where the doublethink comes in. The very companies that eschew mainframes, that think of them as living relics – like coelacanths – are the leaders of the CCIA. We’re talking about Oracle and Microsoft, AMD and Google.
I’m an IBM Data Champion, so I tend to be on the side of the mainframe being an excellent solution for medium and large-sized organizations. I’m also a Microsoft Office Specialist Master Instructor, and I know that for many everyday activities people everywhere are using Word and Excel. But it seems like a huge amount of doublethink for Microsoft – the Windows everywhere people – to bring an antitrust suit against IBM for selling a technology to customers that they can’t satisfy.
Or does Microsoft want a slice of the mainframe market? Who can you trust?
Sunday, 28 June 2009
Mainframe specialty engines
I know I’ve spoken about specialty engines before (about a year ago, in fact), but at the Virtual IMS Connection (www.virtualims.com) user group we were lucky to have an excellent presentation by Tom Harper, an IMS product author from NEON Enterprise Software. Tom has been in software development for 48 years and in that time helped start BMC Software, and is currently the Director of IT on the SHARE Board of Directors.
Tom started by looking at z/OS platform evolution and the big leap forward in around 1995 with the introduction of smaller CMOS processors. This heralded an era of large numbers of processors, large memory, a steeply dropping price/performance curve, and escalating software costs. This in turn led to a big change in software licence charges. Early software was often free, with vendors slow to realize its value. However, prices began to escalate out of control and customers tended to be locked in. IBM looked for a way to help, but they got caught up in software licence issues themselves.
One consequence in terms of hardware was the introduction of specialty processors. The first specialty processors were the Integrated Coupling Facility (ICF) and the Integrated Facility for Linux (IFL). The more recent specialty processors are the Integrated Information Processor (zIIP) and the Application Assist Processor (zAAP).
Tom suggested that IBM’s goal was to preserve existing hardware and software licence revenues, and to be competitive in “new” workloads. In order to achieve this, IBM’s plan was to create the concept of specialty processors, and (perhaps not surprisingly) do a great deal of marketing.
Tom went on to look at the construction of the processors in a CEC. He then told us that specialty processors are masked off from I/O interrupts and they are also masked off from timer interrupts.
Interestingly, IBM provided software vendors with a zIIP API in order to develop software to utilize the specialty engine. The API requires work to run in enclave SRB mode. However, SRB mode does not allow any SVCs to be issued except ABEND – which isn’t particularly useful. The only access methods allowed are VSAM, Media Manager, and STARTIO.
Other services are not available in SRB mode, such as ENQ. Therefore, code services need to be broken out from logic, and services need to be able to run in TCB or SRB mode. For example, ENQs can be replaced with latches. This means that QNAMEs and RNAMEs must be converted or interpreted to a latch number. It also means that they must release latches when percolating (write own RESMGR).
NEON Enterprise software, CA, DataDirect, SyncSort, and many other vendors now exploit support for zIIP processors. NEON’s Eclipse IMS utilities allow off-loading of up to 98% to zIIP.
If you’re interested, a copy of Tom’s presentation is available for download from the Virtual IMS Connection Web site at www.virtualims.com/presentations/specialtyproc.pdf.
And this presentation ties in nicely with an announcement back in May from DataDirect Technologies (part of Progress Software). They announced the results of internal benchmark testing performed at the company’s mainframe development lab. These test results found examples where greater than 99 percent of mainframe Web services-related processing could be diverted to a zIIP specialty engine using DataDirect’s Shadow software.
Shadow Version 7 is a single, unified platform built exclusively for integration with System z mainframes. It expands the utilization of the zIIP specialty engine to more workloads than just DB2, including the non-relational mainframe databases Adabas, IMS/DB, IDMS, and VSAM, as well SOAP/XML parsing necessary for creating Web services within the mainframe to applications residing within CICS, IMS/TM, IDMS, and Natural. Shadow provides a way for the processing associated with SOA integration and data queries to be diverted from the mainframe’s General Purpose Processor (GPP) to the zIIP specialty engine – which does the work without using any of the mainframe licensed MIPS capacity.
Exploitation of the zIIP processor enables organizations to cost-effectively integrate the mainframe into an SOA by conserving GPP MIPS usage, slowing the rate of MIPS consumption and deferring costly mainframe capacity upgrades – the company claims. And I’m sure that’s the real point – that the specialty engine doesn’t save too much by itself, it’s the fact that a hugely-expensive mainframe upgrade can be postponed that makes it such a strategic purchase for organizations.
The complete mainframe TCO benchmark test results are included in the whitepaper “Lowering Mainframe TCO Through zIIP Specialty Engine Exploitation” at www.datadirect.com/downloads/main-registration-form/mainregform/index.ssp?atc=DDT_Shadow_Whitepaper_zIIPBenchmarks.
On top of that, a survey conducted for CA by TheInfoPro found that 93% of respondents projected that their use of the IFL (Integrated Facility for Linux) specialty processor would increase or at least remain steady over the course of the next two years. 42% projected that their use of the IFL would grow between 21% and 40%, and 10% projected that it would grow more than 76%.
The two main reasons cited by respondents for this increased use of Linux on the mainframe were the desire to take advantage of computing capacity available on their mainframe’s central processors and/or IFLs, and their assessment that using Linux on the mainframe would be more cost-effective than other platforms.
Complete survey results from the study are available at ca.com/mainframe/linuxresearch.
Sunday, 21 June 2009
Seek, and ye shall find (Luke 11:9)
Don’t worry, you are at your friendly neighbourhood mainframe blog and have not been rerouted to a Christian fundamentalist site by mistake!! I’m just using the quote from Luke as a way of introducing a blog about search engines – following the recent introduction of Bing by Microsoft. I suppose I could have gone down the Bing (Crosby) and Bob (Hope) Road to Search Engines kind of introduction and worked my way to Dorothy (Lamour) jokes later on.
As an aside, and for budding film buffs everywhere, the films in the Road to series are Road to Singapore (1940), Road to Zanzibar (1941), Road to Morocco (1942), Road to Utopia (1946), Road to Rio (1947), Road to Bali (1952), and The Road to Hong Kong (1962) – the one with Joan Collins.
So, definitions first, a search engine is a way of guiding a user to the information they want on various Web pages across the Internet. Now, while that may seem fairly straightforward, we’ve all searched and looked at the answers and said to ourselves that that isn’t what we meant. And that’s the hardest part of the job of any search engine – knowing what a user actually meant when they entered a couple of words. It’s so easy to enter a word that can have many meanings – a place, a person, a school of thought, a song, or whatever. This is the kind of ambiguity that search engines are trying to overcome.
One solution to this problem is for every object to be allocated a key. Every Web page that refers to the object would include the key. This solves the first part of the problem, as far as the search engine is concerned it will know exactly what is referred to on that page. The search engine will know that it refers to the song, or to the person, or to the place, or whatever.
The idea sounds simple enough, but – and you just knew there was going to be a "but" – who is going to decide what key is going to be used by each object? Assuming the idea were to be accepted, then Search Engine Optimization (SEO) organizations would be getting plenty of work to update all the sites that they are responsible for. Which then leads to a new problem, which is how ordinary users would find good information and sites that weren’t updated to include the new keys.
Anyway, let’s take a look at the search engines that are out there.
Let’s start with Google, because most people are familiar with it. Google. Googles uses bots to crawl the Web and includes adverts around the ordinary results. It allows users to search images or news, and it has the quirky – I think that’s the right word – Wonderwheel (Click on “Show options" and it’s near the bottom of the list).
Wolfram Alpha doesn’t claim to be a search engine, but I included it here because it provides answers to questions. So, you don’t get 75 000 pages (or whatever) to look at to see the answer to you question, it tells you! Created by British scientist Stephen Wolfram, the new search engine allows users to ask questions using natural language and the search engine uses “knowledge models” to access the answer. I’ll leave you to judge how useful it is.
Microsoft’s Bing is the new version of Live.com. The one thing that makes it very useful is that at the end of each result there’s a thin vertical line. As you mouseover, it shows a more in-depth preview of the content on the results page.
Let me say that other search engines are available – Yahoo, Ask Jeeves, etc etc.
The great thing about having different search engines available, and Google is quoted as having a monopolizing 80% share of searches, is that as one improves and tries to get an edge in terms of market share, the others have to improve in similar ways so as not to loose their share. Which has got to be good for those of us carrying out a search.
Sunday, 14 June 2009
The mainframe - an exciting place to be!
Now I've always been a big mainframe fan (after all, I am an IBM Data Champion!), but just recently there have been so many exciting new announcements that it would be hard even for a Microsoftie not to be a little bit curious what’s going on. In truth, the mainframe world is abuzz with excitement and interest – and it is definitely looking forwards and not backwards.
For example, at the beginning of the month (4th June) IBM announced new System z software to enable companies to reduce IT costs while increasing business flexibility and improving service.
Putting flesh on the bones of this announcement, we find that IBM has announced 12 of the proposed 30 new software technology enhancements for this year for System z.
For application architecture, development, and delivery, the enhancements include: IBM Rational System Architect Version 11.3 and Rational Focal Point for Product and Portfolio Management Version 6.4 to enable better decision-making and impact analysis; IBM Rational Developer for System z Version 7.6, which helps improve developer productivity; and IBM Rational Team Concert for System z Version 2.0 (based on the IBM Jazz technology platform), which enables collaborative development among distributed and mainframe development teams building Java, C/C++, COBOL, PL/I, and EGL applications.
Looking at business intelligence and new database technology, IBM has recently announced or plans to announce the following: InfoSphere Warehouse for System z, which adds core data warehousing and analytics capability to DB2 for z/OS; Cognos 8 BI for Linux on System z Version 8.4, which provides a single view across virtually any data source; a new version of DB2 for z/OS, which will improve performance and lower administration and maintenance requirements; as well as IMS 11, which provides Open Database support.
IBM's recent transaction management announcements include: CICS Transaction Server Version 4.1, which delivers new features to help organizations respond to the demands of increased regulatory scrutiny; and WebSphere Business Events Version 6.2.1 for z/OS, which helps businesses detect, evaluate, and respond to the impact of business events.
Service Management solutions include: Tivoli OMEGAMON, which through multiple releases provides integrated monitoring throughout the enterprise; Tivoli Security Management for z/OS to help simplify security administration and user management; Tivoli Key Lifecycle Management for z/OS, delivering platform independent security for corporate information; and Tivoli Workload Scheduler Version 8.5, which provides new, more intelligent scheduling.
These come on top of CA's recent slew of mainframe-enhancing announcements, some of which I have talked about in previous blogs.
It all makes the future of the mainframe much more interesting.
Sunday, 7 June 2009
The ultimate iPhone app – a mainframe!!
Now I don’t have an iPhone (yet), but as soon as my current contract runs out, I’m going to get one. And I’m waiting expectantly for the latest iPhone OS 3 announcements – which should be known by the time you read this. But what makes iPhones so great – apart from the fact you can make phone calls – is that they come with a zillion tiny little applets that let you do things you didn’t know you wanted to do. And now one of those applets lets you control a mainframe!
Now before you get too excited, let me say straight away that I’m not talking about an IBM mainframe. Sadly. It was Unisys that made the announcement. But if you can use it with Unisys, it seems only a small step to include z/OS, doesn’t it?
Unisys’s announcement says that it has expanded its line of ClearPath mainframe servers to include connectivity for Apple iPhone and iPod Touch devices.
One of the new offerings included in the update is the ClearPath ePortal Specialty Engine, which enables remote workers using Apple’s iPhone or iPod Touch devices to communicate with other ClearPath applications.
The devices can be integrated in a number of ways, including a plug-and-play capability that generates the iPhone or iPod Touch application interface; capabilities to customize Web-based ClearPath applications with an iPhone or iPod Touch look-and-feel; and integration of native iPhone applications with ClearPath services.
Now I haven’t touched one of their computers since the company was called Univac and the operating system was 1100, but I think that’s quite an exciting announcement. All mainframes, in popular opinion, are sort of dull-but-worthy products that are only operable by geriatric programmers who have devoted 40 years to understanding their arcane intricacies. Suddenly, they become accessible by the most exciting technology on the planet – a phone with so many gizmos that anyone over 14 is struggling to understand all of them.
It seems that, were IBM to embrace this technology, they would solve so many problems in one go. Firstly, the problem of an ageing workforce would be replaced by an almost too youthful workforce. Secondly, mainframes would become something that youngsters would talk about and therefore this would directly lead to more sales – because it wouldn’t just be for men (and women, of course) in suits, it would be for everyone.
So more sales and a youthful workforce, it would be almost like the 1960s again at IBM.
Plus – and this section is for conspiracy theorists only – it would allow IBM and Apple to get together and destroy all PCs and Microsoft. Well, maybe not!
The iPhone interface is so easy to use that making it a way to control a mainframe has got to be a winning idea. Well done Unysis.
But what next I hear you say, an iPhone app to fly an aeroplane or control a nuclear power station? Remember you read the idea here first!!
Now before you get too excited, let me say straight away that I’m not talking about an IBM mainframe. Sadly. It was Unisys that made the announcement. But if you can use it with Unisys, it seems only a small step to include z/OS, doesn’t it?
Unisys’s announcement says that it has expanded its line of ClearPath mainframe servers to include connectivity for Apple iPhone and iPod Touch devices.
One of the new offerings included in the update is the ClearPath ePortal Specialty Engine, which enables remote workers using Apple’s iPhone or iPod Touch devices to communicate with other ClearPath applications.
The devices can be integrated in a number of ways, including a plug-and-play capability that generates the iPhone or iPod Touch application interface; capabilities to customize Web-based ClearPath applications with an iPhone or iPod Touch look-and-feel; and integration of native iPhone applications with ClearPath services.
Now I haven’t touched one of their computers since the company was called Univac and the operating system was 1100, but I think that’s quite an exciting announcement. All mainframes, in popular opinion, are sort of dull-but-worthy products that are only operable by geriatric programmers who have devoted 40 years to understanding their arcane intricacies. Suddenly, they become accessible by the most exciting technology on the planet – a phone with so many gizmos that anyone over 14 is struggling to understand all of them.
It seems that, were IBM to embrace this technology, they would solve so many problems in one go. Firstly, the problem of an ageing workforce would be replaced by an almost too youthful workforce. Secondly, mainframes would become something that youngsters would talk about and therefore this would directly lead to more sales – because it wouldn’t just be for men (and women, of course) in suits, it would be for everyone.
So more sales and a youthful workforce, it would be almost like the 1960s again at IBM.
Plus – and this section is for conspiracy theorists only – it would allow IBM and Apple to get together and destroy all PCs and Microsoft. Well, maybe not!
The iPhone interface is so easy to use that making it a way to control a mainframe has got to be a winning idea. Well done Unysis.
But what next I hear you say, an iPhone app to fly an aeroplane or control a nuclear power station? Remember you read the idea here first!!
Sunday, 31 May 2009
CA – hottest ticket in town
I must confess, to my shame, that some 20 odd years ago during a presentation, I made a joke about a company called Computer Associates in the certain knowledge that the audience would all appreciate it and join in the fun. And they did. Afterwards, a sales rep from the company explained, in no uncertain terms, why he felt upset at my comments. And after our conversation concluded, two or three members of the audience came up to me and said how they were absolutely sure my comments were completely fair, and he must have had a sense-of-humour bypass.
But that all seems like a different age. I certainly wouldn’t make jokes about CA now, and if I did, I certainly wouldn’t have any confidence that the audience would laugh along with me. Why? Because CA is now one of the most exciting and innovative companies in the mainframe arena. It may still be hard to e-mail any of their staff because of the settings on their spam filters, but they are definitely moving the mainframe forward.
Their latest announcement is called CA Compliance Manager for z/OS, which it claims is the first platform-resident solution to provide real-time automated policy management of security and compliance events across the IBM z/OS environment and mainframe security subsystems – including CA ACF2, CA Top Secret, and IBM RACF.
In their press release, they rightly say that until now, IT organizations have primarily verified compliance with operational policies by manually checking historical data against their current security implementation – a time-consuming and costly approach that exposes IT organizations to increasing risk as regulatory pressures continue to escalate.
They go on to say that CA Compliance Manager for z/OS addresses this problem through automated monitoring, real-time alerting, and historical reporting. Its automated intelligence is especially important as mainframe environments are made increasingly complex by growing workloads – and as mainframe management tasks are passed on to a new generation of IT professionals with less experience on the z/OS platform.
Getting down to the details, they tell us that CA Compliance Manager detects and records changes that impact security policy – including modifications to CA ACF2, CA Top Secret, and IBM RACF configurations, operating system security configurations, and selected PDS/PDSE datasets. These changes are automatically validated against customer-defined security policies, so that IT organizations can readily discover and act on even the most subtle policy violations.
In addition, the entire audit trail generated by CA Compliance Manager for z/OS is retained on the mainframe, enabling mainframe staff to retain control of compliance data and to enhance the scalability of their compliance database.
At the same time, CA announced new versions of CA ACF2 and CA Top Secret, which work with CA Compliance Manager to provide a single view of compliance for the mainframe. Enhancements in r14 of both products include exploitation of z/OS 1.10 features, role-based administrative grouping, data classification, resource ownership, and enhanced digital certificate management services using the Distributed Security Integration (DSI) Server.
CA ACF2 and CA Top Secret also are designed to enable organizations to run compliance reporting without impacting the performance of their security environments by transferring security file contents to a mainframe relational database, which can then run both out-of-the-box and ad hoc compliance reports.
It just seems that CA are moving mainframe software forward at the moment rather than simply enhancing existing programs. I look forward to seeing what they do next – and no more jokes.
But that all seems like a different age. I certainly wouldn’t make jokes about CA now, and if I did, I certainly wouldn’t have any confidence that the audience would laugh along with me. Why? Because CA is now one of the most exciting and innovative companies in the mainframe arena. It may still be hard to e-mail any of their staff because of the settings on their spam filters, but they are definitely moving the mainframe forward.
Their latest announcement is called CA Compliance Manager for z/OS, which it claims is the first platform-resident solution to provide real-time automated policy management of security and compliance events across the IBM z/OS environment and mainframe security subsystems – including CA ACF2, CA Top Secret, and IBM RACF.
In their press release, they rightly say that until now, IT organizations have primarily verified compliance with operational policies by manually checking historical data against their current security implementation – a time-consuming and costly approach that exposes IT organizations to increasing risk as regulatory pressures continue to escalate.
They go on to say that CA Compliance Manager for z/OS addresses this problem through automated monitoring, real-time alerting, and historical reporting. Its automated intelligence is especially important as mainframe environments are made increasingly complex by growing workloads – and as mainframe management tasks are passed on to a new generation of IT professionals with less experience on the z/OS platform.
Getting down to the details, they tell us that CA Compliance Manager detects and records changes that impact security policy – including modifications to CA ACF2, CA Top Secret, and IBM RACF configurations, operating system security configurations, and selected PDS/PDSE datasets. These changes are automatically validated against customer-defined security policies, so that IT organizations can readily discover and act on even the most subtle policy violations.
In addition, the entire audit trail generated by CA Compliance Manager for z/OS is retained on the mainframe, enabling mainframe staff to retain control of compliance data and to enhance the scalability of their compliance database.
At the same time, CA announced new versions of CA ACF2 and CA Top Secret, which work with CA Compliance Manager to provide a single view of compliance for the mainframe. Enhancements in r14 of both products include exploitation of z/OS 1.10 features, role-based administrative grouping, data classification, resource ownership, and enhanced digital certificate management services using the Distributed Security Integration (DSI) Server.
CA ACF2 and CA Top Secret also are designed to enable organizations to run compliance reporting without impacting the performance of their security environments by transferring security file contents to a mainframe relational database, which can then run both out-of-the-box and ad hoc compliance reports.
It just seems that CA are moving mainframe software forward at the moment rather than simply enhancing existing programs. I look forward to seeing what they do next – and no more jokes.
Subscribe to:
Posts (Atom)
