May 13th, 2008
Combined HP-EDS can explore missing methodology around how to offload IT to the cloud(s)
HP’s now official pending EDS buy for just shy of $14 billion positions the combined companies to organize and manage the hosted/on-premises mix to maximum efficiency and lowest TCO. It’s a great goal to shoot for because all they have to do is beat IBM.
With this merger, the IT/business transformation second-source in the global market is a alive and well. There’s always this: The better IBM does, the more need there is for an alternative.
HP with EDS has now clearly staked its future on the top prize in IT: next-generation IT operations efficiency, proper outsourcing methods, cloud computing services management, and high-level consulting as the onramp. This amounts to business transformation via IT transformation via IT multi-sourcing.
Both business and IT need to change, but with a hugely complex migration process in store over the next decade. The end goal is a symbiotic and ultimately fully aligned means to business agility, innovation and holistic change management. [Disclosure: HP is a sponsor of my BriefingsDirect podcasts.]
But there’s a missing methodology in this migration process, sort like the “missing link” of how IT and business will evolve from lumbering and reactive gatherers into sharp-stick wielding, proactive hunters and inventors. That missing methodology is a tried and true way to determine — enterprise by enterprise, unit by unit, department by department — what elements of IT to offload to clouds and what to embed deeply into the core business as strategic assets. This is the bread and butter of HP and IBM for quite some time.
Most companies and IT strategists now recognize that some portion of what they now do for themselves in IT they ought to offload onto someone else — or at least provide it as a service via some hybrid underlying support means. The cost efficiencies, utilization rates, flexibility, marketplace-driven productivity aspects of cloud computing are simply too wonderful to ignore. We simply should not have standalone email servers every 60 square yards inside of companies. It’s foolish. Same with a lot of other applications. SOA can help use and extend those assets better, but we also need to take a look at offloading them all too.
At the same time that we recognize a milestone shift in how software and services are used and matured inside of businesses, the macro environment is driving the impetus for the same transformation. Perhaps more than ever, businesses need to not only to be efficient and seek to reduce recurring costs — they need to be able to adapt as quickly as possible, and never stop.
The missing link methodology needs to enable companies to adjust to globalization, raw resources/commodities scarcity, dreadful energy costs, transnational labor use patterns, Internet time, social networks, transaction-driven business models, and massive upheavals in e-commerce, media, transportation, compliance, and the usual vagaries of competing against tough competitors springing up from who knows where next.
Companies clearly need to innovate better, and that innovation must use and leverage technology far better than in the past, and at lower total cost over time. Yet IT departments are not designed (if they ever were designed) to innovate at speed or scale. They are designed to carefully support the crystal and china setting upon the legions of racks, and to prevent any bulls from entering the closet — lest the whole thing crash, and no fingers to point at the cure. There is a huge disconnect between what IT does and what businesses need to do. It’s not IT’s fault, it’s just the way it’s all developed over time … but it’s largely a dead-end.
As a result, total business innovation must seek alternatives to just transforming internal IT capabilities and practices alone. Fortunately they seek these alternatives at just the time when those alternatives are increasingly available and viable. Choice on IT and business services off of the wire is entering a fertile and impressive stage. There will be lots to choose from. Choosing right is a big deal for the next decade.
But how to move best on this momentous opportunity? This is the question that HP-EDS can answer as the driver to their businesses growth. Only through deep, consultative partnership can huge enterprises undertake internal IT transformation while making the essential decisions about what to keep inside, and what to seek as the best services alternatives. At the same time, they need to build and adjust continually the business processes that are supported by these services from many sources. And they must position their abilities with multi-source IT with their current and future business requirements and goals.
HP’s services units have been diligent about establishing meta methods that allow for both efficiency improvements, and transformation. HP’s software and hardware units have been diligent about business technology optimization (BTO) and high-efficiency/high-availability computing. HP’s acquisitions have given it an arsenal through which to operate data centers at peak efficiency and top operational integrity.
Adding EDS to the mix to tackle the definition of and implementation of the missing methodologies to take IT functionally to a multi-source level that actually enables businesses at the strategic level seems a very strong fit indeed.
May 12th, 2008
SOA Software acquires respository and governance vendor LogicLibrary
SOA Software, a provider of governance solutions for services-oriented architecture (SOA), has acquired LogicLibrary, a leading SOA repository and governance vendor.
The acquisition of the Pittsburgh, Pa.-based LogicLibrary by Los Angeles-based SOA Software creates a more comprehensive SOA governance and automation solution, said the companies. The goal is to allow companies to accelerate their full adoption of SOA and rapidly deliver services for distributed and mainframe environments.
The merger underscores not only the SOA vendor consolidation trend (ongoing), but also highlights the market driver of more end-to-end governance and management aspects of SOA deployments. HP and TIBCO also had recent announcements that point up a wide and more automated approach to SOA governance/management.
We’re increasingly seeing the means to relate the design time aspects of SOA with the runtime, or operational, aspects. This will no doubt be a big topic at the upcoming IBM Rational Developers Conference.
What’s more, I expect to see more of this “total management” approach to SOA coming from the open source SOA infrastructure providers, too. The juxtaposition of SOA and cloud computing and wider use of server virtualization will also drive the need for better total management.
LogicLibrary’s technology will extend its integration capabilities across both governed development platforms and governed service platforms. LogicLibrary provides a set of features with reporting and analytics capability focused on SOA development governance. Its products include an enterprise repository providing broad support and governance for development assets/services, along with deep integration and federation with IDEs and application-development point solutions.
The prevalence of services, both internal and external, in enterprise applications now requires companies to have an enterprise-wide SOA governance solution to ensure the integrity of their policies, the companies said. According to Alan Himler, chief executive officer and chairman of LogicLibrary:
“The combination of SOA Software’s governance products, with LogicLibrary’s strategy to provide federation with other leading repositories, creates a single solution that provides unparalleled lifecycle and policy governance across all major platforms.”
A year and a half ago, I blogged about the consolidation trend in SOA governance, and I raised the question of who would be next? While I listed the candidates in what I said was no particular order, SOA Software and LogicLibrary were in the top two spots.
So who’s next in the buy-or-be-bought sweepstakes? Likely candidates (in no particular order) include SOA Software, LogicLibrary, Progress, IBM, Novell, IONA, Red Hat/JBoss, HP, Cape Clear, Mind Reef, Rogue Wave, Cisco, Sybase, TIBCO, BMC, Borland, AmberPoint, Software AG, Composite Software, CA, Above All, Adobe, Oracle, SAP, Sun Microsystems, among others.
There are still some names here that may need dance partners. Fortunately, the music has not stopped yet.
Software AG’s Miko Matsumura has some more thoughts.
Service Oriented Enterprise also reports on the merger.
May 6th, 2008
Profits-strapped Sun continues decade-long pitch to developers on Java dominance
Leading up the the JavaOne developers conference, Sun Microsystems posted an embarrassing quarterly profit loss, is making OpenSolaris more open than ever, bringing the OpenSolaris platform value to the Amazon Web Services cloud, and is still using variations on the projectile theme to send T-shirts into the international crowd of eager Java developers.
Here in San Francisco on Tuesday, the 12th annual JavaOne developers conference opened, still drawing throngs of the Java devoted. It’s clear from the gathering that Java tools, standards, middleware, runtime instances and distributed computing methods still dominate the non-Microsoft enterprise IT landscape.
Even as many other innovations over the past decade have encroached on and often out-delivered on the “write once, run anywhere” mantra, Java has done great things for the ability to develop and deploy complex, mission critical applications that leverage assets and resources across multiple tiers of computing. The n-tier computing model based on standards of interoperability is alive and well.
Java continues to play a binding role among hundreds of the most impactful IT vendors and their products — from IBM to Oracle to SAP to developer consultancies of one busy person. Yet the arenas in which Java, now an open source reference model stack, dominates has is limits. Java’s role in the future growth areas of Internet and mobile computing may well be as a foundational but necessary pivotal component.
The growing arenas of SOA, Web 2.0, cloud computing, webby applications design/delivery, OSGi container flexibility, PHP, Ruby on Rails, Adobe and Silverlight RIA/cross-browser development/deployment — all are moving beyond the Java orbit.
At the same time, Sun has aligned itself to Java so much it recently changed its stock ticker to JAVA. Sun certainly helped create the Java community and value — with a lot of help — but then also alienated many Java contributors and market drivers as Sun sought to dominate Java and to mashup Java’s success onto Sun.
So far, some 13 years in, Java remains consistently more successful than Sun.
And there was plenty more evidence at this year’s show of the always-interesting relationship between Sun and Java. Sun’s Executive Vice President for Software Rich Green, in his keynote, said that the Amazon’s Kindle device is powered by Java, even the store that the content is bought from, uses Java. And we were given a demo of Kindle’s prowess by Ian Freed, vice president of Kindle at Amazon.
Interesting to note that neither the device, nor the cloud services supporting the Kindle’s content sales and syndication, comes from Sun as a business. But the software was developed on Java. So, Java=1.0, Sun=0.1.
Rikko Sakaguchi, senior vice president of Sony Ericsson, showed some neat mobile handset devices running cool video and media. Java’s role is core to the handset and content and applications. Java helps make the software run on the device, and encourages partners to develop content and apps. “Java powers the device,” said Green. But again Java and Sony Ericsson=1.0, Sun=0.1.
We were also showed a demo of a Facebook widget, Connected Life, that at first crashed, perhaps due to Moscone Center’s Internet connectivity. But then it came back up. The widget was written in JavaFX, a Sun scripting language and runtime. The demo showed that the widget can run in a browser or as a rich Internet application using Java runtime, but that crashed too. And the widget can run on mobile devices too.
JavaFX also allows for video to run, 2D and 3D. There was some nice eye candy, but nothing you can’t get with Adobe AIR/Open Screen, Silverlight, or QuickTime, among other RIA approaches.
So Java still helps “write once, run anywhere.” Facebook and widget writers with Java=1.0, Sun=0.4 (if it sells the tools and licenses the Java runtime, and perhaps sells some servers to Facebook).
JavaFX Mobile will be forthcoming (spring 2009)to allow one runtime across the mobile and desktop tiers (fall 2008), said Green. A demo showed a mobile device running the Android emulator running Connected Life. Showing that JavaFX-written applications runs in many places, including mobile phones supporting Java.
Sun took some heat last year when it introduced JavaFX, but the “create-once, present anywhere” value is clearly a priority for Sun, as well as for Adobe, Microsoft and others. Sun will try and leverage the Java runtime installed base to be a player in this market, but it will be a real tussle given the competition
Glassfish kernal container at 98 kB will also support a wide swath of device types, said Green. He said Glassfish downloads are robust and global. Recent MySQL addition to Sun is getting 65,000 downloads per day, said Green.
NetBeans ecosystem is growing year over year by 44 percent, based on active users, said Green. And Java ships in the prominent Linux distributions, including Ubuntu and Red Hat, he said.
Sun’s Project Hydrazine offers a platform for mashable services in the cloud, for “find, merge, deploy and share,” said Green. It’s due in later 2009. Another project, Project Insight, involves managing actions of users and data for ad placement.
Sounds like Sun is building an ad delivery platform, or at least to manage the meta data that supports ad placements. So Sun is competing with Google, Microsoft, and Yahoo! on ad infrastructure?
Sun CEO and President Jonathan Schwartz said battle is brewing for development platform for next generations of devices. “No matter where they are, Java will reach them,” said Schwartz.
He likes the idea that apps running in a browser can be dragged off of the browser by the end user and onto the desktop of devicetop, thanks to Java on the device.
“And it will all be free,” said Schwartz. So again, Java=1.0, Sun=0.x.
Neil Young joined the Sun executives on stage. Neil likes Blue-ray, and plans to deliver a multimedia anthology content offering via Blu-ray from his illustrious and prolific 45-year career.
“Just recently we’ve been able to bring this forward, … it’s really quite an experience,” said Young, referring to using Blu-ray and Java, over past technologies, including DVDs.
And Java runs on Blu-ray devices! So Java+Neil Young=1.0, Sun=0.x.
Sun continues to try and define x as a major means to drive its future growth and profits. Let’s hope that the past is not prologue on that account.
May 4th, 2008
What Microsoft-Yahoo merger break-off means for enterprises
Now that Yahoo gets to remain a stand-alone company for a few more months, you may think that a battle royale between Microsoft and Google over the online advertising and social networking/communications services future has little bearing on enterprises. But you’d be wrong.
Here are seven reasons why:
- As we discussed Saturday on an emergency Gillmor Gang, this cloud wars business is largely about audience size, reach, and details on consumer needs/preferences. This audience intelligence value can be sold to advertisers, but also to enterprises, retailers and marketers as they seek to deliver their brands, goods and services more efficiently to users/buyers everywhere, every digital way. The cloud compute-based, automated, bid-auction-driven, buyer-seller matchmaker powerhouses will be necessary partners for most enterprises. In other words, you will be doing business with the top one or two cloud leaders.
- Nearly all enterprises and SMBs will continue to have large Microsoft product footprints in their organizations for at least several years. You want such a critical supplier to remain focused and fiscally healthy and to invest in current and future products — or you have a Microsoft extraction problem. If Microsoft goes tits-up online, it will be a weaker company and therefore a weaker supplier. If Microsoft needs to spend lavishly on labor, acquisitions, technology and marketing to get to number one or number two online, it will be distracted from its business-focused businesses. In other words, enterprises spending on Microsoft now subsidize Microsoft’s future needs to go cloud-strong, and perhaps enterprise software soft. You’ll need to pay Microsoft on premises now so that you can pay Microsoft online later.
- As a hedge on the future, Microsoft is creating online strategy sets that can satisfy consumer online markets while also bringing purely online and “software plus services” hybrid services to SMBs and enterprises. How well these services compete with other offerings from other cloud-based services providers will determine how well these services perform for you as a company. In other words, your future in leveraging Microsoft’s path from on-premises software provider to services provider hinges on how well Microsoft does online, which depends on audience and advertising/services (see no. 1). It will at some point behoove Microsoft to push you to its online business services, probably by making on-premises stuff expensive. But you will have more choice over your online suppliers than your did on your PC and department server supplier.
- An emboldened and stronger Google, resulting from a hobbled Yahoo and a runner-up Microsoft, means that more partners and applications will emerge around the Google ecology. We’ll see more deals with Google from Salesforce.com, IBM, Apple, mobile handset providers, mobile Internet device makers, and probably the major media companies (lacking a choice). This just makes Google stronger, more diversified, able to spend $1 billion per quarter on capital investments, able to woo the best engineers, and a darling of online start-ups and entrepreneurial developers and content creators. This means Google is not only a channel for enterprises to reach consumers, it increasingly becomes the provider or channel for more and more business services to more types of businesses in more global locations.
- Microsoft is becoming more open. In order to catch up to Google and other ad-driven cloud compute-based providers, probably without Yahoo’s audience clout, Microsoft will need to become even more open on standards. That’s good news for enterprises. Microsoft is loosening up its strangle-hold on enterprises through its self-imposed standards. More importantly, Microsoft is giving its developers more choice. This is a slippery slope, because at some point Microsoft gets so open that the stickiness and lock-ins lessen so that the Windows runtime (and associated license sales) can be swapped out for open source or virtualized runtimes. Developers can pick and choose what Microsoft stuff they want to use, and then seek cheaper alternatives. To seduce developers and start-ups from Google, Microsoft must continue to get open in more ways, aiding the open source evolution and maturity, and giving enterprise more choices and lower total IT costs.
- Requirements on the PC change and shift. As Google and Yahoo drag Microsoft into a more pure-Web-play, and seek to offer attractive online alternatives to “software plus services,” enterprises can re-evaluate their hardware spend and requirements on the desktop. Apple will also offer compelling alternatives for the full Windows PC experience. So enterprises, already resisting the hardware upgrade costs and help desk hit from moving to Vista, may benefit from Microsoft’s need to “go Webby” because their hardware requirements will amount to supporting a browser mostly, at least for some users like call centers. This also opens up the market for use of more thin clients, as well as more use of desktop-as-a-service and virtualized app delivery services. Dumb terminals are not dumb if you need to pay for them and support them. By backing off of client-server, Microsoft will cut your PC device total costs. And no more audit threats!
- Microsoft’s stock performance in the cloud era will depend less on its business revenues and more on how well it competes against Google, Yahoo et al. In the post Yahoo acquisition saga (volume 1), Microsoft may well see its value as a corporation decrease, even as recessionary pressures build against growth rates for its consumer and business product lines. Microsoft could have fewer resources to devote to its enterprise businesses (see above). At the same time, IBM, Oracle, Red Hat, and HP are firing well on their enterprise business cylinders, and they may see Microsoft blood in the enterprise sales waters. As an enterprise buyer, ask now and for the foreseeable for discounts and better terms from those enterprise vendors that compete directly with Microsoft. Microsoft’s sales reps may not be able to respond like they used to. Microsoft’s enterprise competitors will seek to take some oxygen from the field in the next several quarters. This is good news for enterprises, and SMBs.
So there are a number of reasons for enterprises and IT departments to be aware of and concerned about what goes on between Microsoft and Yahoo, and — most importantly — Microsoft and Google.
May 1st, 2008
Adobe shoots for ‘create once, present anywhere’ value with worthy Open Screen Project
Trying to deliver rich content effectively to the stubbornly heterogeneous end-user device tiers has produced more tears than triumphs. Adobe is aiming to fix that with the ambitious and inclusive Open Screen Project, which today throws adobe’s considerable installed base weight behind an industry-collaboration movement to standardize interface delivery.
By leveraging Adobe’s ubiquitous Flash Player and soon Adobe AIR, the project’s ambition is to allow ease in creating rich content — including video — and delivering it consistently to televisions, personal computers, mobile devices, and consumer electronics. The means is a consistent runtime environment for content, applications and services to present well across a variety of “screens,” from cell phones, mobile Internet devices (MIDs), and home entertainment set top boxes.
Adobe’s efforts will provide a significant counter-punch to Microsoft Silverlight/Live Mesh move to accomplish similar values using the market presence muscle and developer allegiance to the Windows, .NET and Visual Studio world.
May the best means to get the job done in a way that aids developers while protecting the choice of consumers — and being acceptable to the content, network, and device makers — win. The Adobe-Microsoft tussle on this front may be just what’s needed to break a moribund app delivery solutions field apart, and to get the job done … finally.
The announcement builds on Adobe’s earlier forays into open source adoption drivers for Flash. Adobe’s newest moves may even force Microsoft to be more open with its technologies, always a welcome development in the market. That’s because the Open Screen Project includes:
- Publishing the device porting layer APIs for Adobe Flash Player
- Publishing the Adobe Flash¨ Cast™ protocol and the AMF protocol for robust data services
- Removing licensing fees
- Making next major releases of Adobe Flash Player and Adobe AIR for devices free.
And there’s a community! Such partners as ARM, Chunghwa Telecom, Cisco, Intel, LG Electronics Inc., Marvell, Motorola, Nokia, NTT DoCoMo, Qualcomm, Samsung Electronics Co., Sony Ericsson, Toshiba and Verizon Wireless are keen to Open Screen. And content provides seem to like it to, including BBC, MTV Networks, and NBC Universal.
This is an exciting development. I hope it’s open enough to both assuage the “Adobe lock-in” critics and force more openness generally in this market. The de facto accepted standard is needed.
Enterprises ought to take a hard look at this as a potential way of delivering via RIAs content, services and applications from SOAs to many devices and types of consumers in a common approach. Very powerful.
And wouldn’t all of this pair up nicely with Android and the Open Handset Alliance? Adobe ought to join OHA ASAP.
And I very much look forward to getting and delivering a lot of the best content to all of the best places.
April 30th, 2008
TIBCO puts infrastructure pieces in place for cloud compute-caliber SOA
TIBCO Software founder, chairman and CEO Vivek Ranadive used his keynote presentation at the opening of the TUCON user conference today to describe the need for an “event cloud” to support the demands on next generation of enterprise infrastructure.
Such an elevated level of cloud management would allow for complex business events and activities to occur in “real-time” at the huge scale demanded of modern business processes. He said TIBCO’s goal remains the same as it has been for years, to the bring the right information to the right places at the right times. Only now is that vision nearing fruition, and the combination of SOA and cloud computing will make it happen, he said.
Ranadive also decried data trapped in databases, preferring a pending era of data portability. A global bank, for example, can expect to manage 100 million “events” a month, all of them relating to petabytes of data. Such scale and complexity will require software and hardware that can manage and adapt to keep up with demand and service performance management requirements. Relational databases won’t pass muster, he said.
Ranadive’s comments followed a slew of announcements by TIBCO today that, when you boil them down, add up to cloud compute-caliber SOA infrastructure in the making. [Disclosure: TIBCO is a sponsor of BriefingsDirect podcasts.]
After speaking with a number of TIBCO executives and customers a few things become clear:
- Portability of data is going to be a very big deal in coming years.
- High-performance, TIBCO-branded hardware appliances will help scale transactions, events processing and publish/subscribe messaging in increasing numbers.
- Look for tighter and more strategic alignment between TIBCO and Microsoft in the coming months.
TIBCO is embracing Microsoft Silverlight as the common presentation foundation for many of its BPM and SOA interfaces and management activity views and consoles. TIBCO is also making Microsoft’s Windows Communications Foundation work well with TIBCO Enterprise Message Service, and more compatibility across additional products is likely.
The visions of cloud computing has especially strong appeal to TIBCO executives, and TIBCO play a significant role in the interactions between various cloud hosting and provider organizations. The Palo Alto, CA-based company is in discussions with notable cloud services providers, executives said. It is also possible that TIBCO could itself enter into the cloud market as an integration services provider.
The company also see growing need for interoperability infrastructure to support the increasing use of enterprise mashups and lightweight data integrations.
April 30th, 2008
TIBCO proactive management approach enables SOA performance delivery as a managed service
The business of running IT for major organizations has been moving in a maturity model direction for some time. ITIL, IT service management methods, various compliance measures, and the seemingly never-ending mantra for IT to do more with less are behind these necessary trends.
Yet SOA brings a new level of needed sophistication to how IT runs itself, and how IT can perform like a business within the business. As SOA decouples services from applications and their support infrastructure — and the use of and demand on those services becomes dynamic, even erratic — how do you keep the trains running on time? Just as IT service management matures, SOA can make things chaotic, from a performance management perspective.
A series of announcements today from TIBCO Software’s user conference, TUCON in San Francisco, underscores this need for SOA support and performance management to gain maturity, and for those scaling up SOA activities to now look for the means to provide mission-critical performance in all circumstances. [Disclosure: TIBCO is a sponsor of BriefingsDirect podcasts.]
As enterprises also build out “private cloud” support infrastructure, a deeper and wider level of management and automation of performance management becomes essential. These times do require better management approaches.
I’ll be blogging more from the TUCON event today, and adding more detail to these announcements. For now, here are the basics:
- TIBCO rolled out ActiveMatrix Service Performance Manager, which helps companies predict and fix IT problems. The performance management support, which maps dependencies and supports SLA-based delivery, is designed to play well with SOA governance, an important part of taking SOA governance to the next level.
- TIBCO is delivering an “ultra-low latency” message delivery support with its first messaging appliance. Proper performance demands raw horsepower, in addition to the finesse of dependencies mapping and vulnerability predictions.
- There are also two intriguing partnership announcements. TIBCO has partnered with Microsoft on SOA adoption paths, and TIBCO has selected Microsoft Silverlight for building and delivering rich Internet applications, which builds on TIBCO’S AJAX development.
- Secondly, TIBCO is partnering with BMC Software, in that BMC will use TIBCO infrastructure as the SOA foundation for its Business Service Management Platform.
The need to detect behaviors and patterns in ongoing SOA-based processes and transactions will provide the confidence and transparency large organizations require to build out SOA systems and methods across more business critical activities. Complex event processing offers a key ingredient for this SOA forensics value to occur. More on that later.
April 29th, 2008
Splunk adds change-management and Windows support to IT search software
IT search company Splunk today added to its arsenal of tools for IT managers with the launch of Splunk for Change Management, an application to audit and detect configuration and changes, and Splunk for Windows, which indexes all data generated by Windows servers and applications.
The San Francisco company provides a platform for large-scale, high-speed indexing and search technology geared toward IT infrastructures. The software, which comes in both free and enterprise versions, allows a company to search and navigate data from any application, server, or network device in real time. [Disclosure: Splunk is a sponsor of BriefingsDirect podcasts.]
Splunk for Change Management, which requires an enterprise license, continuously audits all configurations and changes, detects unauthorized changes, validates change deployment, and discovers service-impacting changes during incident response.
The new application leverages the existing Splunk Platform, allowing users to combine change audit events, configuration data, activity and error logs, and actual system and user behavior. This differentiates it from the traditional approach, which is often disconnected from incident response and cut off from other sources of IT data.
Among the features of the new product are:
- Out-of-the box dashboards with over 40 reports showing changes across all datacenter components including applications, servers and network devices.
- Predefined alerts that detect unauthorized change based on configuration variances and correlation with service desk systems.
- Predefined searches to help identify service-impacting changes
- Integration with service desk systems that validates the effect of change on system behavior.
Splunk for Windows, a free application, integrates Splunk’s IT search with Microsoft’s System Center Operations Manager’s command and control view of the Windows infrastructure.
Splunk indexes event logs, registry keys, performance metrics, and applications log files, making all the data searchable from a single place.
Reports and dashboards included in the application provide a bird’s eye view of service levels and problems across a large number of servers and applications, and predefined alerts can warn of cross-component problems.
Splunk has a variety of solutions for IT managers and developers who need some visibility into their various systems and components. Just a few weeks ago, I wrote about the Splunk Platform.
“The Splunk Platform and associated ecosystem should quickly grow the means to bridge the need for transparency between runtime actualities and design-time requirements. When developers can easily know more about what applications and systems do in the real world in real time, they can make better decisions and choices in the design and test phases. This obviously has huge time- and money-saving implications.”
And, more than two years ago, I did a podcast about Splunk, when it launched the Splunk Base, an open Creative Commons-licensed repository of Wikis that with volume adoption to give systems troubleshooters a searchable library of knowledge about what ails IT components and how to swiftly remedy those ills. You can listen to the podcast here.
Splunk for Change Management pricing starts at $4,000 and requires an enterprise license. A 30-day free trial is available.
Splunk for Windows is free and is now available on the Splunk Base site.
April 29th, 2008
HP ramps up integrated SOA management and lifecycle offerings
HP has unleashed a slew of product updates and enhancements to provide lifecycle services quality and management support, moving ever closer to a comprehensive mission-critical SOA maintenance portfolio.
Today’s launch covers a wide range of products and includes new versions of Service Test and Service Test Management. At the same time, HP’s Software group added new capabilities to Business Availability Center for SOA, Diagnostics for SOA, and SOA Policy Enforcer.
HP says that these product enhancements will help users accelerate enterprise-wide level SOA adoption by providing assurances that services meet design and operational requirements. [Disclosure: HP is a sponsor of BriefingsDirect podcasts.]
Highlights of the new versions and capabilities include:
Service Test Management allows quality assurance teams to plan, design, and execute their activities from a SOA perspective and to instantly report on pre-production quality. By integrating this with SOA Systinet, teams can alert users that services are ready for consumption.
Service Test enables functional testing of SOA services, reducing the risk of application failure and is fully integrated with the extended BTO portfolio across the service lifecycle.
Business Availability Center (BAC) for SOA manages shared services within the existing operational IT infrastructure and processes, reducing deployment risk by ensuring that services are actively managed. It also provides proactive problem resolution before services impact consumers and business processes.
Diagnostics for SOA allows teams to identify and resolve problems by drilling down into shared services. This can operate in standalone mode or can integrate with BAC for SOA.
Policy Enforcer monitors and enforces security, performance, and other operational requirements. Monitoring data is fed directly into Diagnostics for SOA for analysis.
These products, embracing HP’s BTO and Systinet SOA registry offerings, pulls together the design time and runtime elements of SOA to produce the scale and quality management assurance that telecos, financial firms and healthcare providers are demanding, said Kelly Emo, HP Software’s SOA Product Marketing Manager.
The combination of these enhanced products and SOA methodologies allows for quality assurance, testing and requirements definitions to produce the services and processes that then require mission-critical operational service management, says HP.
“There’s now more integration for a SOA lifecycle,” said Emo.
I’m often fielding questions from enterprise IT strategists on how SOA design can be implemented to assure quality performance, especially in dynamic use patterns. The previous management approaches to distributed applications needs to be promoted to SOA scale, many of these organizations are finding.
It’s important not to confuse SOA governance with performance management. SOA governance will help define the best ways that services can and should be used, and how to provide policies and guidelines for those orchestrating and consuming services and composited business processes. But the infrastructure beneath all of that governed SOA activity needs to be managed, and performance needs to be maintained.
In the best of all worlds, these functions relate well and can be managed and refined in unison, a vision that HP is obviously embracing with today’s announcements.
More information about the HP SOA portfolio is available from the HP Web site.
April 27th, 2008
HP’s security management model brings comprehensive approach to corporate risk reduction
Read a full transcript. Sponsor: Hewlett-Packard.
We live in an age where there is so much exposure to risk and information security pitfalls that when data gets out — it gets out in a big way. Devastating security breaches are becoming routine in the media, and those are only the ones we hear about. There have never been more ways for sensitive data and corporate assets to be poorly managed.
So how do large, complex companies and governments better protect themselves? How do they manage new compliance regulations that spout up and change constantly? How can people and processes be better organized to thwart bad practices before they lead to potentially catastrophic losses?
Surprisingly, the answer has more to do with management methodology than security technology. In this sponsored podcast discussion learn from HP security expert Tari Schreider how a comprehensive new security management approach, called Information Security Service Management (ISSM) and its reference model, offers companies a comprehensive framework with which to finally come to grips with myriads corporate risks and daunting compliance requirements.
Here are some excerpts:
When we read about a breach of security — the proverbial tape rolling off the back of the truck with all of the Social Security numbers — we find that, when you look at the morphology of that security breach, it’s not necessarily that a product failed. It’s not necessarily that an individual failed. It’s that the process failed. There was no end-to-end workflow and nobody understood where the break points were in the process.
It’s not unusual for us to present back to a client that they have three or four different identity management systems that they never knew about. They might have four or five disparate identity stores spread throughout the organization. If you don’t know it and if you can’t see it, you can’t manage it.
HP’s ISSM … positions security as a driver for IT business-process improvement. It reduces the amount of operational risk, which ensures a higher degree of continuity of business operations. It’s instrumental in uncovering inadequate or failing internal processes that stave off security breaches. It also turns security into a highly leveraged, high-value process within your organization. … It allows you to actually make security sticky to other business processes.
When I sit down with CFOs or CIOs or business-unit stakeholders, I can ask one question that will be a telltale sign of whether they have a well-managed, continuously improving information security program. That question is, “How much did you spend on security last year?” Then I just shut up. … They don’t have any answer. If you don’t know what you are spending on security, then you actually don’t know what you are doing for security. It starts from there.
We show them that they actually have 40, 50, or 60 [security products], because they’re spread throughout the organization, and there’s a tremendous amount of duplication. … Today, security controls are buried in some spreadsheet or Word document, and there is really no way to manage the behavior of those controls.
We want to work with that individual and position the ISSM Reference Model as the middle layer, which is typically missing, to pull together all the pieces of their disparate security programs, tools, policies, and processes in an end-to-end system.
Historically, businesses throughout the world have lacked the discipline to self-regulate. So there is no question that the more onerous types of regulations are going to continue. That’s what happened in the subprime [mortgage] arena, and the emphasis toward [mitigating] operational risk is going to continue and require organizations to have a greater level of due diligence and control over their businesses.
It seems that you are weaving ISSM together so that you get a number of checks and balances, backstops and redundancies — so that there aren’t unforeseen holes through which these risky practices might fall.
The beauty of ISSM is that it’s very nimble and very malleable. We can assign responsibilities at an attribute level for control, which allows people to contribute, and then it allows them to have a sharing-of-power strategy, if you will, for security.
It’s that cohesion that we bring to the table. How they intersect with one another, and how we have common workflows developed for the process in an organization gives the client a sense that we are paying attention to the entire continuum of continuity of business.
Businesses are run on technology, and technologies require security and continuity of operations. So, we understand that this is a moving target.
Read a full transcript. Sponsor: Hewlett-Packard.
Request a Consultation with Dana Gardner
