|
NonStop ™ Newsletter for February 2022 ______________________________________________ Current Global Subscribers 15,658 Click to Sponsor a Newsletter Contents A Tribute ........ Migration Services gtug Big Sig 2022 is Back Why ATM usage is on the rise again Ask TandemWorld CAN FINANCIAL SERVICES INSTITUTIONS RISE TO THE CHALLENGE OF FINTECH? PCI DSS 4.0 Is Coming. Will You Be Ready?
Discussing Digital Transformation for NonStop Systems NuWave Customer Success Story - How RedLink is using LightWave Solutions to integrate and modernize HPE NonStop ServiceNow Integration
|
||||
A Tribute to Karen CopelandLisa Partridge CEO, XYPRO Technology Recently, we lost an exceptional member of the HPE NonStop community. Karen Copeland’s passing was unexpected and immediately I was in a state one often finds when we realize someone we’ve known and relied on for so long, simply won’t be there anymore.
Karen Copeland, Manager of HPE NonStop Product Management was with Tandem Computers and the NonStop Division of HPE for almost 40 years. For a long time, Karen was also XYPRO’s HPE Partner Manager. She was a great mentor to her many teams over the decades and we extend our deepest sympathies for their loss.
Karen introduced new and cooperative ways of working with NonStop partners and was a highly effective liaison between so many groups of people within and external to the NonStop ecosystem. The partner community was very important to Karen. She was creative and supportive, providing all of us opportunities to thrive while ensuring the NonStop Customer base got what they needed to do business, be competitive and take advantage of modern technologies. Karen, along with long-time friends and colleagues like Wendy Bartlett, worked tirelessly with the team at Connect Worldwide and volunteer leaders at Regional NonStop User Groups, putting on excellent global NonStop User events. She really cared about showing HPE’s commitment to the community and making it valuable for the customers. Personally and professionally, I consider myself lucky to have had Karen’s influence, guidance, and support. She was tough but fair and knew how to get things done. I learned a lot. Karen was also pretty funny and enjoyed a little Johnnie Walker Blue. She was a very proud stepmother and loved her cats. A great cook, Karen loved preparing Italian meals for large family gatherings. She was really into her music and loved singing “garage band” style. There are so many things that make up a whole life. We’ll all miss you, Karen.
Migration Services
· GTUG
Dear NonStop User Community,
Big Sig 2022 is Back
Why ATM usage is
on the rise again There’s quite a movement gaining
momentum around Cash Usage. Certain strands of society are coming
together to encourage consumers to use Cash once again. Post
pandemic, the public is out and about again, and looking to spend.
There’s also a move towards maintaining spend anonymity, as Cash
remains the only way to spend without you sharing exactly what
you’re spending your money on - who’s watching us spend? At the same time that we’re being
encouraged to use more digital forms of payment, for our own
convenience of course, there are small waves encouraging us to hoard
and spend Cash. I’m not sure this is quite what they intended, but
the Canadian government, in its effort to suppress donations to the
truckers’ cause, has actually nudged consumers on main street into
withdrawing their cash so the government can’t get their mitts on
it. I mean whose cash is it anyway? Several means of donation
including schemes such as GiveSendGo were targeted. Many countries around the world
still depend on Cash as their fundamental method of transacting.
Whilst more developed economies with solid infrastructure and
concentrated population may be enjoying the benefits of digital
payments, a large swathe of the world will be using cash to help
them budget, to help them spend. Many of the world’s population is
living hand to mouth. We may not consider them our ideal target
market, but in general their daily challenge is to make it into
tomorrow, feed their family, and aim to stay healthy. Those living
on the equivalent of a few dollars per day are generally not those
with much savings and if anything depend on their own
resourcefulness to get through their day. Even in developed countries like
the UK, it is estimated that something like 17% of the population is
using Cash to budget and to ensure they don’t spend more than they
have. Those with troubled credit histories can also be included in
this category. Some of the most challenging jobs are in
agriculture. While their income levels can be quite variable based
on the success of the season, they still need to be paid for their
harvests. Yet Farmers typically may not have bank accounts but they
will have a phone. So they need mechanisms to get paid for their
produce without having to travel for days to get to a bank. OmniPayments support farmers in
central American countries to get paid for their goods, quickly and
efficiently. For our part, OmniPayments is the
ideal platform for driving ATM networks, and for distributing
benefits to those members of the population who need help the most.
For those with an existing ATM, the cost of switching the
transactions, managing the transactions, staying on top of the
fraud, and preventing Cash-Outs continues to be a challenge for
banks and ATM Operators. OmniPayments drives down the costs while
enabling the greatest flexibility in managing todays ATM estates.
Better still, you can up and running in no time at all.
OmniPayments private Cloud service
“OmniCloudX"
brings you a ready-and-waiting powerful switch to process your
transactions from as little as $5,000 per month.
OmniPayments combines all modern
payment methods, including Smartphone, NFC cards, Barcode, vouchers,
ApplePay, GooglePay enabling merchants to smooth the experience with
the minimum of friction. Integrated with third party Trusted
Service Managers, OmniPayments supports the issuing of cards and
tokens embedded in modern devices and watches, making the payment
experience totally seamless. OmniPayments integrates with all
other existing business value infrastructure, in real time, on a
database level or message level APIs.
Ask TandemWorld
CAN FINANCIAL SERVICES INSTITUTIONS RISE TO THE CHALLENGE OF FINTECH? Retail payments are a route to profitability for banks, but it’s also a route to market share and new customers. FinTechs have one main advantage in the market - flexibility. They have been able to move quickly to develop new features and roll them out before traditional banks could. Now however, we see traditional banks rolling out those same features - FinTechs will lose some of their competitive advantage if they can’t maintain the same level of innovation as before. The challenge for traditional banks is that it’s taken them a long time to get here - they couldn’t respond to the challenge as soon as it happened. At the end of the day, this is a conversation about tech infrastructure. Challenger banks, working on modern tech stacks, could quickly develop and deploy.
The way for traditional institutions to take this on is to introduce similar degrees of agility in order to give options to customers who don’t like the pared-back experience of digital banks but feel traditional banks don’t understand their needs either. The issue is inertia born of fear.
When a bank’s technology fails, the first repercussion is that it makes headline news. The second is that the regulator gets involved. Combined, the bank could face fines, fees and a badly damaged reputation. The desire to avoid this scenario at all costs stifles a lot of technology advancement in the financial space. Unfortunately in the long term, this policy is likely to create more problems than it solves.
If we look even further into the future, disruptions from the likes of Blockchain and AI could bring further, more dramatic change to the industry. While they are still very much in the early stages of development and roll out, a CTO must be able to anticipate the change that these, or other unknown technologies, might bring - and be in a position to react and adapt. Technology leaders must be able to keep pace with the new products and services that technology will introduce. And do it efficiently.
Embrace the experience you have
The traditional bank carries with it a certain amount of baggage, but most of that baggage is good baggage - it’s stability, security and market knowledge. Focusing these factors on customers will be a winning combination. This is an area where banks already excel. Data, customers and capital to fund payments projects are already there, whereas FinTechs have to build from the ground up.
The FinTech battle is far from over - it’s barely started. Whether your strategy as a financial institution is to be proactive and aim to beat the FinTechs at their own game, or whether you are reactive and want to move second, there’s still a lot of time left on the clock.
Continuing to depend on rigid infrastructure leaves banks vulnerable in the long term, and unable to react to changing market conditions. Of course, banks could just carry on another year and another year and another year and leave it for a successor in their role. The pressures on banks to change never feel immediate until there’s a crisis. And then it is often too late.
Find out more about why payments are still crucial to the financial services business model and how failure to adapt became the biggest infrastructure risk facing payments businesses, in our whitepaper - Preparing your payments infrastructure for the next decade: a guide for financial services institutions.
Brian Miller PCI DSS 4.0 Is Coming. Will You Be Ready?
Since the
release of PCI-DSS 3.0 in 2013, the PCI Security Standards Council has
been quite busy. A little over a year after it was published, the
council released PCI-DSS 3.1, followed by several new templates and
supplements, including the “Migrating from SSL and early TLS Information
Supplement” in April 2015 which highlighted the risks of SSL and TLS
1.0. The supplement described a migration plan as well as set a
migration deadline of 1 July, 2016.
The migration deadline caused concern because SSL is so widely utilized in the payments industry. Organizations felt the tight deadline could significantly disrupt business. On the other hand, so can a data breach. The PCI Security Standards Council took notice and in April 2016, released PCI-DSS 3.2, which extended the migration deadline to 2018. Version 3.2 also clarified previous requirements and introduced new requirements around Personal Account Numbers (PAN) Masking and Multi-Factor Authentication (MFA).
In 2018 PCI DSS version 3.2.1 replaced version 3.2 to account for effective dates and SSL/early TLS migration deadlines that had passed. No new requirements were added in PCI DSS 3.2.1.
If you’ve been following the standards over the last few years, you may already know that PCI DSS 4.0 is right around the corner, due out in the first half of 2022.
Version 4.0 is still going through review, but based on the current draft version, here are the anticipated top 7 items:
Gravic Announces New HPE Shadowbase Versions
Shadowbase for Other Servers Version 6.700 – Released in January, 2022. Highlights include: · PostgreSQL target replication for Windows and Linux clients · MySQL target replication for Windows clients · HPE Shadowbase Log Source for Oracle: now supports Shadowbase User Exits, which enables column filtering and transformation during replication; the collection of additional/new Oracle data types; and automatic support for replicating from both archived and online “redo” logs · Support for replicating SQL/MX Sequence Objects from one SQL/MX table to another · The SBMON LIST command enhancements for OPCOL and DOC objects to more accurately reflect the progress of TRS and TFS objects · Expanded INVALID_NUM_PROCESSING options for cleansing ‘bad’ source data
For more detailed information, please visit: www.ShadowbaseSoftware.com/Publications/Other-Servers-6700/.
New HPE NonStop Shadowbase Version 6.700 – In-plan for later this year: · SQL/MX sequence object replication (internal and external) · PostgreSQL target support, including translations for Enscribe and SQL/MP sources · New Shadowbase Compare and Repair features o Blistering fast bulk read and compare extensions (especially useful when validating entry-sequenced files and tables) o Automated parallelism · New Shadowbase Essentials bundle features o SBMAP – Simplified data transformation without user exits (SQL/MP source available now, adding Enscribe as a source) o DCR – DDL Command Replication (SQL/MP available now, Enscribe and SQL/MX in-plan for future release)
Gravic Presented on HPE Shadowbase Product News at SunTUG Sunshine Summit We presented on HPE Shadowbase Product News at the in-person 2022 SunTUG Sunshine Summit, held for the Florida NonStop community in Tampa. We celebrated Pat Boland’s announcement of his retirement. Congratulations to Chris Donnelly from JPMorgan/Paymentech for winning our Bluetooth JBL Flip 4! We would like to thank Pat Hill, Teri Sears, Douglas Tully, our numerous HPE partners, other volunteers, vendors, and of course the customers for organizing, speaking, and attending this successful face-2-face event.
If you missed our SunTUG talk and would like us to present it to you, then please contact us. Hewlett Packard Enterprise globally sells and supports Shadowbase solutions under the name HPE Shadowbase. For more information, please contact your local HPE Shadowbase representative or visit our website. For additional information, please view our Shadowbase solution videos: https://vimeo.com/shadowbasesoftware.
It is with deep sadness that we mourn the loss of Janice Reeder-Highleyman, Karen Copeland, and Ernie Guerrera. May they all rest in peace. Specifications subject to change without notice. Trademarks mentioned are the property of their respective owners. Copyright 2022.
Discussing Digital Transformation for NonStop Systems
The term Digital Transformation is in vogue at the moment, but what does that really mean to you and the NonStop ecosystem at large? Since every organization is different, no single definition can accurately describe this term. However, integrating digital technology into all areas of an organization will result in fundamental changes to how businesses operate and deliver value to customers.
We understand that digitally transforming an organization represents an opportunity to meet changing requirements and leverage technology to enhance the customer's experience. For example, any efforts to connect NonStop workflows, Pathway applications, or SafeGuard user accounts to infrastructures like Microsoft Azure and Active Directory means that NonStop servers and their workflows, including authentication and audit workflows, can be digitally transformed. Also, many organizations are no longer using desktop software and have switched to cloud-based solutions. These tend to offer more flexibility and scalability, along with solid redundancy, which is also part of a worldwide digital transformation process. Cybersecurity is an integral part of any digital transformation strategy, and it requires continuous improvement to keep up with evolving technologies and threat landscapes. Organizations must decide how they leverage newer technologies to their advantage and evolve. These decisions will have a direct impact on differentiation, growth, scalability, profitability, risk mitigation, and customer satisfaction. The companies that select the right IT from the right technology partners and then implement solutions in a practical, methodical manner over time will likely flourish. Those who do not will likely struggle. CSP is developing a new solution to synchronize, authenticate, and manage NonStop users via any centralized Identity & Access Management or User Provisioning solutions. This new offering will help modernize existing technologies and extend current investments with software that bridges the old and the new.
CSP Authenticator + Cloud-Native Application for NonStop Systems
CSP Authenticator+® provides multi-factor authentication for NonStop servers and supports various authentication methods. It can be used as a Safeguard SEEP or with Pathway and non-Pathway applications. Almost any application, including TACL, can now easily support multi-factor authentication. The new CSP Authenticator + cloud-native application was developed using a modern cloud-based framework. This redesign focuses on providing security, flexibility, and scalability. Multiple authentication methods such as RADIUS, Active Directory, RSA, and Open LDAP are supported. Additional authentication methods include Email, Text Message, and Google Authenticator. New features: · New cloud-based framework – A new cloud native application built using modern technologies · Support for Kubernetes Helm deployments – easy to deploy in cloud environments using Kubernetes framework · Support for High Availability environments – Create highly available Kubernetes clusters for resiliency · No differentiation between Primary and Secondary authentication – users can choose any mix of available authentication methods, and even choose more than 2 authentication methods · Application based authentication methods are now supported, and more authentication methods are being added. Authentication methods currently supported include RSA, LDAP, Active Directory, RADIUS, Google and Microsoft authenticator, OTP via Email, and OTP via SMS · Set different authentication methods for different user groups and privileged groups · Redesigned user-interface makes it more intuitive and user friendly · Maintain a matrix of authentication profiles, policies (authentication methods), and users · Support for various databases, including Amazon S3, Atlas Cloud service, MongoDB, etc. Benefits: · Protect valuable resources & data. · Add layers of authentication for secure access to systems and critical applications. · Address PCI compliance requirement 8.3 which requiring multi-factor authentication for all personnel with remote access, and non-console administrative access to the cardholder data environment. · Integrate with centralized ID management systems to effectively manage users.
CSP Authenticator+ Key Features: · Support for multiple authentication factors including RSA, RADIUS, Active Directory, and LDAP, Microsoft, Google, OTP · Create various profiles and policies for different set of users, and applications · Ability to use more than two authentication methods · Provides standardized authentication across platforms · Configure for all or only selected/privileged users · Fully encrypted communications with cloud native application · Supports various databases · Support for new authentications methods · Supports TACL, Pathway and Non-Pathway applications
CSP - Compliance at your Fingertips™ For complimentary access to CSP-Wiki®, an extensive repository of NonStop security knowledge and best practices, please visit wiki.cspsecurity.com We Built the Wiki for NonStop Security +1(905) 568 –8900
NuWave Customer Success Story - How RedLink is using LightWave Solutions to integrate and modernize
This customer success story is told by Gustavo Martinez, NonStop Engineering Head at Red Link S.A., and highlights how he has worked with the teams inside Red Link to integrate their HPE NonStop utilizing the LightWave solutions with multiple use cases throughout their enterprise. The use of NuWave’s LightWave solutions has allowed us to facilitate integrations, and we have a backlog of new POCs that are awaiting implementation. Using the Nuwave Products allows us to integrate in a seamless way the API ecosystem of RedLink with our NonStops/Base24 solutions. Nowadays, being the REST web services hosted on the NonStop or on the open platform, we can use LWS and LWC (respectively) to provide or access information using a REST API. It allows us to develop integrations in a incredibly short time in comparison with the developments of other interfaces we used to work like ISO8583. In addition to that, the NonStop ecosystem can now be seen as a platform with open interfaces, easily integrated to the rest of the applications, with a plus: we provide or consume those REST web services with Nuwave under a fault tolerant and massive scalable platform. It is important to mention the low costs of implementing Lightwave, because the products are extremely simple to use, so there isn't a learning curve, the implementations doesn`t take a long time, and there are no expensive consultancy services needed for implementing them. The LightWave solutions will continue to be a large part of the Red Link infrastructure, and the products’ uses will continue to expand for many years to come. Going with NuWave for our REST infrastructure has proven to show value in every implementation and we look forward to a long-standing relationship with them.
HPE NonStop ServiceNow Integration March 16th was our live webinar showing just how seamless we make integrating your HPE NonStop servers with ServiceNow ITSM. Validate privileged commands against Problem, Change, and Incident Tickets, granting or denying execution based on the response from ServiceNow.
Eliminate complex, after-the-fact manual effort otherwise required to match NonStop executed commands with individual ServiceNow tickets. XYGATE ServiceNow Integration using ZeroTrust enforces the highest level of security in the ServiceNow workflow to reduce risk and increase efficiency. The full webinar is available on the XYPRO YouTube channel and our website now.
Find out more about us at www.tandemworld.net
|
|
|||
|
+44 (0) 20 8304 7979 Our company, Tandemworld,
accepts no liability for the content of this email, or for the
consequences of any actions |
