Why Unisys and MISER?
description
Transcript of Why Unisys and MISER?
Why Unisys and MISER?Steve KossDistinguished Engineer and Chief ArchitectClearPath MCP Program Office
© 2012 Unisys Corporation. All rights reserved. 2
CNBC – 9/14/09 – All Stars
ClearPath MCPLibra Series / FS Series / VSE Series
Large server (multi-processor systems)
Gold Award Winner
© 2012 Unisys Corporation. All rights reserved. 4
Vertical Optimized Servers.
FS Series
FinancialServices is
60% of MCP Business
VSE Series
Over 140 million
voicemail subscribers
Banking Telephony
© 2012 Unisys Corporation. All rights reserved. 5
ClearPath MCP: World Class Customers.
2%
20%
11%
67%
Commercial
Financial
Communications
Public Sector
© 2012 Unisys Corporation. All rights reserved. 6
MCP Mainframe Attributes Are Crucial.
FunctionallySuperior
• Security
• Data Integrity
• High Reliability
• High availability
• Scalability
• Highly integrated software
• High capacity
• Resiliency
• Manageability
• Serviceability
• Best IT Value
Mainframe attributes inbuilt Architecture Hardware Software Operations
Mission Critical Ultra High
Volume Transactions
The time between unplanned outages in
ClearPath MCP is measured in years
© 2012 Unisys Corporation. All rights reserved. 7
Why FIS runs MISER on the ClearPath MCP Platform
• Application Compatibility
• Scalability
• Security
• Enterprise Class Database
• Availability
• Support
• Integration
© 2012 Unisys Corporation. All rights reserved. 8
Application Compatibility
• MCP Systems– Designed to run Multiple Diverse Workloads without conflict. – Applications can run together generally without any concern.– Applications can move from release to release without change.
• Windows / Unix– Typically geared for Single Application Servers– Or Multiple Tiered Servers for a Single Application– Third Party Support is often restricted if Application isn’t on its
own server– Why?
• Application conflicts (Windows DLL Hell)• Deteriorating performance as Utilization increases• Target 30%
• Application Compatibility• Scalability• Security• Enterprise Class Database• Availability• Support• Integration
© 2012 Unisys Corporation. All rights reserved. 9
Why?
• MCP has Coordinated Software Release – IOE– Single Source for Key Components – OS (MCP) / Database (DMSII) /
Transaction Manager (COMS) / Environmental Software (Compilers, Utilities)
– Unix – OS, Transaction Manager, and Database sourced from separate vendors
• MCP uses Scale Up for Scalability – Designed for many concurrent users– Applications can run together generally without any concern– Real Utilization can reach mid 90% mark– Can run at 100% Utilization without issue.
• Other Systems– Deteriorating performance as Utilization increases– Clustering for Scalability adds complexity and overhead
• Application Compatibility• Scalability• Security• Enterprise Class Database• Availability• Support• Integration
© 2012 Unisys Corporation. All rights reserved. 10
MCP Architecture – Scalability
(single user)40 MIPS
The same code runs from laptop to the largest MCP server.
• Application Compatibility• Scalability• Security• Enterprise Class Database• Availability• Support• Integration
FS 1750
FS 1800
225/1000 MIPS
500/1,000 MIPSMetering
LX-170 LAPTOP
FS 4100300/2100 MIPS
Metering
© 2012 Unisys Corporation. All rights reserved. 11
Security Second to None.
• Secure by design – Comprehensive protection against
unauthorized access of all resources– Immune to buffer overflow exploits– No Viruses, EVER!
• Comprehensive logging and auditing
• Protects data confidentiality and integrity
– Protects workloads against each other– File and database security– Encryption for data in transit or in storage
• Ensures system and data availability
– Platform stability minimizes downtime– Thwarts denial of service attacks
“The design and implementation of mainstream operating systems could be improved greatly by examining the security engineering decisions that were made while developing the ClearPath MCP environment.”
ClearPath MCP Security Assessment Client Facing Document
• Application Compatibility• Scalability• Security• Enterprise Class Database• Availability• Support• Integration
© 2012 Unisys Corporation. All rights reserved. 12
Independent Security Analysis
MCP Operating SystemThe Master Control Program, or MCP, operating system provides the basis for the upper layers of software which provide application functionality. The MCP operating system has been designed to support mission-critical environments, and supports a rich system security model, high-volume transaction processing, high availability, and interoperability with modern networking standards and protocols. As a mainframe system, other features of the system include scalability, high capacity, data integration, and good manageability.
The MCP operating system was developed for use specifically for the ClearPath hardware architecture. It was developed primarily in the ALGOL and NEWP programming language, with a security-aware compiler suite that provides system programmers with protections against common security bugs such as buffer overruns and memory allocation problems. The system enforces memory protection, for each word of memory, by assigning tags to the memory location that describe the types of operations allowed for that particular piece of memory. This protection exceeds the current state-of-the-art in systems designed to meet the needs of the commodity computing market.
The MCP operating environment also provides security protections by using trusted program compilers. These programs, necessary to create new programs make the creation of unsafe code much more difficult than the typical compilers found on widespread operating systems such as Microsoft Windows or UNIX. The system ensures that any programming bugs are very difficult for would-be attackers to exploit using any of the traditional methods for compromising computer systems. Symantec consultants analyzed the system from the perspective of an attacker and applied the traditional exploitation method to the MCP environment without success.
“ClearPath MCP Security Assessment Client Facing Document”
© 2012 Unisys Corporation. All rights reserved. 13
Security – Authentication
• Multiple Authentication Styles Supported– Usercode / Password– NTLM– NTLMv2– Kerberos (Win2K Domain)
• Policy Based Security
• Managed via:– Batch Interface– Command Line Interface– Graphical Interface (MMC)
• Application Compatibility• Scalability• Security• Enterprise Class Database• Availability• Support• Integration
© 2012 Unisys Corporation. All rights reserved. 14
Operating System Number of Vulnerabilities
Date of Last Vulnerability
Compromised User Data
Unisys ClearPath MCP 1 12/31/2002 NoIBM zSeries 18 11/11/2011 YesIBM iSeries 19* 06/11/2009 YesOpenVMS 31 11/26/2011 YesHP-UX 318 01/04/2012 YesAIX 336 02/06/2012 YesUnix 625 02/07/2012 YesWindows 2952 02/17/2012 YesLinux 3654 02/16/2012 Yes
Data taken 02/20/12 *1 disputed
ClearPath: Setting the Standard for Security
© 2012 Unisys Corporation. All rights reserved. 15
MISER Database Architecture
• Unisys Database Management System (DMSII) for MISER Core– Enterprise Quality Transaction-Oriented DataBase Server – Audited database: Tape or Disk– Rebuild or Rollback to any point in time thru the Audits– Dynamic population increase– Storage requirements typically 1/5 or less when compared to Oracle
or Microsoft SQL Server equivalents – Database can be backed up at anytime (Online)– Online Reorganization– Limited “Tuning” required– Minimal downtime for Software Updates and Upgrades
• SQL Server Database for Business Intelligence– Kept in sync with MCP Database via Integration Technology– Designed for easy ad hoc queries.
• Application Compatibility• Scalability• Security• Enterprise Class Database• Availability• Support• Integration
© 2012 Unisys Corporation. All rights reserved. 16
Availability:Minimal System downtime
• MCP Rapid Software Update/Upgrade Time– Typically done in Hours, vs. Days or weeks– Can even be done with no user visible downtime.– Support for mix and match between releases– Application and Environmental software will run
• One Release Back, Two Releases Forward
• Ex: Average Oracle Database upgrade time – 35.2 Hours Average Microsoft SQL Server upgrade time – 24.8 Hours Downtime per year: Oracle: 27.5 hours unplanned (99.69%), 61.2 hours planned SQL Server: 30.9 hours unplanned (99.65%), 72.0 hours planned
Microsoft SQL Server vs. Oracle Database: A Comparative TCA Study - Alinean Inc, May 2006
• Ex: Windows Software Compatibility Issue– Upgrading to new versions of Windows or Service Packs are often delayed due to
software incompatibility
• Application Compatibility• Scalability• Security• Enterprise Class Database• Availability• Support• Integration
© 2012 Unisys Corporation. All rights reserved. 17
Support
• MCP– Defined support policy with User specified priority– Process for escalation and immediate service– Goal: Fix your problem– Strong relationship between Unisys and FIS
• Ex: Microsoft Windows– Multiple Levels Of Support– Limited on the number of Bugs, Hours Support– Goal: Provide a workaround
• Application Compatibility• Scalability• Security• Enterprise Class Database• Availability• Support• Integration
© 2012 Unisys Corporation. All rights reserved. 18
Integration
© 2012 Unisys Corporation. All rights reserved. 19
Integration with Everything.
• MCP Integration is Technology Agnostic– Windows, Unix, Linux – .NET, J2EE– Web Services, Message Queuing, Tuxedo
• Windows, Unix, Linux each have their own preferred infrastructure
• Although they recognize inter-play is becoming important.
• Application Compatibility• Scalability• Security• Enterprise Class Database• Availability• Support• Integration
© 2012 Unisys Corporation. All rights reserved. 20
Development Choices.
• No one answer is right for all application or even application components
• Multiple Layers to Produce a single application
• Multiple system may even be used.
Application Components
DatabaseDefinitionWorkflowPresentation
BusinessTransaction
© 2012 Unisys Corporation. All rights reserved. 21
Development Language.
• Language Fads: – Fortran / Cobol / Pascal / C / Ada / C++ / Java– 4GL’s and Application Builders
• Choose a language based on needs and skills
• COBOL is good for Business Transaction
• But COBOL is not the best for presentation
• Java/C++ is more complex for Business Transactions
• Every language can be made to work
© 2012 Unisys Corporation. All rights reserved. 22
Is Cobol Dead?
• $2 Trillion in total investment in COBOL
• There are over 200 billion lines of COBOL code in use today (Total 310 billion lines of software – COBOL = 65%)
• Five billion lines of new COBOL code are written every year
• 15% of new applications are written in COBOL
• 34% of coding activities are in COBOL
• 80% of daily transaction are processed by COBOL
• 70% of mission critical apps written in COBOL
• 70% of the world's business data resides on mainframeswww.eweek.com 9-21-09
© 2012 Unisys Corporation. All rights reserved. 23
COBOL Today
• COBOL focuses on writing the business transactions
• Tools for creating COBOL programs on ClearPath– Programmer Workbench – Visual Studio Like Editing– Eclipse Plug-in– Integrated, Interactive Debugging– Source Control Tools
© 2012 Unisys Corporation. All rights reserved. 24
Development Choices.
Application Components
Java | Windows COBOL J2EE | .NET
DatabaseDefinitionWorkflowPresentation
BusinessTransaction
© 2012 Unisys Corporation. All rights reserved. 25
Why MISER uses Cobol and MCP
• Decades of code validation, building on a strong foundation
• Resilient Transaction-oriented Database
• Tight integration with other environments like Windows – Business logic can be in COBOL and use Unisys tools– Integration / Presentation can in done using Windows tools
• Secure Platform
• Minimal System Management
• Fast Updates / Upgrades
• 1 set of code for small and large users, now and in the future
• No need to migrate the core periodically– Source code written for MCP can run for decades unchanged– C C++ C#, ASP ASP.NET, Windows 2000 Windows 2003 …– Java 1.4 Java 5.0, Oracle 9i Oracle 10g– Industry experience shows these have been large migration efforts
• Application Compatibility• Scalability• Security• Enterprise Class Database• Availability• Support• Integration
ClearPath Forward
The New Data Center Architecture
© 2012 Unisys Corporation. All rights reserved. 27
• The NextGen strategic vision has been delivered and will provide new levels of technology over the next several years
• ClearPath Forward establishes an expanded strategic Data Center vision. Leveraging the Next Generationarchitecture, it will enable an enriched foundation to sustain ClearPath growth indefinitely
What does the future hold for ClearPath?
ClearPathForward
FS 4100
s-ParTM (Secure Partitioning)
MCP
Application Workload
Unisys Intel Platform
SpecialtyEngine
SpecialtyEngine
SpecialtyEngine
© 2012 Unisys Corporation. All rights reserved. 28
• Concurrent support for multiple operating environments including MCP, Windows and Linux
• Enterprise-class attributes enabled for non-ClearPath environments • “Single pane of glass” management across all supported operating
environments• Expanded array of development technologies• A dynamic, cloud like environment that can comprise multiple
processing elements to establish a ClearPath Forward platform managed as a single entity, enabling transparent provisioning of hardware and software resources
….Contemporary, modernization enablement technology delivering real business value
ClearPath Forward An expanded investment direction
Agile, Economical, Contemporary, Mission-Critical Computing
© 2012 Unisys Corporation. All rights reserved. 29
Mission-critical computational and data resources supported by a modular, flexible, and self-regulating infrastructure providing resources when and where they are needed
ClearPath Forward The Vision
© 2012 Unisys Corporation. All rights reserved. 30
ClearPath Forward Mission-critical Platform Vision• Solutions platform, leveraging ClearPath attributes across operating environments
- Enables integration to deliver composite applications - Simplifies delivery and administration - Ability to host multiple MCP operating environments concurrently
• New opportunities to expand mission-critical environments within the data center
ClearPathAttributes
Extend ClearPath core attributes to other operating environments
ClearPath Forward PlatformNew Data Center Vision
ClearPath NextGen
ClearPath MCP
Unisys Intel Platform
SecurePartition
Application Workload
SecurePartition
SecurePartition
s-Par
ClearPath MCP
ClearPath Forward
Any Application Workload
Unisys Intel Platform
LinuxWindows
ClearPath Forward Services
s-Par
MCP SpecialtyEngine
SpecialtyEngineMCP Windows Linux
ClearPathAttributes
© 2012 Unisys Corporation. All rights reserved. 31
Questions?