Sealpath IRM in the industrial design sector: Strengthening project management and protecting intellectual property

/in cybersecurity, News/by sixe

Industrial design is a highly competitive sector in which intellectual property plays a crucial role. Project managers in industrial design companies face challenges in managing sensitive information and protecting intellectual property. Sealpath’ s Information Rights Management (IRM) solution can be of great help in these cases and ensure the protection of critical information and successful project management.

The following are some of the ways in which Sealpath IRM can help companies engaged in industrial design and whose value depends on the proper protection of their intellectual property.

Intellectual property protection in CAD files and other documents

Computer Aided Design (CAD) files and other technical documents contain valuable information about a company’s products and designs. Sealpath IRM allows you to protect this sensitive data through encryption and access control, ensuring that only authorized users can access, edit and share files.

Secure collaboration with suppliers and customers

In the industrial design sector, collaboration between suppliers, customers and other stakeholders is essential for the success of projects. Sealpath IRM allows you to securely share files and control access to information, even after documents have been shared outside the organization. This ensures that intellectual property is protected throughout the collaboration process.

File usage tracking and auditing

Sealpath IRM provides a detailed log of file usage, including who accessed the files, when and from where. This allows project managers to monitor the use of confidential information and detect possible security breaches or misuse of intellectual property.

Facilitating regulatory compliance

The industrial design sector may be subject to various regulations and standards related to intellectual property protection and data privacy. Sealpath IRM facilitates compliance with these regulations by ensuring that confidential information is protected and accessible only to authorized users.

Integration with project management tools and CAD software

Sealpath IRM can be easily integrated with existing project management tools and CAD software, allowing project managers to protect intellectual property without disrupting existing workflows. This facilitates solution adoption and improves project management efficiency.

Integration with other business tools

In conclusion, Sealpath IRM is a valuable tool for companies dedicated to industrial design. By protecting intellectual property and facilitating secure collaboration, the solution can improve project management efficiency and ensure success in a highly competitive industry. These include:

  1. Microsoft Office: Sealpath offers native integration with Microsoft Office applications such as Word, Excel, PowerPoint and Outlook. This allows users to easily protect their documents, spreadsheets and presentations, as well as control access and share them securely via e-mail.
  2. Microsoft SharePoint and OneDrive: Integration with Microsoft SharePoint and OneDrive makes it easy to protect and control access to files stored in these cloud storage and collaboration platforms.
  3. Microsoft Teams: Sealpath integrates with Microsoft Teams to guarantee the protection of information shared in chats and collaboration channels. This integration allows users to apply protection policies directly from Teams and control access to shared documents.
  4. Google Workspace (formerly G Suite): Sealpath integrates with Google Workspace to protect documents, spreadsheets and presentations created and stored in Google Drive. Users can apply protection policies and control access to their files directly from Google Workspace applications.
  5. Alfresco: Sealpath offers native integration with the Alfresco enterprise content management system. This allows users to protect and control access to documents and files stored in the Alfresco repository.
  6. Box: Sealpath’s integration with Box allows users to protect and control access to files stored in this cloud storage platform. Users can apply protection and monitoring policies directly from the Box interface.
  7. Salesforce: Sealpath integrates with Salesforce to protect confidential information stored in the CRM platform. Users can apply protection policies and control access to data directly from Salesforce, ensuring the security of customer information and intellectual property.

Interested in the solution?

Contact us and request
request a demonstration right now

The most common mistakes when refurbishing or acquiring storage

/in Data Center, News/by sixe

Five years have passed and it is time to renew the storage. What are the most common errors?

The renewal of enterprise storage systems is a critical, complex and costly decision that should be approached with great care. It is common for mistakes to be made when planning and carrying out this type of project and in this article, we will discuss those that we encounter most frequently in our new clients.
in our new clients
.

1. Incorrect sizing

One of the most common mistakes when renewing enterprise storage is to underestimate or overestimate the capacity (in TB, throughput and response time) of storage needed. Incorrect sizing can result in underinvestment or overinvestment in enterprise storage. We all know that an NVMe solution is faster than an SSD solution, but do we need it? And for 100% of the data? At what price? Are the servers capable of reaching the bandwidth allowed by the cabin? (hint: in 95% of the cases no). But of course, in order to know this, it is advisable to carry out a previous sizing or audit, which has a very small cost in comparison with the acquisition of the cabins and what we can save. Hurries and offers for tomorrow are not good traveling companions in this type of projects.

Failure to forecast the cost for at least 5 years.

One of our customers purchased cabins from one of our favorite manufacturers years ago. It was extremely powerful and the price was very attractive. Two years later, they wanted to add records (they bought it with the bare minimum) and the list price of the records exceeded one million euros. Moreover, all the exercises showed that it was more economical to buy a new, lower-end cabin with more than enough performance and storage than to expand the existing one. Absurd? No, a very common commercial malpractice among companies without their own technical staff. Just as we get printers for free, similar things happen with many other HW components. Switches that are licensed per activated port, firewalls whose price varies according to the users that connect and thousands of other tricks to hide the costs in the medium and long term, as well as the dependencies generated and the obligation to buy additional servers and cabins every few years. Although all manufacturers do it, with the right advice it is often possible to turn it around and at the time of purchase to get at a very interesting price everything we need while the machine works.

3. Not knowing the life cycle of the machines (how long they will be maintained).

Another common mistake is not understanding the life cycle of the machines and not knowing how long maintenance services will be available. It is essential to take into account the useful life of the disk cabins and the availability of technical support and maintenance services in the medium and long term. Many times systems at the end of their marketing cycle are heavily discounted… but also during their launch. The latter allows us to use them for a much longer period of time, significantly reducing the annual cost. If we buy a booth that is going to be withdrawn from marketing soon, it may be that when we have put it into operation it will only have the minimum years of support left and after 5 years the only alternative is to support it ourselves, order the failed parts from international brokers or buy a new one. If we have purchased a system that has been on the market for a short time (but long enough for others to have tested it and experienced its first failures) it will be easy to extend the maintenance for 6, 7 or even 10 years, which is usually the top of its usual life cycle. Sales people from non-technical companies will tell you “you couldn’t tell” or that “it’s IBM / HP / Dell / Hitachi’s fault” but it’s not true. We have to know what we are selling and inform our customers in an honest way about the pros and cons of each new infrastructure we propose to acquire.

4. Not knowing the compatibility matrices with the operating systems.

Another common mistake is not considering the compatibility of enterprise storage with existing operating systems. It is essential to ensure that the storage is compatible with existing operating systems and that if we must upgrade, we do so prior to the implementation of the new storage. This is especially relevant when operating systems are out of support due to lack of preventive maintenance service. Maybe the new booth supports Red Hat or Windows, but not the production version because all new hardware requires drivers that would rarely exist before. Time travel doesn’t exist for operating systems either, and a 2008 Windows is likely to have compatibility issues with a 2023 cockpit.

5. Failure to anticipate the impact of migrations from existing production environments.

Finally, another common mistake is not anticipating the impact of migrations of existing systems on the storage we have renovated. It is important to carefully evaluate the existing systems to be migrated and understand how they will be integrated into the new storage solution, who will handle these professional services and what impact they will have on our organization or business.

6. Not having a trained technical team or L2-L3 support to call upon.

Many customers buy storage systems but do not have the time to be trained on them and do not have external technical support services to turn to, thinking that in case of any problem they can turn to the manufacturer because they already pay for support for these systems, when this is not always the case, especially if the system is working properly and the problem, although closely related, is something else.

7. Relying on companies that do not have technical teams and whose business is based on high margins on SW and HW sales.

Unlike our competitors, at Sixe Ingeniería we will always be on the side of our customers, because we live mainly from training, consulting and technical support. Services that we complement with the sale of HW that we normally help to maintain, so we are the main interested parties in ensuring that the solutions are ideal in the medium and long term. In addition, as a reference partner of IBM and Lenovo, we can offer you significant discounts, we know most types of critical environments very well and we are technology agnostic, although we have our preferences based on our experience. Contact us!

sap ha

IBM Power10 servers for SAP HANA at unbeatable prices

/in Data Center, News/by sixe

IBM has released its latest offering on high-performance Power10 servers for SAP HANA, which is based on its range of single and dual-socket servers with between 2TB and 6TB of RAM at discounts of nearly 50%.

SAP HANA works thanks to a design where the real-time processing and analysis of large volumes of data is performed entirely in memory, guaranteeing a much improved performance compared to classic SAP environments. HANA helps companies around the world manage critical data and make business decisions based on accurate, real-time information.

What does IBM Power10 bring to the table?

IBM Power10 is the first server to offer native support for SAP HANA, making it an attractive option for companies looking to deploy this platform. With its ability to handle large volumes of data and perform real-time analysis, the Power10 can significantly improve the efficiency and effectiveness of business operations.

Read more

“The salesperson tricked me” or why you need a Technology Radar service.

/in cybersecurity, News/by sixe

The title of this article, “The salesperson tricked me,” is one of the most common beginnings of our conversations with new customers. Large projects with little return, if not omitting key information that if known would have changed the course of strategic technology decisions. Incredible specifications where someone forgets about the professional services necessary for the solution to be implemented, or the correct training of the personnel who will operate it in the coming years. Read more

Alma & CentOS Linux on IBM Power servers

/in News/by sixe

Over the past two years, the CentOS project, a community Linux distribution based on and binary compatible with Red Hat, has undergone continuous changes. As with other free software projects, this popular (and stable) distribution, used by companies and organizations around the world, became a “development version” of Red Hat Enterprise Linux. The same goes for oVirt vs RHEV or Foreman + Katello vs Satellite. In return, Red Hat offers free licenses for small deployments and has expanded educational subscription options.

What happens with CentOS Stream?

It is not that CentOS Stream is no longer stable, or that its users unwittingly become beta-testers . of Red Hat Enterprise, but fundamental aspects were changed. Until now, when Red Hat released version X, a few months later, the same versions of the same packages were compiled, creating a “clone” with the same functionality for those who did not need enterprise-level support. This is no longer the case (updates and changes become more frequent) and, all over the world, users are wondering what to do. CERN in Switzerland, for example, has decided to stay with CentOS Stream for the time being. Perhaps because it is better the devil you know than the devil you don’t… but that’s another story.

In parallel, Ubuntu, Red Hat and SUSE offer all their repositories for x86 but also for ARM and ppc64le (Linux on IBM Power), so we were very interested in testing if these new CentOS heir distributions were being compiled for these architectures and if we could migrate to them from CentOS Stream. If so, we believe it could be a good incentive for customers who have (or are considering acquiring) IBM Power servers to give this technology a chance, which, if deployed successfully, not only achieves much better performance per core, but also greatly reduces licensing costs and the hours required for technical maintenance.

Alma vs CentOS, Rocky and Oracle Linux

In this table we have the distributions based on Red Hat that we can (or will) install on IBM Power, and their fundamental characteristics.

Benchmarking against RHEL AlmaLinux Oracle Linux Rocky Linux CentOS Stream CentOS Linux
Available from March 2021 2006 June 2021 2019 2004
1:1 binary compatibility with RHEL Yes Nearly *
(changes in glibc, openssl…)		 Yes ACG limits apply. Yes
Updates every Daily Daily Daily RHEL Upstream Daily
Life Cycle 10 Years 10 Years 10 Years 5 Years EOL on 2021-12-31
Commercial support Third parties Oracle, third parties Third parties Third parties Third parties
PowerPC support Yes Yes Not yet Yes Yes
Support for s390x Not yet To be decided To be decided Yes Yes
Property of: AlmaLinux OS Foundation Oracle Inc Rocky Enterprise Software Foundation Red Hat Inc Red Hat Inc
Type of owner’s organization Non-Profit 501(c)6 For Profit C-Corp For Profit, Public Benefit Corp For Profit C-Corp For Profit C-Corp

As you can see, if we are looking for an alternative to CentOS Linux for Power, AlmaLinux seems to be the most interesting option and with 10 years of updates in each version.

Testing AlmaLinux (ppc64le)

In order to write this article we have done two types of tests. The first one was to install AlmaLinux from the AlmaLinux DVD on a Power8 server. As you can see, beyond booting from the LPAR SMS, the installation is the same as on an x86 system.

What if we want to migrate from CentOS Stream to AlmaLinux?

There is a script that you can download here, which we downloaded in a second environment with a freshly updated CentOS Stream.

$ wget https://raw.githubusercontent.com/AlmaLinux/almalinux-deploy/master/almalinux-deploy.sh

It is necessary to edit this script before executing it

$ vi almalinux-deploy.sh

And modify the next line, where it verifies the architecture because ppc64le IS SUPPORTED and we have all the software packages available (we are going to check it).

Next we run the script, which you will probably need to launch with the -d option to downgrade from the current version of CentOS Stream to AlmaLinux 8.X (it will always be somewhat older than the latest CentOS Stream).

 

And then you can install epel-release and the rest of the repositories with additional software as you would in any x86 environment.

Being an IBM Power environment, it is advisable to install the software packages that add functionality (based on AIX commands) to be able to correctly manage all the HW, access the HMC console and be able to make configuration changes without rebooting the systems.

$ yum install wget
$ wget ftp://public.dhe.ibm.com/software/server/POWER/Linux/yum/download/ibm-power-repo-latest.noarch.rpm
$ rpm -ivh –nodeps ibm-power-repo-latest.noarch.rpm

Here, once again, you have to edit the configuration script to make it work in AlmaLinux. You will see that there is an exit 1 if it is not centos/suse/redhat that we are going to modify to look like this

$ vi /opt/ibm/lop/configure

$ chmod +x /opt/ibm/lop/configure

$ /opt/ibm/lop/configure

Install the epel repository (contains a lot of additional software)

$ yum install epel-release

And we can see how the new repositories are already active

$ yum repolist

migra

We download the PowerVM utilities for the Linux LPAR to be managed from the HMC.

$ yum install src ksh rsct.core devices.chrp.base.ServiceRM DynamicRM

And restart the RMC services (which are used to add or remove memory and cpu dynamically).

$ /usr/bin/rmcctrl -z
$ /usr/bin/rmcctrl -A
$ /usr/bin/rmcctrl -p

The final test

We are going to use a script of several lines to deploy a web server, database and a WordPress site.

$ wget https://github.com/UncleDan/linux-scripts/blob/master/wordpress-centos8.sh

$ bash wordpress-centos8.sh

We entered our IP with the browser and Wodpress worked! This is something that two years ago we could not say would work with this security. We are happy to see that a lot of progress has been made and that ppc64le application support is becoming more extensive and complete. We encourage you to try it out without the need to invest in new licenses.

What other applications and services can we deploy on Linux on IBM Power?

To finish this article we leave you a list of applications available in OpenShift for Power and that are therefore fully supported in any Red Hat based distribution, such as AlmaLinux and CentOS. What are you waiting for to try it?

Operating systems under containers (docker / runC)

+ Red Hat
+ CentOS
+ SUSE
+ BusyBox
+ AlpineLinux
+ Ubuntu
+ Debian

Middleware

+ WebSphere Liberty
+ Open Liberty
+ Apache Tomcat
+ ActiveMQ
+ JBoss
+ WildFly
+ RabbitM
+ WordPress

Languages

+ Jenkins
+ Ansible
+ Kubernetes
+ Red Hat OpenShift
+ Gradle
+ Maven
+ Terraform
+ Travis CI
+ Python
+ Java
+ PHP
+ GoLang
+ OpenJDK
+ NodeJS
+ R
+ Ruby

 

Databases

+ MongoDB
+ Redis
+ MySQL
+ Cassandra
+ MariaDB
+ PostgreSQL
+ Memcached
+ IBM Db2

Analytics & AI

+ Grafana
+ Kibana
+ Elasticsearch
+ Logstash
+ Fluentd
+ Kafka
+ IBM Watson Studio
+ IBM Watson ML

Storage

+ Container Storage Interface
+ IBM Spectrum Virtualize
+ IBM PowerVC CSI Driver
+ NFS

Communications

+ Prometheus
+ Nginx
+ Apache HTTP Server
+ ZooKeeper
+ HAP oxy
+ etcd

 

Myths, truths and our take on IBM Cloud Paks

/in Data Center, News/by sixe

With IBM’s purchase of Red Hat, the entire portfolio of software solutions for cybersecurity, applications, databases, automation and hybrid cloud management has been ported to OpenShift under the brand name
IBM Cloud Paks
. This means that many of these applications have been redesigned and adapted to run on top of containers (although some, such as QRadar, have been doing so for years) and be controlled by Kubernetes, which is the container orchestrator on which OpenShift is based.

How are IBM Cloud Paks deployed?

IBM Cloud Paks are installed on a PaaS environment with OpenShift both in own data centers on IBM Power Systems, VMWare, KVM (RHEV / LinuxONE) and in public clouds of Microsoft (Azure), IBM, Amazon (AWS) and Google (GCP). Thanks to IBM Satellite, it can be deployed in a combination of on-premises and cloud resources, through a flexible hybrid architecture. Our
professional services department
 can help you.

How are IBM Cloud Paks licensed? How much do they cost?

This is perhaps one of the least known and, in our opinion, most controversial parts. IBM has always sold perpetual licenses for all its software solutions. These licenses come with a basic technical support for HW incidents and a more advanced one for SW (SWMA) that can be renewed typically every 3 years. By moving to a cloud environment we are moving towards pay-per-use systems, which are very scalable and sometimes, to be honest, very expensive. complicated to estimate. For example, Data has these prices per “virtual core”. That is, from a few hundred dollars to a few hundred thousand… :)

This has obvious advantages for solutions where it makes sense to keep renewing support, as is the case with open and extremely complex solutions such as those based on micro-services and containers. Customers who are not comfortable with this model can continue to purchase appliances or licenses to deploy many of these solutions in their infrastructure for a one-time payment and optional support to be renewed every several years. In others, this is the only model as they are native solutions for Kubernetes and Cloud based environments.

Do I need to have OpenShift to install an IBM Cloud Pak?

Short answer: yes. However, if you don’t have it, you can deploy it without too many problems thanks to the installers included in the latest versions both in your own infrastructure and in an external one (IaaS) from your favorite cloud provider.

Are IBM Cloud Paks worth it?

As a good free verse that we are in the systems integrators sector, we think that some do, and others not so much (at least for now). It depends on their intended use, the dependency we have with other applications and the level of maturity in the adoption of containers and the use of Kubernetes in our organization. If we are starting out with Dockers, OpenShift and Cloud environments, perhaps it is better to stick to a good
digital transformation and modernization plan
 rather than “putting the cart before the horse”.

Are there IBM Cloud Paks courses or training?

In order to take advantage of this technology you need to master both the infrastructure (OpenShift) for which there is official training offered by Red Hat, and an intensive hands-on workshop developed by ourselves. Once the infrastructure is under control you will need to train on the different IBM products and solutions you are interested in, as they are collections of Software grouped by category and licensed together. The Cloud Pak for Security, for example, is primarily IBM QRadar SOAR Platform while the Cloud Pak for Applications includes the entire Websphere suite.

That said, if you want,
we speak
.

 

New Cybersecurity Analyst Certification with QRadar SIEM 7.4.3

/in cybersecurity, News/by sixe

Just came out of the first of the new IBM QRadar SIEM certifications. As always, they have started with the simplest one, the analyst. It is intended for professionals who wish to validate their knowledge of QRadar SIEM in version 7.4.3. The exam is C1000-139, entitled “IBM Security QRadar SIEM V7.4.3 – Analysis” and the certification obtained is“IBM Certified Analyst – Security QRadar SIEM V7.4.3“.

As you know (and if you don’t, we’ll tell you about it) the main novelty in version 7.4 is the change of user interface. They have been including control and monitoring panels to improve the visibility of security incidents with specific mappings to methodologies such as MITRE ATT&CK. It is a way to standardize incidents, give a bit of abstraction to the product, provide us with a higher level view of what is happening, beyond the specific rules that have been applied and the chains of events that have been generated.

As prerequisites (not part of the exam) it is necessary to be proficient:

  • SIEM concepts (what it is, what it isn’t and what it is for)
  • Master TCP/IP network theory
  • Have a good knowledge of computer security terminology.
  • Learn about the different QRadar modules and plugins such as Network Insights or Incident Forensics.

Why are we asked in the exam?

  • Analysis of security offenses and events (logs, network flows, etc.)
  • Understanding of reference data listings (sets, maps, tables, etc.)
  • Mastering the rules and building blocks
  • Know how to search in reports, create them from scratch, program them, modify them, etc.
  • Have a basic knowledge of QRadar architecture, fundamentally its components, licensing and configuration at the network level.
  • Finally, multi-domain and multi-client configurations, which seem to be becoming more and more fashionable, have a dedicated section in this review.

Do I have to recertify?

In our opinion, if you are certified on versions 7.2.X or 7.3.X there is no need to re-certify. Another thing is that your company requires it to maintain a certain level of partnership with IBM or it is a requirement for a public tender. However, if you are going to get certified, take advantage of it and do it when the new versions are released.

When will the rest of the certifications in 7.4.2 be released?

Between this quarter and next quarter, the “administrator” and “deployment professional” will be released. The differences between all of them were covered some time ago in this article. Although the versions change, the types of exams and their objectives are the same.

Can you help us with QRadar?

Of course, we offer training, professional services, support and we also sell and renew your licenses. Contact us and let’s talk.

Upgrade your IBM Power9 or your LPARs may not start up.

/in Data Center, News/by sixe

We often overlook the need to perform preventive updates not only of the operating system (AIX, Linux, IBM i) but also of the FW of IBM Power servers. IBM publishes fixes for problems that other customers have experienced and it is usually not necessary for you to do so as well. In doing so, we keep our systems secure from all types of external and internal threats and vulnerabilities.

The problem we talked about in this short article is a bug that prevented LPARs from booting on Power9 servers if they had been running for more than 814 days. It sounds a bit like the printers of a few years ago that failed to print several hundred thousand pages, we never know if on purpose or by mistake. In the case of IBM it is a recognized firmware bug that is fixed with the update VH950_045_045 / FW950.00 available from November 23, 2020. So if you are an IBM customer where in the last two years, your aging Power9 systems have not been upgraded, you are likely to have this problem for the remainder of the year.

We give you a hint, the error is CA000040 which prevents the LPAR from booting and whose temporary solution could be to use the Power8 compatibility mode from the HMC or ASMI while you install the pending updates.

At Sixe Ingeniería we have been preventively maintaining our clients’ IBM Power systems for more than 15 years.
We can help you monitor, update and preventively maintain your entire infrastructure.
 IBM and Lenovo server and storage systems. We also help you minimize licensing costs and offer the best prices on upgrades to new generations of IBM Power servers. Contact us for more information.

We installed and tested the new IBM AIX 7.3

/in Data Center, News/by sixe

After joining IBM’s OpenBeta program, we have been able to download and test the new version of AIX 7.3, which comes on its 35th anniversary.

Among its novelties, the following stand out:

  • Python and Bash frameworks that work directly with AIX, we won’t have to reinstall them manually!
  • Support for the dnf command (standard in Red Hat) for installing open source packages from the AIX Toolbox. AIX has been speaking Linux for a long time, but since version 7.3 it is becoming more and more integrated, providing developers and system administrators with all the features needed to modernize UNIX environments.
  • Reduced time to dynamically add processors/memory to a running LPAR, helpful for LPARs with databases using hundreds of GB or several TB of RAM. This is coupled with the reduction of IPL times for this type of partitioning.
  • pigz and zlibNX commands now transparently use NX GZIP acceleration in Power9 and Power10
  • Enhanced support for logical volume (LVM) encryption to include rootvg and dump device.
  • The TCP protocol stack now supports CUBIC, a TCP network congestion avoidance algorithm that can get high-bandwidth connections across networks faster and more reliably.
  • Additional IP security enhancements (IPsec)
  • Possibility to create an OVA file from an mksysb using the create_ova command in order to speed up cloud (PowerVS) and hybrid deployments.
  • Creating an ISO image from the new command mksysb_iso
  • Integration with the new IBM Open XL C/C++ and Fortran compilers
  • Increased file size and file system size
  • Improved Ansible and Ansible Tower support
  • PowerVC 2.X Integration

 

Meet the new IBM Power10 and AIX 7.3 Servers

/in Data Center, News/by sixe

The Power of 10

September 8th is the date of the official announcement of the new IBM servers with Power10 processors, which will be followed by the announcement of the 7.3 version of AIX, which will be 35 years old in 2021. Considering the technical features available we know that they incorporate DDR5 memory, a PCIe 5.0 interface and that they are designed using 7nm technology from Samsung. The Power10 processors will once again come in two flavors. One with 15 cores in SMT-8 mode (ideal for AIX and IBM i) and others with 30 cores and SMT-4 for Linux-only workloads. The Power10 chips also incorporate major enhancements for Artificial Intelligence (AI), allowing Machine Learning loads to run up to 20 times faster than POWER9.

One million SAPS. Infrastructure matters a lot.

As usual, the first systems to be announced will be scale-up systems designed for highly virtualized environments with resource-intensive applications such as SAP HANA. Published benchmarks indicate that 1 million SAPS are achieved with 120 cores, which is half the number of cores needed in the previous generation of Power9 in E980 servers. Compared to current third-party servers available this year, HPE achieved about 670,000 SAPS (which equates to about 120,000 concurrent users) using 224 cores in its Superdome Flex 280 based on Intel’s most powerful processors (the Xeon Platinum). For those of you that this doesn’t tell you much, the other reading is that the performance per core has continued to improve a lot while the rest of the manufacturers keep it stagnant by adding other complementary hardware (flash memory, more cores, etc).

All the memory you need

The arrival of “Memory Inception” technology allows you to create clusters of systems that share memory between them, being able to reach several Petabytes of RAM available for the same environment divided into several physical servers. This positions IBM as a leader in the development of hardware technologies for application clusters on Red Hat OpenShift. Soon to be announced are the “medium” two and four socket servers where we will be able to continue to deploy mixed IBMi, AIX and Linux environments well.

End-to-end encryption

We cannot end this article without mentioning one of the key features of the IBM Power platform, which is data security. The new processors incorporate four times more AES encryption components to anticipate the needs of cryptographic standards coming in 2022 such as quantum-safe cryptography or fully homomorphic encryption. All of this applies to new container-based workloads where security has become the primary concern of the organizations that use them.

AIX 7.3, UNIX beyond 2030

Although it will give for another article, with the arrival of Power10 will be announced the new version of AIX, which will be the 7.3, which has not happened since 2015. Numbering is a matter of marketing. If IBM had chosen to call this version 8.1 it would have perhaps, generated doubts about whether the new features impacted stability for existing applications, but like any new version it incorporates many interesting new features. Today we continue to deploy new environments on AIX, as well as migrating others from Solaris, HP-UX and even Linux.

In all of our large and medium-sized clients there is a part of their productive environments where the information that keeps their business and internal processes alive is processed. Where do you install Oracle, DB2, SAP, SAS, etc? In AIX. No other UNIX-like operating system offers the same maturity, stability, performance and scalability. It is a modern UNIX, with great compatibility with modern applications such as Chef, Puppet, Ansible and that coexists wonderfully with other environments based on Linux, IBM i or Z/OS which has a lot of life ahead and the new version 7.3 is good proof of this. It also has three big advantages for departments and system administrators: everything works (vs that beta-tester feeling so ingrained in Linux), they run on the most stable and robust servers out there (except for the Mainframe) and you learn only once, instead of every time a new version is released: we all remember that moment where “ifconfig -a” stopped working in Red Hat :)

Time to renew equipment, licenses… and to upgrade

With the arrival of a new processor technology, the “sales” begin at IBM. If you have Power7 or Power8 equipment whose maintenance contracts are about to expire (or are already out of support) and you are considering whether or not to renew them, count on our help. We advise you on how to save a lot of money with our audit services and renewal of licenses, take advantage of 100% of IBM Power equipment that you have and we offer you at cost pricenew Power9 servers and soon Power10.

Need technical support?

At Sixe Ingeniería we offer technical support and preventive maintenance of AIX and Linux on Power Systems directly and without intermediaries. We will be happy to help you.

SiXe Ingeniería
×