Enterprise Strategy Group | Getting to the bigger truth.TM

Posts Tagged ‘mainframe’

Why IBM Bought Guardium

Tuesday, December 1st, 2009

According to reports, IBM paid a good chunk of change for Guardium, a provider of database monitoring solutions. Why did IBM make this acquisition? I agree with many others that mainframe visibility was important but I don’t think this closed the deal. Rather, Guardium complements IBM’s efforts in:

  1. Business analytics. With DB2, Informix, and Cognos, IBM has a lot of infrastructure for business intelligence but Guardium extends its solution offering. How? By monitoring the types of queries users conduct over disparate databases and BI systems. Armed with this information, IBM can help its customers expand their analysis and gain more business value from the data.
  2. Governance, Risk, and Compliance. The holy grail here is a GRC architecture for monitoring and policy enforcement. Once again, IBM’s acquisition of Guardium strengthens the overall portfolio.
  3. Identity management. IBM is a real leader here but the next challenge is Entitlement Management. Guardium could be added to this mix for role-based access control, monitoring, and reporting.
  4. Data security. IBM wants to offer services, best practices, and tools for data security — an extremely messy area that needs enterprise attention. Guardium fits here as well.

Does it matter that Cisco was a strategic investor in Guardium? In a word, no. Cisco threw some dough at Guardium back in its mid-2000s ga-ga over application networking and “climbing the stack.” Like many Cisco initiatives, this was short-lived so I’m sure Cisco is giddy about getting an ROI on its database security detour.

All-in-all, IBM gets a market leader that fits nicely in a number of areas. I met some folks from Imperva today who were pretty happy about this acquisition and its ramifications. I’ve got to believe that Application Security, Inc., another market leader, is also anticipating a happy holiday season.

CA Enters Encryption Key Management Market

Wednesday, November 11th, 2009

CA entered the key management market this week, joining others such as HP, IBM, EMC/RSA, PGP, and Thales. CA’s announcement was relatively quiet, but it is still significant because:

  1. CA joins the KMIP initiative. CA becomes another leading technology vendor to join the Key Management Interoperability Protocol (KMIP) group within OASIS. The group hopes to have a specification ratified soon and working product next year. CA’s engineers will focus on application key management as part of a holistic key management architecture.
  2. CA anchors key management to System z. While many vendors have key management appliances, the bulk of the market activity I see remains on the mainframe. CA will support IBM’s TS1120 and 1130 tape drives, interoperate with RACF, TopSecret, and ACF2, and all the mainframe storage facilities as well. Finally, CA key management is part of its “Mainframe 2.0″ initiative to simplify and modernize mainframe operations.
  3. CA understands the link between key management and identity. Many key management leaders are focused on storage alone, while others only care about PKI. CA is one of the few vendors to play in both the infrastructure and identity side of IT. Yes, the obvious link here is PKI, but the combination of encryption, key management, and identity could also be used for entitlement management and data security. For example, a contractor may have rights to a data file for a limited period of time only before the encryption key expires.

With its focus on the mainframe, CA didn’t get much attention with this announcement, but large enterprises — especially in financial services, defense, law enforcement, and intelligence — will recognize the value here right away.

In the meantime, this announcement also helps the rest of us who care about the confidentiality, integrity, and availability of our data.

Search
© 2010 Enterprise Strategy Group, Milford, MA 01757 Main: Fax:

Switch to our mobile site