Upload
others
View
7
Download
0
Embed Size (px)
Citation preview
© 2011 IBM Corporation © 2011 IBM Corporation
IBM Managed File Transfer Portfolio KR Maheshwari IBM ISL- B2B Sterling Commerce Labs (Industry Solutions)
OCTOBER ’2012
© 2011 IBM Corporation
Agenda
MFT - Need for Managed File Transfer Solution
SFG – IBM Sterling File Gateway
WMQFTE – IBM Websphere MQ File Transfer Edition
C:D - IBM Sterling Connect Direct
SCC – IBM Sterling Control Center
SSP – IBM Sterling Secure Proxy
2 IBM Confidential. For Internal Use Only.
© 2011 IBM Corporation
Demand for “operational excellence”
4
An ongoing evolution and adaptation of systems and processes that results in reduced cost and waste without negatively impacting time to market, quality of delivery, and cost of services or products.
Delivering as promised to customers (both
businesses and consumers) and keeping
costs under control.
Continual collaboration and process improvement.
Traditional Methods of FTP centered Home Grown solutions alone is not the viable option to achieve this…
© 2011 IBM Corporation
What’s blocking you from achieving operational excellence in your practice?
5
Auditability Are your file transfers auditable? ~OR~ Do you have difficulty in proving compliance to
business and regulatory audit requirements with a high degree of confidence and a low resource expenditure?
Monitoring Can you easily answer questions about file transfer volumes, success rates, and file
transfer status? ~OR~ Are you unable to provide, or track, file transfer SLAs or chargeback metrics for Lines
of Business (LOB) or customers?
Management Are you able to roll out file transfer services to new LOBs or customers when
requested? ~OR~ Are you missing an easy way to manage growth in a way that balances business
requirements, cost controls, and accelerating deployment times?
© 2011 IBM Corporation
Typical Vs Ideal MFT Topology
6 IBM Confidential. For Internal Use Only.
Many protocols, Technologies
Technicians scramble to maintain disparate system
Hard to control usage & monitor activity
The ability to secure files in transit Common reliable transport protocol
Granular user control over file transfers Automation
Monitoring of a file’s journey Centralized monitoring
Auditing of transfers Event-based centralized audit logging
Visibility to the core Centralized mgmt, setup, config, etc
Checkpoint restart / recovery of transfers activity
Flexibility in file transfers Documented standardized solutions
TP Management
Hardened security for DMZ deployment offering Business-to-business governance and security
Broad range of business-to-business and transport protocol support
User interface for configuration and transaction viewing
Interface for trading partner transaction viewing
Assured delivery with automatic resend
© 2011 IBM Corporation
Sterling File Gateway Solution Footprint
Sterling File Gateway
SMTP
EDIINT (AS1, AS2)
FTP, FTP/S
HTTP, HTTP/S
SFTP
SOAP
WebDAV
EDI / XML
RosettaNet
Airlines
Vendors
Value-Added Networks
Communication Services
Web Extensions
Integration Broker
Mailbox
Intelligent routing
Graphical Modeler
Collaboration
Exception Handling
Sterling Integrator Technology
CRCRM ERP Messaging ERP Messaging
Messaging
Legacy/Custom Apps
Applications
Databases
EAI Adapters
Sterling File Gateway
Trading Partner Management Business Visibility Routing Channels Role Based
Access Producer and Consumers
Secure Partner
Interface Routing Channel
Templates
8
© 2011 IBM Corporation
Simple usecase : Upload file using myFilegateway and deliver using FTP SSL Very simple scenario - partner has no access to FTP/SFTP client software so uses a
browser to upload the file
Internally the file is transferred to an FTP SSL server
No additional processing – upload file through MyFG and deliver using FTP SSL
9 IBM Confidential. For Internal Use Only.
© 2011 IBM Corporation
IBM WebSphere MQ File Transfer Edition
10 IBM Confidential. For Internal Use Only.
Enables reliable, secure and traceable file transfers over a WebSphere MQ infrastructure inside an enterprise What it does
–Transmits high-volume, any size, high-performance file transfers –Centralizes mgmt of file transfer environment –File is transferred over MQ network –Leverages MQ’s reliability with check-point restart –Multi-threads transfers to transact multiple files at a time –Audit information collected during transfer can be stored in a audit database
How it is delivered
–Client-server application optimized for high volume, assured data delivery; Peer-to-peer “protocol” –Well defined API that supports multiple clients and schedules jobs on a one-time, recurring, or continuous basis –A protocol invented by IBM Sterling that has never been breached
© 2011 IBM Corporation 11
Works on proprietary protocol that has never been breached A key component of the IBM® Sterling Managed File Transfer solution
IBM Sterling Connect:Direct Its the leading solution for secure, point-to-point file transfers. Acts as file-based middleware integration with 24x7x365 unattended operation Provides assured delivery, high-volume, and
secure data exchange within and between enterprises Optimized for high performance and throughput Can move files containing any type of data (text, EDI, binary, digital content, image) across multiple platforms, disparate file systems, and disparate media
© 2011 IBM Corporation
IBM Sterling Control Center
Configuration Manager (CM)
(for IBM® Sterling Connect:Direct®)
Are my servers configured correctly? Do they comply with policy?
Asset Manager (AM)
Where is my software installed and running? Is it in compliance with license agreements?
Service Level Manager (SLM)
Where is my file? Where are my business processes?
IBM® Sterling Control Center (SCC) Monitoring and management Change control Reporting
FTP Servers IBM® Sterling File Gateway
IBM® Sterling B2B Integrator
IBM® Sterling Connect:Direct®
IBM® Sterling Connect:Direct ®
It provides visibility, monitoring, and management across the IBM® Sterling Connectivity and Integration portfolio
© 2011 IBM Corporation
IBM Sterling Control Center Mobile
Status dashboard – Summary views for server status, adapter status and alerts
with on demand refresh
Status drill-downs – From the dashboard drill down into detail screens for
servers, adaptors and exceptions
Manage interactions – Direct access to initiate a call or e-mail the server owner
with the ability to comment and/or handle an alert
13
© 2011 IBM Corporation
With IBM Sterling Control Center you can make the leap to operationally excellent MFT
14
• Fewer resources are required to support MFT because of centralized consoles, reduced platform-specific skill requirements, and management by exception
Improve operational efficiencies
• Proactive monitoring and notifications provides an early warning system for key file transfers and business processes, ensuring you can respond to issues before they become critical
Reduce interruptions of key business processes
• Centralized data that is easily accessible requires fewer time and resources to respond positively, and with a high degree of confidence
Increase compliance to audit
requests
• Tools enable and accelerate consistent and compliant rollout of managed file transfer capabilities
Support growth plans for the
business
© 2011 IBM Corporation 15
SSP security protects your data movement infrastructure
Security IBM® Sterling Secure Proxy
Batch
B2B
Unmanaged
Man-in-the-Middle Attacks
Denial-of-Service Attacks
Eavesdropping
© 2011 IBM Corporation 16
IBM® Sterling Secure Proxy enforces SSL session breaks and SSL authentication in DMZ
Trusted Zone DMZ
SSL Session with trading partner
Separate SSL Session with endpoint in trusted zone
SSL Authentication takes place in
DMZ
IBM® Sterling B2B Integrator
IBM® Sterling Secure Proxy Trading Partner HTTPS
Trading Partner FTPS
Internet
Trading Partner HTTPS
© 2011 IBM Corporation 17
Flexible deployment options for single and multi tier DMZs
Trusted Zone DMZ 2
IBM® Sterling B2B Integrator
DMZ 1 DMZ 3
Trading Partner HTTPS
Trading Partner FTPS
Internet
Trading Partner HTTPS
IBM® Sterling Secure Proxy
IBM® Sterling Secure Proxy
IBM® Sterling Secure Proxy
© 2011 IBM Corporation 18 IBM Confidential. For Internal Use Only.
A comprehensive solution: IBM MFT Portfolio
Whether • Batch • B2B • or Unmanaged
Whether • In motion • At rest • or Internet
Whether • Regulatory • Policy • or Audit
Whether • Provisioning • Transport • or Error recovery