Addressing OLTP Solutions with CICS: The Transaction Server ... - Ibm

More documents

Recommendations

Info

9.3.5 High Availability The drawback of performing state management on your Web server is that the operating system environment may not be as well suited to this function as the CICS environment. State management is not a new problem for the traditional OLTP environment. CICS provides a variety of facilities that can be used to manage information about the state of processing for ongoing transactions, most of which are designed to make it easier to write pseudo conversational applications. CICS Server State Information: Using CICS temporary storage is a common method of storing information about the state of processing. Naming conventions can be used to allocate unique identifiers to each CICS temporary storage queue. One of the most common techniques used to allocate unique identifiers is to incorporate the CICS terminal identifier in the temporary storage queue name. When a CICS terminal-oriented transaction ends, the next transaction to be run at that terminal can be specified either by the CICS program on its EXEC CICS RETURN statement, or in the CICS terminal definition for that terminal. Managing information for the Web environment differs from managing information for the normal CICS environment in one important respect. In the traditional 3270 CICS environment, transactions are terminal-oriented. CICS associates information about the state of processing with a particular terminal, and many of the state management facilities that CICS provides are terminal-oriented. In the case of Web transactions that have been initiated through CICS DPL, no terminal is associated with the transaction, so these state management facilities cannot always be used. We therefore have to look at alternative methods of managing information about the state of processing for Web transactions (or for any other DPL or ECI application that does not have an associated terminal) that have save information about the state of processing across transactions. Few Web servers run mission-critical applications, at least not yet, and when a Web server is unavailable for any reason, it is unlikely to prevent a major organization from carrying on its function. Many OLTP systems run mission-critical applications, however, and, when down, can prevent an organization from operating normally. Not surprisingly, OLTP systems such as CICS include high-availability features that enable them to recover from failures as rapidly as possible with minimal disruption to users. 9.4 Security Issues on the Internet 140 CICS for AIX as the Transaction Server When you place information on the Web or the Internet, you must think about the security of that information. The Internet is not designed to protect confidential or sensitive information. Internet providers and users are not regulated. Anyone can use the Internet or become an Internet provider. Internet users have no control over the path across which their information flows. Since the Internet is a cooperative, shared participation network, there is nothing to prevent reading, copying, or changing information. There is no guarantee that information will ever reach its destination. Computers connected to the Internet can be accessed by anyone. Unless some form of security is used, both
information being communicated and resources used for communication are unprotected from mischief or malice. In general, OLTP systems are built on private networks where you can more easily protect the privacy of your data. However, as business use of the Internet grows and more and more private networks are linked to the Internet, the need for secure communications and networks grows as well. Internet Security actually consists of two distinct services: network security and transaction security. Network security: Network security refers to a corporation′s ability to protect its computers, memory, disk, printers, and other computing equipment from unauthorized use. Network security protects against attackers who try to access information or gain control over machines or resources within a private network. The most common way of protecting private networks connected to the Internet from attacks is with firewalls, single points of connection between a private and public network that allow communications between them to be monitored and secured. Firewalls differ in their implementation and the degree of protection they offer. The most common types of firewalls are: • Screening filter, which uses a router to connect the private network to the Internet. The screening filter monitors each IP packet flowing through it, controlling access on both sides. A screening filter cannot control access at the application layer, however. • Bastion, a machine placed between the private network and the Internet that breaks the connection between the two. The bastion relays messages to or from authorized users and denies access to all others. Bastions can control access at the user or application layer, but they can be costly if many users are supported. If an attacker can impersonate an authorized user, the attacker can get into the private network. • Dual-homed gateway, which combines a screening filter and a bastion into either a single machine or a series of machines. The gateway can be complex and make it hard to find attackers. Alternatively, screening filters can be used to protect bastions, or a combination of screening filters and bastions can be used to tailor protection to the subnet or resource being protected. A more detailed discussion of Internet firewalls is beyond the scope of this book. For information see the following URL: http://www.raleigh.ibm.com/icf/icfprod.html Transaction security: Transaction Security refers to the ability of two entities on the Internet to conduct a transaction privately, and with authentication through digital signatures if required. There are two aspects to transaction security: • Authentication. For some users of the Web (in electronic commerce, for example) it is important that users authenticate themselves to Web servers, that Web servers authenticate themselves to users, or that both authenticate to each other. Whatever the form of authentication, it must not be easily compromised. • Encryption. For applications in which Web clients and servers exchange sensitive information, such as userid and password pairs, credit card details, Chapter 9. Accessing CICS from the Web 141
Page 1:
Addressing OLTP Solutions with CICS
Page 4 and 5:
Take Note! Before using this inform
Page 6 and 7:
iv CICS for AIX as the Transaction
Page 8 and 9:
9.4 Security Issues on the Internet
Page 10 and 11:
viii CICS for AIX as the Transactio
Page 12 and 13:
x CICS for AIX as the Transaction S
Page 14 and 15:
xii CICS for AIX as the Transaction
Page 16 and 17:
The Team That Wrote This Redbook xi
Page 18 and 19:
xvi CICS for AIX as the Transaction
Page 20 and 21:
2 CICS for AIX as the Transaction S
Page 22 and 23:
1.2 Complex OLTP Business Environme
Page 24 and 25:
Figure 2. OLTP Complex for XYZ Insu
Page 26 and 27:
By using common application program
Page 28 and 29:
1.5 OLTP Market 10 CICS for AIX as
Page 30 and 31:
Figure 5. OLTP Market Segmentation
Page 32 and 33:
14 CICS for AIX as the Transaction
Page 34 and 35:
2.1 IBM Software Servers 2.1.1 Lotu
Page 36 and 37:
2.2.1 CICS Clients V1.1.0 A Transac
Page 38 and 39:
2.2.4 CICS Internet Gateway for AIX
Page 40 and 41:
3.1 Services CICS for AIX is a very
Page 42 and 43:
3.1.2 CICS API 24 CICS for AIX as t
Page 44 and 45:
3.1.3.1 Terminal Users and CICS Reg
Page 46 and 47:
3.2 Implementation 3.2.1 Components
Page 48 and 49:
3.2.2 Processes 3.2.1.3 Application
Page 50 and 51:
3.3.1 DCE RPC 3.3.2 TCP/IP 32 CICS
Page 52 and 53:
Figure 9. Interconnection Using Enc
Page 54 and 55:
connect to a PPC Gateway server mac
Page 56 and 57:
Figure 12. Interconnection Using TC
Page 58 and 59:
3.4.3 Configuration 3.4.4 Managing
Page 60 and 61:
3.4.6 Intersystem Communication CIC
Page 62 and 63:
3.4.8 Data Location 44 CICS for AIX
Page 64 and 65:
3.4.11 Operations plan to cope with
Page 66 and 67:
3.5 Summary 48 CICS for AIX as the
Page 68 and 69:
Figure 13. Application Server Model
Page 70 and 71:
4.2.1 CICS External Call Interface
Page 72 and 73:
By means of mapping files, you can
Page 74 and 75:
4.3 Versions 56 CICS for AIX as the
Page 76 and 77:
4.4 Sample Network Configurations 4
Page 78 and 79:
4.5.1 CICS Client for OS/2 60 CICS
Page 80 and 81:
4.5.2 CICS Client for DOS 62 CICS f
Page 82 and 83:
4.5.5 CICS Client for AIX CICS Clie
Page 84 and 85:
Page 86 and 87:
4.6 Summary 68 CICS for AIX as the
Page 88 and 89:
5.1.1 DCE Threads 5.1.2 Remote Proc
Page 90 and 91:
The GDS is based on the CCITT X.500
Page 92 and 93:
egion or server it is looking for.
Page 94 and 95:
Page 96 and 97:
6.1.2 Encina Toolkit Server Core 6.
Page 98 and 99:
Page 100 and 101:
is also necessary to use native AIX
Page 102 and 103:
Page 104 and 105:
7.1 X/Open XA Interface 7.1.1 X/Ope
Page 106 and 107:
Page 108 and 109: Communication between the transacti
Page 110 and 111: 92 CICS for AIX as the Transaction
Page 112 and 113: 7.2.2 Single-Phase and Two-Phase co
Page 116 and 117: Figure 28. Switching Access among D
Page 120 and 121: Figure 30. CICS Access to Remote DB
Page 122 and 123: emote DRDA database. Information ab
Page 124 and 125: As the COMMAREA has an allowable ma
Page 126 and 127: 7.5 Summary 108 CICS for AIX as the
Page 130 and 131: 8.2 Workload Management 112 CICS fo
Page 134 and 135: 8.4.2 System Management Application
Page 136 and 137: Figure 36. The CICS SM GUI 8.4.6 Di
Page 138 and 139: Figure 37. CICS SM Component Distri
Page 140 and 141: Figure 38. Combining Resources 122
Page 142 and 143: 8.5.2 The Reference System 124 CICS
Page 146 and 147: 8.6 Planning Considerations for CIC
Page 152 and 153: 9.1 Some Terminology 9.2 Services 1
Page 154 and 155: Figure 41. CICS Internet Gateway fo
Page 156 and 157: 9.3.3 Data Integrity The Web was or
Page 160 and 161: or employee records, eavesdropping
Page 164 and 165: • Type, size, and quantity of rec
Page 166 and 167: 10.3.3 Writing ECI and EPI Applicat
Page 168 and 169: The ANIMATOR debugging tool enables
Page 172 and 173: 10.8 Summary 154 CICS for AIX as th
Page 176 and 177: 11.1 The Big Picture 158 CICS for A
Page 178 and 179: 11.2 User Access 160 CICS for AIX a
Page 180 and 181: Figure 44. Access to Various DB2 Da
Page 184 and 185: takes place over TCP/IP or SNA comm
Page 186 and 187: provide greater protection in the u
Page 194 and 195: How Customers Can Get ITSO Redbooks
Page 198 and 199: design. The process of composing a
Page 200 and 201: A year later ISC gave SQL formal in
Page 204 and 205: designing efficient applications 15
Page 206: IBML ® Printed in U.S.A. SG24-4752
show all

Addressing OLTP Solutions with CICS: The Transaction Server ... - Ibm

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?