DB2

Two-Thirds of Corporations Now Require 99.99% Database Uptime, Reliability

A 64% majority of organizations now require that their databases deliver a minimum of four, “nines” of uptime 99.99% or better for their most mission critical applications . That is the equivalent of 52 minutes of unplanned downtime per database/per annum or just over one minute of downtime per week as a result of an unplanned outage.

Those are the results of ITIC’s 2013 – 2014 Database Reliability and Deployment Trends Survey, an independent Web-based survey which polled 600 organizations worldwide during May/June 2013. The nearly two-thirds of respondents who indicated they need 99.99% or greater availability is a 10% increase over the 54% who said they required a minimum of four nines reliability in ITIC’s 2011-2012 Database Reliability survey.

This trend will almost certainly continue unabated owing in large part to an increase in mainstream user deployments of databases running Big Data Analytics, Business Intelligence (BI), Customer Relationship Management (CRM) and Enterprise Resource Planning (ERP) applications. These applications are data intensive and closely align with organizations’ main-line-of-business and recurring revenue stream. Hence, any downtime on a physical, virtual or cloud-based DB will likely cause immediate disruptions that will quickly impact the corporation’s bottom line. …

Two-Thirds of Corporations Now Require 99.99% Database Uptime, Reliability Read More »

As Ellison Rips Rivals, Oracle Services Slip, Support Prices Soar

Memo to Larry Ellison: The Roman Coliseum halted gladiator combats around 435 A.D. SAP has thrown in the towel and has no interest in continuing a court battle. Hewlett-Packard executives are refusing to accept service on your lawsuits and HP’s newly named chief executive Leo Apotheker is laying low, presumably dodging your increasingly vituperative verbal assaults. You’ve got no takers for the bloody, bare knuckles brawl you crave. What does that tell you?

It should signal an end to the Circus Maximus sideshow but it won’t.

No one desires this much attention or sticks their chin out spoiling for a fight like Ellison. And in an industry like high tech that’s overflowing with giant egos, that’s saying something. It’s true that Ellison’s antics always make for reams and reams of good copy. Reporters calling for comments on the latest developments don’t even bother to suppress their mirth. Enough is enough, though. The Larry Ellison Show would be more amusing if corporate customers weren’t getting caught in the crossfire. …

As Ellison Rips Rivals, Oracle Services Slip, Support Prices Soar Read More »

SQL Server Most Secure Database; Oracle Least Secure Database Since 2002

Ask any 10 qualified people to guess which of the major database platforms is the most secure and chances are at least half would say Oracle. That is incorrect.

The correct answer is Microsoft’s SQL Server. In fact, the Oracle database has recorded the most number of security vulnerabilities of any of the major database platforms over the last eight years.

This is not a subjective statement. The data comes directly from the National Institute of Standards and Technology.

Since 2002, Microsoft’s SQL Server has compiled an enviable record. It is the most secure of any of the major database platforms. SQL Server has recorded the fewest number of reported vulnerabilities — just 49 from 2002 through June 2010 — of any database. These statistics were compiled independently by the National Institute of Standards and Technology (NIST), the government agency that monitors security vulnerabilities by technology, vendor, and product (see Exhibit 1). So far in 2010, through June, SQL Server has a perfect record — no security bugs have been recorded by NIST CVE.

And SQL Server was the most secure database by a wide margin: Its closest competitor, MySQL (which was owned by Sun Microsystems until its January 2010 acquisition by Oracle) recorded 98 security flaws or twice as many as SQL Server.

By contrast, during the same eight-and-a-half year period spanning 2002 through June 2010, the NIST CVE recorded 321 security vulnerabilities associated with the Oracle database platform, the highest total of any major vendor. Oracle had more than six times as many reported security flaws as SQL Server during the same time span. NIST CVE statistics recorded 121 security-related issues for the IBM DB2 platform during the past eight-and-a-half years.

Solid security is an essential element for many mainstream line-of-business (LOB) applications, and a crucial cornerstone in the foundation of every organization’s network infrastructure. Databases are the information repositories for many organizations; they contain much of the sensitive corporate data and intellectual property. If database security is compromised, the entire business is potentially at risk.

SQL Server’s unmatched security record is no fluke. It is the direct result of significant Microsoft investment in its Trustworthy Computing Initiative, which the company launched in 2002. In January of that year, Microsoft took the step of halting all new code development for several months across its product lines to scrub the code base and make its products more secure.

The strategy is working. In the past 21 months since January 2009, Microsoft has issued only eight (8) SQL Server security-related alerts. To date in 2010 (January through June), there have been no SQL Server vulnerabilities recorded by Microsoft or NIST. Microsoft is the only database vendor with a spotless security record the first six months of 2010.

ITIC conducted an independent Web-based survey on SQL Server security that polled 400 companies worldwide during May and June 2010. The results of the ITIC 2010 SQL Server Security survey support the NIST CVE findings. Among the survey highlights:
• An 83% majority rated SQL Server security “excellent” or “very good” (see Exhibit 2, below).
• None of the 400 survey respondents gave SQL Server security a “poor” or “unsatisfactory” rating.
• A 97% majority of survey participants said they experienced no inherent security issues with SQL Server.
• Anecdotal data obtained during first-person customer interviews also elicited a very high level of satisfaction with the embedded security functions and capabilities of SQL Server 7, SQL Server 2000, SQL Server 2005, SQL Server 2008, and the newest SQL Server 2008 R2 release. In fact, database administrators, CIOs and CTOs interviewed by ITIC expressed their approbation with Microsoft’s ongoing initiatives to improve SQL Server’s overall security and functionality during the last decade starting with SQL Server 2000.

Strong security is a must for every organization irrespective of size or vertical industry. Databases are among the most crucial applications in the entire network infrastructure. Information in databases is the organization’s intellectual property and life blood.

Databases are essentially a company’s electronic filing system. The information contained in the database directly influences and impacts every aspect of the organization’s daily operations including relationships with customers, business partners, suppliers and its own internal end users. All of these users must have the ability to quickly, efficiently and securely locate and access data. The database platform must be secure. An insecure, porous database platform will almost certainly compromise business operations and by association, any firm that does business with it. Any lapses in database security, including deliberate internal and external hacks, inadvertent misconfiguration, or user errors can mean lost or damaged data, lost revenue, and damage to the company’s reputation, raising the potential for litigation and loss of business.

It’s also true that organizations bear at least 50 percent of the responsibility for keeping their databases and their entire network infrastructures secure. As the old proverb goes, “The chain is only as secure as its weakest link.” Even the strongest security can be undone or bypassed by user error, misconfiguration or weak computer security practices. No database or network is 100 percent hack-proof or impregnable.Organizations should consult with their vendors regarding any questions and concerns they may have about the security of ANY of their database platforms. They should also ensure they stay updated with the latest patches and install the necessary updates. Above all, bolster the inherent security of your databases with the appropriate third party security tools and applications. Make sure your organization strictly adheres to best computer security computing practices. At the end of the day only you can defend your data.

Registered ITIC site users can Email me at: ldidio@itic-corp.com for a copy of the full report.

SQL Server Most Secure Database; Oracle Least Secure Database Since 2002 Read More »

Microsoft Pulls Out all the Stops for SQL Server 2008

Microsoft is pulling out all the stops to support SQL Server 2008 and keep the momentum going for its latest enhanced database offering. On September 29, the company will launch the SQL Server 2008 Experience, a year-long series of in-person events designed to introduce “350,000+ customers, partners and community members” to the new features and benefits of its database offering.

Additionally, Microsoft is touting the merits of SQL Server 2008 on a new Website: http://www.moresqlserver.com. And it also just released the results of the new Transaction Processing Performance Council (TPC) performance benchmark tests for Microsoft SQL Server 2008. The TPC ranked Microsoft SQL Server 2008 #1 on price/performance on servers using Intel’s new Dunnington x64 processors, and as the top performance leader using IBM’s new System x3950 M2 server.

There’s no doubt that SQL Server 2008 boasts greatly improved features, functions, scalability, security, management and reliability compared to the 2005 version, and a more powerful, robust and manageable SQL Server 2008 is a must for Microsoft. The company is going head to head with industry powerhouses including IBM’s DB2 and Oracle’s 11g database running on Linux. So 2009 is shaping up to be an extremely competitive and crucial year for database vendors and their respective customers.

At this point, Microsoft is a strong number three behind Oracle and IBM in the database arena, according to both Gartner Group and IDC. The latest statistics show Oracle with approximately 42% market share; IBM second with about 21% and Microsoft with an estimated 19% of the database market. The financial stakes are also high: Oracle’s database revenue is well over $7 billion; IBM realizes close to $3.5 billion from database sales and Microsoft SQL Server generates close to $3 billion in annual sales.

In order to retain its existing installed base and increase its presence – particularly among SMBs and large enterprises, Microsoft must hit the ground running with SQL Server 2008. There is no margin for error from either a technical or a marketing standpoint. Hence, Microsoft is marshalling all its forces.

SQL Server 2008 incorporates a slew of new management capabilities such as: policy management; configuration servers; data collector/management warehouse and a multiple server query capability. Such features are crucial for database administrators, particularly those in large enterprises who are charged with overseeing complex and geographically dispersed database environments that may include hundreds or thousands of physical and virtual servers encompassing tens of thousands of databases.

The SQL Server 2008 Policy Management feature enables database administrators to create and execute configuration policies against one or more servers while the Data Collector facility obviates the need for managers to create custom solutions to cull data from their database server environments.

Data Collector lets administrators utilize the SQL Server Agent and SQL Server Integration Services (SSIS) to create a framework that collects and stores data while delivering a detailed history of error handling, auditing, and collection.

Just as important as SQL Server 2008’s new management functions are the accompanying documentation and training that Microsoft is making available for the database platform via its Website, TechNet and its Software Assurance maintenance and upgrade program. Vendor rivalries aside, the chief impediments to users upgrading to any new software platform are the cost and complexity of the migration. These factors are even more crucial when weighed against the cost constraints of the current economic downturn. Microsoft’s TechNet provides SQL Server 2008 customers with ample, “at-your-fingertips” documentation and troubleshooting tips as they prepare to upgrade.

In addition, customers who have purchased Microsoft’s Software Assurance will be able to get significant discounts on training as well as access to Elearning tools. The combination of TechNet and Software Assurance can save IT departments and the corporation untold thousands to millions in capital and operational expenditures and cut upgrade time by 25% to 65% depending on the size and scope of the deployment. And in the event that any significant bugs or performance glitches arise, Microsoft must move quickly and decisively to publicly address the problems and issue the necessary patches without dissembling or temporizing.

Overall, Microsoft has assembled all of the necessary technology and business components to make SQL Server 2008 a winner. The latest Microsoft database has the performance, scalability and management to make the upgrade path easy. The excellent documentation and technical support offered by TechNet is also a plus. Companies worried about budgetary constraints (and who isn’t?) will also find monetary relief from the inherent value of the myriad Software Assurance benefits.

Microsoft Pulls Out all the Stops for SQL Server 2008 Read More »

Scroll to Top