Aimed at enterprise customers facing increasing threats of data breaches, the new IBM Z mainframe features "breakthrough" encryption capabilities that can secure information in any cloud application or database at all times, the company said today.
The technology will also help mainframe users meet new data compliance requirements, such as the European Union's General Data Protection Regulation, pointed out Judith Hurwitz, president of the market research and consulting firm Hurwitz & Associates.
To demonstrate the use of Z for encryption on cloud services, IBM announced it has opened six new blockchain global data centers in NY, the U.K., Frankfurt, Tokyo, Toronto and Brazil.
The GDPR holds that businesses should encrypt personal data to prevent a compromise of confidentiality, while the FFIEC's guidance states that management should "implement the type and level of encryption commensurate with the sensitivity of the information". Level 2 is the current industry standard for high security, IBM noted.
In a statement provided by IBM, International Data Corp. analyst Peter Rutten called the Z "the first system with an all-encompassing solution to the security threats and breaches we've been witnessing in the past 24 months".
Cybersecurity has become a top priority for IBM's mainframe customers in recent years.
The overall mainframe platform revenues come from IBM's base and not from new hardware sales. IBM Z goes against standard practices for encryption by encrypting in bulk at cloud scale. Desens said IBM sees another opportunity for its encryption engine as analytics are combined with blockchain code deployments. Engineers have been working on the base technologies for IBM Z for 5 years. After more than two years of talking to customers, and building the exact system they asked for, it would appear he has every reason to. IBM's pervasive encryption engine makes it possible to encrypt data associated with an entire applications, cloud service, or database in flight or at rest with a single click.
Pund-IT analyst Charles King says, however, that the container pricing approach has the potential to be more cost-effective in the long run than earlier mainframe pricing schemes.
"There are six that we've built and more in the future", said Mauri. Obviously, if data is spilled or stolen somehow, at least if it's encrypted, it can't be used by cybercriminals (or that's the theory).
The new IBM Z can protect millions of keys - as well as the process of accessing, generating and recycling them - in "tamper responding" hardware that causes keys to be invalidated at any sign of intrusion and can then be restored safely.
Encrypted application programming interfaces so developers can build applications and services.
Even where a business is running development, test and production environments on the same machine, there is cryptographic separation between the environments, Jordan said. And there's pricing model for payment systems, which is based on the volume of payments not capacity. "Container pricing is a more flexible approach that should result in system billing more accurately reflecting the amount of work the system is used to accomplish [a given task], thus making the z14 (and z13, since container pricing will also be available for those systems) more cost-effective", King said.
IBM cited research that shows only around 2 percent of corporate data today is encrypted, compared to more than 80 percent of mobile device data.