New and Enhanced Features for Caché 2018.1
This chapter includes:
Key Management Interoperability Protocol (KMIP)
In this release, Caché can be a client to an enterprise key management server and use the Key Management Interoperability Protocol (KMIP) to store and retrieve keys on the server. These keys can be used to encrypt data at rest, such as databases and journal files. KMIP, an OASIS standard, gives you the power of centralized key management.
Microsoft Volume Shadow Copy (VSS) Integration
This release introduces Cache and Ensemble integration with Microsoft's Volume Shadow Copy Service (VSS) framework. This integration allows any backup product which supports VSS integration to identify databases and the volumes they reside on and seamlessly quiesce Cache and Ensemble instances when performing a backup of the system. The copies of the databases included in a VSS shadow are physically, although not logically with regards to transactions, consistent and therefore may be restored individually. To ensure the transaction integrity of these restored databases, one should also replay journal files accordingly.
Support for Microsoft Integrated Windows Authentication for HTTP Connections
This new enhancement allows %Net.HttpRequest to use windows based authentication over HTTP 1.1 to establish a connection to a secure server. Users can provide credentials or, if no credentials are provided, the system will try to authenticate using the current logged in context. Client may initiate a connection to the server with an "Authorization" header or try to establish a connection without that header and process the 401 status code with its associated with WWW-Authenticate header and then respond with the appropriate authentication mechanism. The supported authentication schemes are Negotiate (Kerberos & NTLM), NTLM, and Basic.
Establishing SSH connections for Caché and Ensemble uses a new SSH library with multiple enhancements to functionality and performance.
New and Enhanced Features for Caché 2018.1.3
This release includes significant new features in LDAP security. Caché and Ensemble now support a more sophisticated authorization model for LDAP groups. This model supports LDAP groups that provide authorization for a single instance, multiple instances, and all instances. Further, you can mix different kinds of groups. (In previous versions, LDAP groups managed authorization for all instances.) For more information on the LDAP changes, see “About LDAP Groups and Caché” in the Caché Security Administration Guide. For a detailed list of the changes in this maintenance release, see the Caché and Ensemble Maintenance Release Notes (2018.1.3).
New and Enhanced Features for Caché 2018.1.2
This release includes substantial improvements to journaling performance. This enables Caché to perform updates more efficiently and to handle larger throughput of data. For a detailed list of the changes in this maintenance release, see the Caché and Ensemble Maintenance Release Notes (2018.1.2).
New and Enhanced Features for Caché 2018.1.1
This release includes the substantial scalability and performance improvements, particularly for large-scale Non-Uniform Memory Access (NUMA) systems. This includes changes to improve scalability in statistics tracking and global buffer management, performance improvements in use of subscript level mapping, and more effective optimizations to avoid traversing global pointer blocks. To enable these improvements there are minor changes to memory utilization and system statistics described in the Upgrade Checklist.
These enhancements increase the amount of memory allocated for global buffer metadata by 64 bytes per buffer on Intel systems and by 128 bytes per buffer on IBM Power systems. For example, with 8K buffer sizes, the shared memory allocated for a global buffer increases by 0.75% on Intel systems and by 1.5% on IBM Power systems. These enhancements also cause minor changes is in statistics displayed by utilities and the Management Portal.
In addition, this maintenance release adds Cross-Origin Resource Sharing (CORS) support for %CSP.Page subclasses. In previous releases CORS support was only available in %CSP.REST subclasses.
For a detailed list of the changes in this maintenance release, see the Caché and Ensemble Maintenance Release Notes (2018.1.1).