Legend has it that the first

software bug was literally

that — a moth caught

between two electrical

relays that caused a Mark

II computer at Harvard University to

crash back in 1947. Since that time,

any application that fails to work

properly is said to have a bug.

With a pair of recent acquisitions,

Emtec has enhanced its ability to

ensure customers that their application

infrastructures remain pest free.

On Feb. 3, the company acquired

Dinero Solutions, LLC, a consulting

and integration practice focused

almost entirely on service delivery of

Oracle applications and technology.

On March 1, Emtec finalized the

acquisition of Covelix, Inc., an appli-

cation development organization that

specializes in providing a disciplined

approach to solving complex softwarechallenges.

Growing StrongThe acquisitions significantly

enhance Emtec’s ability to providegreater onshore and offshore develop-ment depth for all practice areas.More importantly, they add to analready impressive portfolio of ser-vices, solutions and talent that enableEmtec to deliver a full suite of IT ser-vices in the areas of IT Consulting, ITInfrastructure Services, ApplicationServices and Cloud Solutions.

“With these acquisitions, we con-tinue to build on our unique ability to

provide customers with the best peo-ple, technologies and services in virtu-ally limitless combinations to meettheir specific requirements,” saidDinesh Desai, CEO, President andChairman of Emtec. “We believe thissets Emtec apart in the area of ITdelivery.”

The numbers back up Desai.Emtec continues to show steadygrowth, reporting a 28 percentincrease in revenue, including a 37percent increase in services and con-sulting revenue for the second quarterof 2011 as compared to the samequarter in 2010.

PRSRT STDU.S. POSTAGE

PAIDTulsa, OK

Permit No. 2146

The Adviser

Recent acquisitions bolster Emtec’s applicationdevelopment and implementation capabilities.

The Adviser is available in e-mail format. Sign up online at www.emtecinc.com/adviser.

INFORMATION TECHNOLOGY SOLUTIONS AND STRATEGIES Vol. 14 No. 2 March/April 2011

EMTEC ADVISER

continued on page 3

App SavvyIn This Issue...

Back to the Future: Cloud

evokes memories of mainframe

computing but delivers forward-

looking innovations...pg. 4

Apps Under Fire: Proxy-based

Web application firewalls can help

stem the tide of Web app

attacks...pg. 7

Facing Legal Challenges:

Organizations unprepared to meet

coming e-discovery demands for

social media content...pg. 9

Enforcing Password Policy:

Single sign-on gives end-users just

one strong password to

remember...pg. 14

Navigate the crossroadsof IT Service Management

with BMC Remedy OnDemandKEY FEATURES

» Remote hosted service, powered by

industry-leading BMC Remedy ITSM

technology

» BMC handles ongoing administration,

backup, and maintenance of the

software and related infrastructure

» You purchase the software capability,

not a software license

» Subscription-based, “pay-as-you-go”

pricing

» Architected with the BMC Atrium

CMDB for centralized IT management

» Ongoing administration, backup, and

maintenance handled by BMC

» Best-in-class consolidated service

desk with ITIL and other best

practices built-in

» Trusted configuration data and service

maps

» At-a-glance analytics that reflect how

effectively IT is supporting critical

business applications and services

» Alignment of the IT service

management lifecycle to your

business requirements

» ITSM data migration — moves data

from your current BMC Remedy or

third-party applications to your new

BMC Remedy ITSM On Demand

solution

IT Service Management is the intersection of business and technology strategy with

planning and operations to ensure that IT is focused on delivering business value.

BMC Remedy OnDemand is a new SaaS-based offering that gives your organization

access to all the benefits of BMC’s industry-leading IT service management solutions

— without the costs and overhead associated with hosting and managing on-premises

software. Using BMC Remedy OnDemand, you can phase in IT service management

quickly and incrementally, beginning with one region or process and including others

as needed. Implementation times are greatly accelerated through an established on-

boarding methodology and pre-configured data that reflects BMC’s ITIL-aligned, best-

practice process models based on hundreds of successful implementations.This allows

you to begin receiving a return on your BMC investment as soon as possible.

For more information, please contact

Deanna Evers

800-800-8894 x127897

information@emtecinc.com

WWW.EMTECINC.COM

© 2011 BMC Software, Inc. All rights reserved. BMC-01

2 The Adviserwww.emtecinc.com � www.emtecfederal.com

Eyes on AppsEmtec’s application development,

testing and implementation abilities arenow positioned to contribute to thecompany’s continued strength. Applica-tion development is a key area of focusfor organizations of all sizes as the riseof cloud, mobility and virtualizationtechnologies increase the demand for awide variety of business-enabling appli-cations.

In a recent survey of 933 technol-ogy decision-makers and approximately2,500 developers at North Americanand European enterprises and small tomidsize businesses (SMBs), ForresterResearch determined that new softwareprojects will constitute a larger portionof enterprise and SMB software budgetsthan in recent years and that softwaredevelopment spending will increase in2011.

Dinero, founded in 2000 with cor-porate headquarters in the greatermetro-Atlanta area, has built its success

around an expert team of experiencedOracle application and implementationspecialists. This acquisition enablesEmtec to offer its clients complementarycapabilities around the Oracle E-Busi-ness Suite (EBS). Dinero delivers spe-cialized solutions to Fortune 500 enter-prises as well as SMBs with a primaryfocus in the financial services, utilitiesand distribution industries. Clientsinclude Green Mountain Power, CSX,Cellular South, Nordstrom and Fried-man, Billings & Ramsey.

“Dinero has enjoyed double-digitrevenue growth and profitability over

the past seven years while continuing to

refine its strategic focus on Oracle EBS

implementations and complementary

custom software development,” said

Desai. “By integrating these skills into

our growing consulting organization,

we can implement, maintain and sup-

port our clients’ ERP applications in an

efficient and timely manner.”

Delivering ValueCovelix is headquartered in Kirk-

land, Wash., with a major offshore

development facility in Pune, India.

They hold long-term relationships and

preferred vendor status with many lead-

ing software companies. The company

has a strong focus on Microsoft tech-

nologies such as .NET, Microsoft

Dynamics CRM, Exchange, SharePoint,

SQL Server and others along with a sig-

nificant practice in Java, LAMP and

other open source technologies.

With a highly rigorous and creative

working culture and a progressive train-

ing and development program, Covelix

has always attracted talented engineers.

“Covelix significantly increases our

ability to deliver cost-effective solutions

through an optimum mix of offshore

and onshore development and adds to

our sales strength in the Northwest U.S.

region — one of the leading IT clusters

in the United States,” said Desai. “In

addition, the Covelix development cen-

ter in Pune gives us strength in one of

the premier IT development regions in

India.”

Cover Storycontinued from page 1

Over the past decade, thousands andthousands of companies have imple-mented ERP systems in order to linkhuman resources, finance, inventorycontrols, order entry, data warehous-

ing and more. These systems undoubtedly transformthe business by delivering incredible efficiencies, butthe implementation can be agonizing. By some esti-mates, more than 90 percent of ERP projects finishpast due.

The problem often lies with technology partnerswho fail to understand that implementing ERP is notjust about the applications — it’s primarily about thebusiness.

Dinero Solutions, which Emtec recently acquired,takes a different approach. That’s what got the atten-tion of Green Mountain Power.

Founded by a group of former Oracle Applica-tions and Information Technology executives, Dinerowas ideally suited to implement Oracle EBS for GreenMountain Power. Furthermore, the Dinero team spentsignificant time and resources on upfront planningand fostering a collaborative environment. The payoffwas a smooth implementation in just four months,resulting in a better-integrated, standardized and sim-plified IT landscape. Purchase orders and invoices arecreated in hours instead of days, an 87 percent reduc-tion in time. Financial results are now calculated in 5days versus 15 — a 67 percent decrease.

Jan Ferro, procurement director for Green Moun-

tain Power, said the Dinero team’s ability to interact

with her company’s IT and finance groups “signifi-

cantly accelerated the execution of each project and

streamlined user acceptance.”

The speedy implementation was critical for Green

Mountain Power, which serves more than 90,000 cus-

tomers in the New England area. The company has

built its business and its reputation on providing eco-

friendly power with exceptional reliability and respon-

siveness. It couldn’t afford a protracted, problematic

implementation that could interfere with its customer

service.

Green Mountain Power selected Oracle based onthe extensive list of functional modules in EBS and itsability to meet a significant proportion of its businessneeds right out of the box. The package installedincludes Oracle Financials, Oracle Project Manage-ment and Oracle Supply Chain Planning. Now part ofEmtec, the Dinero team continues to work with GreenMountain Power to leverage additional system fea-tures.

Selecting the right application package was obvi-ously an essential element of achieving such benefits,and Oracle EBS is the most comprehensive suite ofintegrated, global business applications. Beyond that,it required engaging a technology partner – DineroSolutions – that had a deep understanding of the solu-tion and who was also committed to investing thetime and resources to understand their criteria for suc-cess.

Upgrading core business applications is never fun,but it doesn’t have to be painful. With the acquisitionof Dinero Solutions, Emtec has expanded our abilityto deliver pain-free Oracle EBS solutions. We areproud to have them as part of our team!

Relieving Implementation Pain

“With these acquisitions, we continue to build on our unique

ability to provide customers with the best people,

technologies and services in virtually limitless combinations

to meet their specific requirements. We believe this sets

Emtec apart in the area of IT delivery.”

— Dinesh Desai,

CEO, President and Chairman of Emtec.

3www.emtecinc.com � www.emtecfederal.comMarch/April 2011

4 The Adviserwww.emtecinc.com � www.emtecfederal.com

Is everything old new again? As cloud computingcontinues to gain momentum, it is hard toignore the decidedly “retro” elements of thisapproach to IT infrastructure.

The advent of distributed, massive-scale cloudcomputing today is enabling organizations in allindustries to create environments reminiscent of thecentralized approach to computing that was standardback in the 1970s and early 1980s. In those days,computers were usually time-shared among multipleusers working on “dumb” terminals connected to acentral mainframe machine located in some remotecorner of the building.

Cloud computing makes use of the Internet toconnect remote users to massive, warehouse-scale datacenters that house large networks of processors andmemory for crunching and storing data. The idea is toremove the burden of heavy processing from the desk-top and move it into these cloud data centers, thustaking advantage of economies of scale and sharedresources.

The cloud also allows organizations to leveragedesktop virtualization and thin-client technology torecreate the corporate computing environment in asecure and controlled setting. This removes much ofthe cost and hassle of managing hundreds or thou-

sands of desktop computers. The IT organization isfreed from the tasks of patching operating systems,installing and updating applications, and ensuring thatdata is protected on each and every desktop.

2011 a Breakthrough Year?In 2010, these factors helped cloud computing

gain momentum across virtually every sector of indus-try, with several surveys indicating that more govern-mental agencies, commercial businesses and non-profitorganizations have either already deployed somemodel of a cloud solution or have plans to evaluate acloud solution in the near future. Most networkingexperts and technology analysts expect even moreconsistent and sustainable growth in 2011 andbeyond.

Analysts at IDC expect spending on public ITcloud services to grow at more than five times the rateof the IT industry in 2011, up 30 percent from 2010,as organizations move a wider range of business appli-cations into the cloud. The firm also predicts smalland midsized business cloud use will surge in 2011,with adoption of some cloud resources topping 33percent among U.S. midsize firms by year’s end.

IDC says the combination of an aging serverinstalled base, IT managers’ increasing need to rein in

virtual machines, and a general upturn in the buyingenvironment is boosting sales of commodity-typeservers used in public and private cloud-computingsystems. IDC predicted that server revenue in the pub-lic cloud category will grow from $582 million in2009 to $718 million in 2014. Server revenue for themuch larger private cloud market will grow from $7.3billion to $11.8 billion (about 62 percent) in the sametime period, IDC said.

For many organizations, their experiences in 2010proved that cloud computing can meet the demand forimproved IT efficiency through a virtualized, secureinfrastructure solution that is scalable, reliable andcan provide organizations higher availability at lowercosts when compared to a dedicated IT environment.

“There has been a clear market trend of small andmedium-sized businesses looking to get out of thebusiness of owning and maintaining their own ITinfrastructure,” said Rahul Bakshi, vice president ofproduct management, managed services, at SunGardAvailability Services. “These companies want to tapinto the investment service providers have made in ITtools, automation and elastic technology.”

Mobility and MoreWhile cloud computing provides a new twist on

an old idea, there is no mistaking that it can deliver21st-century benefits. The real advantage of this typeof computing is mobility. End-users can access thecorporate computing environment, including operat-ing system, applications and data, from anywhereusing a traditional PC, thin client or other network-connected device.

“Users enjoy the convenience of accessing theirdata from anywhere and at any time, so long as theyhave a network connection,” said network architectCedric Lam of Google.

IDC expects cloud services and mobile computingto mature and coalesce with social networks to createa new mainstream platform for both the IT industryand the industries it serves. Frank Gens, senior vicepresident and chief analyst at IDC, says this new plat-form will deliver value-generating overlays of socialbusiness and pervasive analytics. In addition to creat-ing new markets and opportunities, Gens said, thisrestructuring will “overthrow nearly every assump-tion” about who the industry’s leaders will be andhow they establish and maintain leadership.

“What really distinguishes the year ahead is thatthese disruptive technologies are finally being inte-grated with each other — cloud with mobile, mobilewith social networking, social networking with ‘bigdata’ and real-time analytics,” he said. “As a result,these once-emerging technologies can no longer beinvested in, or managed, as sandbox efforts aroundthe edges of the market. Instead, they are rapidlybecoming the market itself and must be addressedaccordingly.”

Back to the FutureCloud platforms evoke memories of mainframe computing but deliver forward-looking innovations.

As cloud computing moves beyond the defi-nition phase into the adoption phase, orga-nizations must move beyond current ad-

hoc adoption methods and develop a well-definedimplementation strategy in order to achieve realbusiness objectives.

“To be successful with cloud computing,CIOs must develop a thorough and rigorous adop-tion strategy that can prove value and be repli-cated,” said Drue Reeves, research director for theBurton Group research and advisory firm. “Now isthe time to build a viable cloud strategy that takesinto account the risks but is fully focused on reap-ing the rewards for the enterprise.”

Burton Group recommends CIOs commit thetime and resources needed to develop a realisticcloud adoption strategy by using a five-step pro-gram:

Pre-work: The objective is to identity keystakeholders and cloud computing objectives. Theadoption strategy requires significant resources toperform business impact analysis, applicationassessment, cost analysis and a vendor-selectionprocess. When identifying the scope of the effort,the maturity of existing processes will impact theeffort and resources required.

Business and application assessment: The

objective is to determine what applications are

cloud-ready. This can be done in a four-part analy-

sis: business impact analysis, application assess-

ment, cost analysis and the impacts on the organi-

zation.

Vendor-selection process: The objective is to

meticulously examine a vendor’s service. Cloud

vendors’ details should be transparent and meet

application requirements. The scenario may arise

where the application is ready for cloud, but the

cloud is not ready for the application.

Mitigate risk and liability: Some risk can’t be

avoided, but the objective is to mitigate such risk.

This requires up-front planning and the develop-

ment of a clear exit strategy. Consider the use of a

“cloud broker” to serve as an intermediary

between end users and cloud providers.

Steady State: The objective is to inject cloud

management principles into everyday operational

procedures. Do this by employing sound cloud

governance procedures and measuring how the

adoption strategy is meeting the defined business

objectives.

Building a Cloud Strategy

5www.emtecinc.com � www.emtecfederal.comMarch/April 2011

The Adviserwww.emtecinc.com � www.emtecfederal.com6

While most blade server systems consist of an enclosure containing server blades, cables and power supplies,

HP BladeSystem solutions offer a more evolved infrastructure management platform. Instead of solving server

issues, HP BladeSystem solutions address infrastructure issues using advanced management tools that

incorporate computing, storage, power, and network resources into a virtualized, self-aware, automated

environment. With HP, your customers can manage a pool of resources as easily as managing one machine.

Complete with an integrated 4Gb SAN switch from Brocade or McDATA, HP BladeSystem infrastructures

deliver a more efficient way to build an infrastructure that is optimized for efficiency and change. These

solutions combine the plug-and-play simplicity of blade design with industry leading switching technology

from leading SAN fabric providers. Also, by using the industry’s leading enterprise management tools, this

platform creates a universal management system for Linux® and Microsoft® Windows® environments.

Blades are widely viewed as compact and efficient servers that primarily

save space and power. However, HP believes the power of the blade

concept is about more — simplification of the entire infrastructure —

through consolidation, integration, and unified management.

Powerfully simple

For more information, please contactDeanna Evers800-800-8894 x127897information@emtecinc.comWWW.EMTECINC.COM

Build IT better with HP BladeSystem

© 2011 Hewlett-Packard Development Company, L.P. HP-164

www.emtecinc.com � www.emtecfederal.com 7March/April 2011

Hackers are no longer merely scanningfor open ports on network firewallsto attack. They have shifted theirtactics to targeting applicationsdirectly. Security experts say 80 per-

cent of attacks today happen at the application layer,thus evading traditional methods of perimeter andcore network protection.

“The need to protect Web applications that con-tain sensitive credit, financial or personal informationfrom increasingly sophisticated attacks and data losshas never been greater,” said Paula Musich, senioranalyst, Current Analysis. “The simple fact of thematter is that organizations are deploying Web appli-cations and regulated Internet-facing data morebroadly than ever. For hackers and cyber-criminals,that’s like painting a giant bulls-eye on those applica-tions.”

Web application firewalls (WAFs) are proving tobe useful in protecting Web apps against attack. AWAF is an appliance or server application thatwatches http/https conversations between a clientbrowser and Web server at layer 7. The WAF thenhas the ability to enforce security policies based upona variety of criteria, including signatures of knownattacks, protocol standards and anomalous applica-tion traffic.

While WAFs add a new layer of protection to anorganization’s security arsenal, the broad array ofproduct form factors, architectures and other selectioncriteria make evaluation difficult. One of the chiefconsiderations is whether to choose a non-proxy-based or proxy-based WAF.

How They Differ

In proxy-based application firewalls, the connec-tion to the application is controlled by the proxy, andno packets or sessions flow to the back end until theproxy has inspected and validated the incoming data.Separate TCP sessions are used to manage and inspectuser sessions and back-end server sessions.

Non-proxy-based application firewalls work off aSwitched Port Analyzer by sniffing the traffic or with-out fully terminating TCP/IP protocol. These WAFproducts are an extension of intrusion prevention sys-tems, which are commonly used by data centers todefend common desktops and servers against well-known virus and worm attacks.

When deciding which WAF technology best suitsyour needs, the following functionalities are worthexamining:

Cloaking

Hackers gather information in order to launch anattack on a Web server by trying to simulate errorconditions on a Web site. Often, the resultant errormessages expose information about the Web server,

application server or the database being used. Thisinformation is then used to launch a full-scale attackon the Web infrastructure.

A proxy-based WAF intercepts the response fromthe back-end server and forwards it to the client onlyif it is not an error. If the response is an error, theWAF can suppress the response containing debugginginformation and send out a custom response. TheWAF also removes headers such as server banners,which can be used to identify servers.

Input Validation

A WAF should secure applications where theincoming traffic may be encrypted or encoded using anonstandard character encoding. A proxy-based WAFdecrypts and normalizes data before running varioustypes of checks in order to ensure that no attacks aresmuggled inside of encrypted or encoded packets. Italso offers multiple ways of securing inputs. Non-proxy-based WAFs cannot encrypt or digitally signapplication data, and do not provide effective inputvalidation.

Data Theft Protection

Proxy-based WAFs intercept outbound data, sothey can be configured to ensure that sensitive datasuch as credit card numbers are either masked or alto-gether blocked to protect data leakage. This is possiblebecause the proxy-based WAF sits in line with theapplication server and secures data on both incomingand outgoing paths. This is not offered by non-proxy-based WAFs.

Protect Against Application LayerDenial of Service Attacks

There are many ways of launching an applicationlayer denial of service attack. Web applications main-tain state information — such as the number of itemsin a shopping cart — with the help of sessions, whichrequire some memory resources on the Web servers.Denial of service attacks lock up memory resources byforcing a Web server to create thousands of sessions,leading to performance degradation and even a servercrash.

The WAF should be able to control the rate atwhich requests reach the Web server and track therate of session creation. This is only possible with asystem that proxies on behalf of the Web or applica-tion server.

Centralized security enforcement

The ability to enforce all security policies from asingle control point allows for simplified operationsand infrastructure and ensures safer and more efficientsecurity administration. Because a non-proxy-basedWAF does not terminate TCP connections, it does nothave the ability to request credentials from incoming

users, issue cookies upon successful credential

exchange, redirect sessions to particular destinations,

or restrict particular users to particular resources.

Proxy-based solutions, on the other hand, can be an

Authentication, Authorization and Accounting (AAA)

authority or fully integrate with existing AAA infra-

structure.

Control the Response

Because of the wide range of security violations, it

is important that the administrator be able to respond

to different threats differently. Only proxy-based solu-

tions are able to offer this sort of flexibility.

SSL Architectural Considerations

Application attacks use SSL cryptography and

common encoding techniques to bypass traditional

security measures and hide their attacks. Proxy- and

non-proxy-based WAFs are quite different in the way

they handle SSL cryptography and key management.

Non-proxy-based WAF vendors claim that they

have the technology to “see” into an SSL encrypted

packet as it passes by the WAF. However, because

decrypting and analyzing the data takes time, the

attack will have already reached the back-end servers

and completed the transaction by the time the non-

proxy-based WAF is ready to make a decision.

Proxy-based WAFs, on the other hand, are

designed to serve as an SSL termination endpoint.

They tightly couple TCP, SSL and HTTP termination,

giving them complete visibility into application con-

tent and allowing them to perform deep inspection on

the entire session payload, including headers, URLs,

parameters and form fields.

Accelerate and ScaleApplication Delivery

It is important that a WAF product does not neg-

atively affect end-user response time. Proxy-based fire-

walls fully terminate the TCP, SSL and HTTP proto-

cols, reducing end-user response time. They should be

able to cache static content from the application,

offloading servers and saving download time, and

pool TCP connections to the back-end servers and

offload SSL processing, thereby reducing server load

and end-user response time. Non-proxy-based WAF

products do not offer these features.

While non-proxy-based WAF products have

evolved, they only provide some of the functionality

necessary to fully protect a Web application. This isn’t

adequate when it comes to protecting mission-critical

business applications and confidential data. On the

other hand, proxy-based WAFs offer complete and

comprehensive protection for enterprise Web applica-

tions.

Apps Under FireProxy-based Web application firewalls can help stem the tide of Web app attacks.

8 The Adviserwww.emtecinc.com � www.emtecfederal.com

© 2011 Hewlett-Packard Development Company, L.P. HP-192

The HP Smart Buy promotion offers instant savings on expertlypreconfigured, HP-recommended business solutions designedspecifically for small businesses. Smart Buy HP Business notebooksoffer significant savings on current HP technology. Smart Buyproducts and options have a promotional list price with excellentsavings built in up front.

No rebates, no claims no hassle; HP-recommended business solutionsdesigned specifically for small businesses made simple.

For more information and a full listing of eligible equipment,contact your Emtec representative.

0% Financing. 100% HP.Get the technology you need with 0% financing from HP Financial Services

Smart Buys on HPbusiness laptops

For more information, please contact

Deanna Evers

800-800-8894 x127897

information@emtecinc.com

WWW.EMTECINC.COM

9www.emtecinc.com � www.emtecfederal.comMarch/April 2011

By the end of 2013, half ofall companies will havebeen asked to producematerial from social mediaWeb sites for e-discovery,

according to Gartner. However, expertssay organizations are woefully unpre-pared to meet this legal challenge.

E-discovery refers to the identifica-tion, preservation, collection, prepara-tion, review and production of electron-ically stored information in legal andregulatory proceedings. E-discoveryaccounts for 30 percent to 50 percent oflitigation costs due to the challengesassociated with locating discoverableinformation within short timeframes.

E-discovery of social media contentis expected to be particularly problem-atic. In a recent survey commissionedby the Deloitte Forensic Center, 62 per-cent of respondents who expressed anopinion said their companies are con-cerned about the e-discovery challengesposed by online social media forums.One-quarter of respondents indicatedthat their companies are ill-equipped tohandle e-discovery requests pertainingto business-related use of social media,and an additional 36 percent indicatedtheir companies are only somewhat pre-pared.

“The demands of e-discovery areclearly growing. Facebook and Twitterhave not only become more prevalent inemployees’ personal lives, but have alsobecome more accepted in the work-place, as companies are beginning toleverage social media platformsthroughout the corporate environ-ment,” said Jeff Seymour, leader of thenortheast analytic and forensic technol-ogy practice for Deloitte Financial Advi-sory Services LLP.

Growing ConcernGartner Vice President and Distin-

guished Analyst Debra Logan says thatinternally managed collaboration andsocial media content is coming up fre-quently in e-discovery requests. Themore integrated the system — unifiedcommunications, for example — themore likely that one form of content isreasonably calculated to lead to the dis-covery of admissible evidence. Becausethere is legal uncertainty about the roleof social media in e-discovery, manag-ing it is challenging, and claiming thatpersonal social media content is private

is no shield for the individual, as recentcases have shown.

“In e-discovery, there is no differ-ence between social media and elec-tronic or even paper artifacts. Thephrase to remember is ‘if it exists, it isdiscoverable,’” said Logan. “Uniqueaspects of social media present addi-tional challenges, but as with an overallinformation governance strategy, thekey to avoiding or mitigating potentiallegal issues in the use of social mediafor business purposes is to have a gover-nance framework, policy and user edu-cation.”

Gartner analysts say that nonexis-tent or ineffective governance of socialmedia exacerbates the e-discovery prob-lem. Although the use of social media inenterprises is on the rise, few organiza-tions have comprehensive governancepolicies in place for its use. Enterprisesneed an overall governance strategy forall applications and information inorder to reduce e-discovery costs andrisks, and this strategy should includecontent created on social media.

“Social media content is like allother content that is created by compa-

nies and individuals and is subject tothe same rules, laws and customs,” saidLogan. “Policymakers need to keeppolicies simple when it comes to whatshould and should not be done online.A good rule of thumb is that whateverthe company code of conduct is for in-person encounters, and whatever therules are for general good behavior andcommon sense apply in the onlineworld as well.”

What’s Your Policy?Logan said that the legal landscape

around social media remains a patch-work due to overlapping, conflictingand contradictory laws and regulations,in addition to the procedural rulespropagated by national and interna-tional legislative and regulatory bodies.There are some specific laws and regu-lations applicable to certain verticalmarkets that make the governance ofsocial media relatively easy, such asSEC Rule 17a-4. For most other busi-nesses, however, there are no clearrules, and it is up to individual organi-zations to decide how to use and governsocial media. Gartner does not expect

there to be clear guidance from courts

or regulators in the near future. There-

fore, the safest option is to develop a

clear policy and apply it consistently.

Logan said that in some cases, it

may be appropriate to ban access to

social media in the workplace. Indeed,

Gartner estimates that by the end of

2012, 50 percent of companies will

attempt to block access to some or all

social networking sites.

“If, for example, a technology cre-

ates content that cannot be captured for

archival purposes and that archive is

required by law, then the organization

must tell employees who are subject to

the rules not to use the technology even

unofficially,” she said. “(Employees)

could do so anyway, of course, because

of the free availability of many con-

sumer-grade social media sites, but

doing so might violate the conditions of

their employment or professional licens-

ing resulting in the most stringent of

penalties, particularly in the case of

lawyers, brokers, doctors and accoun-

tants.”

Facing Legal ChallengesOrganizations are unprepared to meet coming e-discovery demands for content from social media Web sites, experts say.

Local merchants who have very limited time andmoney for marketing are gravitating toward sim-ple, low-cost online marketing methods such as

Facebook and other social media, according to Merchant-Circle’s quarterly Merchant Confidence Index survey ofmore than 8,500 small and local business owners acrossthe U.S.

With its huge consumer adoption, ease-of-use andlow barrier to entry, Facebook continues to be a popularway for merchants to market their businesses. With 70percent using the social network for marketing, up from50 percent one year ago, Facebook has now surpassedGoogle (66 percent) as the most widely used marketingmethod among local merchants. Furthermore, while 40percent of merchants rate Google search as one of theirtop three most-effective marketing methods, a healthy 37percent rate Facebook as one of their most-effective tools.

Facebook Places has benefited from this high level ofadoption to reach a 32 percent current usage rate, with anadditional 12 percent of merchants citing plans to useFacebook Places in the coming months. WhileFoursquare’s usage is up from just 2 percent one year ago,use of the location-based service has remained steady at

about 9 percent over the past two quarters. Twitter hasalso grown in popularity over the past year, with nearly40 percent of local merchants using the micro-bloggingplatform to build awareness and community around theirproducts and services, up from 32 percent in Q4 2009.

While new marketing services such as mobile market-ing and group buying are generating significant buzz inthe media, local merchants have yet to tap these unprovenmarketing methods. According to the MerchantCircle sur-vey, more than half of local merchants are spending lessthan $2,500 a year on marketing, and 60 percent have noplans to raise their budgets this year. Many merchants arealso struggling to manage their existing programs anddon’t have time to take advantage of new, unproven ser-vices.

“Online marketing continues to be a challenge formost local businesses, and many merchants are workingwith very small budgets and almost no marketingresources,” said Darren Waddell, vice president of market-ing at MerchantCircle. “The marketing methods we seegaining the most traction are therefore the ones that offermerchants simplicity, low costs and immediate results.”

Social Marketing Continues Meteoric Rise among Small, Local Businesses

10 The Adviserwww.emtecinc.com � www.emtecfederal.com

Cloud Elevating IT’s Role

Cloud computing is fundamentally changing IT, enabling a more centralrole for IT in shaping business strategy and driving innovation, accord-ing to a recent survey of 200 IT managers in the U.S. and Europe.

Respondents to the survey conducted by IDG Research Services for CA Tech-nologies were nearly unanimous (96 percent) in saying the primary role of IThas changed over the past five years, and 50 percent said an increase in cloud-based services — particularly those that were formerly managed in-house —has contributed to this evolution.

While acknowledging that the current value of IT is largely defined by itsrole as owner and operator of IT infrastructure, 54 percent of respondents saidthey believe that within two years the primary value of IT will come frommanaging the IT supply chain.

The survey also indicates that IT professionals believe cloud computingaccelerates agility (63 percent), innovation (58 percent) and collaboration (57percent). Respondents anticipate cloud computing will boost IT productivity(55 percent) and decrease the level of staff time/resources dedicated to IT sup-port (40 percent).

Sixty percent of respondents said demand for personnel with expertise incloud computing has increased in the last five years, and 63 percent expectdemand to grow over the next two years. Nearly 70 percent of respondentsagree that an increasing number of CIOs and senior IT staff will have a busi-ness (as opposed to a technology) background in the future.

Mobile Computing Top IT Challenge

The control and use of smartphones, tablet computers and other mobiledevices in the workplace has become the No. 1 challenge for businesstechnology professionals, according to a recent survey of CPAs and

financial executives conducted by the American Institute of Certified PublicAccountants (AICPA).

The finding was based on responses from nearly 1,400 CPAs nationwidespecializing in information technology. In addition to mobile devices, the sur-vey signaled future IT issues will revolve around implementation of touch-screen technology, deployment of faster networks and voice recognition tech-nology.

“The surging use of smartphones and tablets means people are doing busi-ness, exchanging sensitive data wherever, whenever they want to,” said RonBox, CPA/CITP, CFF. “The technology is advancing so rapidly that the capa-bilities for controlling and protecting the information on mobile devices is lag-ging behind. What was once as simple as losing your phone could now createan enormous security risk for organizations.”

“Driving business value while managing risk means using technology solu-tions like encryption and asserting policy controls over what you can and can’tdo remotely,” said Joel Lanz, CPA/CITP, CFF. “This is forcing IT profession-als to think anew about how to manage networks and will now require awhole new level of communication with users.”

Cyber Espionage a Growing Threat

Enterprises are not taking the threat of cyber espionage seriously enough,and many have not taken adequate steps to prevent an attack, accordingto a recent study by independent technology analyst Ovum.

“Cyber criminals are graduating from stealing credit cards and bankingcredentials to targeting corporate plans and proprietary information. Theywant valuable information such as product and technology blueprints, cus-tomer lists or information that can be used to embarrass or disadvantage a vic-tim,” said Graham Titterington, author of the report and Ovum principal ana-lyst. “Almost every organization has sensitive information that would damageit if it were to be leaked out; however, many have overlooked cyber espionagein their preoccupation with preventing the theft of financial data.”

Cyber espionage is usually aimed at key individuals within an organiza-tion, who are sent “spear phishing” e-mails containing malicious links orattachments that infect their machines. The criminals then use malware toidentify assets, decrypt login details and steal the target information.

The report advises enterprises to increase their awareness of cyber espi-onage, restrict the distribution of sensitive information, vet users who haveaccess to high-value information, protect data held on third-party sites andconduct a risk analysis, including mobile devices and removable media. Thereport also warns enterprises that holding large amounts of data can increasethe risk of falling victim to cyber espionage, and they should look to minimizedata volumes.

The continued quest forwireless connectivity in amultitude of devices hasnow been joined by aninsatiable appetite for

speed. Today’s fastest wireless LAN(WLAN) standard, 802.11n, deliverstheoretical raw data speeds in excess of500Mbps — but that’s not enough. Tohelp satisfy the hunger for ever-fasterWLANs, the IEEE is now adding to itsalphabet soup of Wi-Fi technology stan-dards. The latest concoction is802.11ac, a new technology developedto provide Gigabit speeds.

The IEEE is expected to release adraft of the 802.11ac standard some-time in 2011, with the first 802.11ac-enabled devices to reach the marketsometime in 2012. Research firm In-Stat forecasts rapid uptake of the newstandard, with shipments of 802.11ac-enabled devices going from zero in2011 to nearly 1 billion by 2015.

“The goal of 802.11ac is to providedata speeds much faster than 802.11n,with speeds of around 1Gbps,” saysFrank Dickson, vice president ofresearch, In-Stat. “The timing for802.11ac approval is to have a draftstandard created by 2011 and have thefirst 802.11ac products out by the endof 2012. The technology behind802.11ac has not been finalized. How-ever, it will likely involve bonding fouror even eight channels together andsome tweaks to the modulationscheme.”

The Nth DegreeThe 802.11n standard, finalized in

March 2009, gave a real boost toWLAN performance. While older802.11g technology provides realWLAN throughput in the 20Mbps to25Mbps range, 802.11n delivers at least100Mbps by improving the efficiency ofmedia access control. It also uses moreof the wireless spectrum, when avail-able, to enhance performance; while802.11g uses 22MHz-wide channels,802.11n supports up to 40MHz-widechannels. It is also designed to resistinterference from neighboring Wi-Fisystems and 2.4GHz devices.

But the heart of 802.11n is a tech-nology called MIMO — short for mul-tiple input, multiple output — thatemploys multiple antennas and radios

to transmit and receive data. Althoughmultiple paths typically degrade radiosignals, MIMO uses a technique calledspatial multiplexing for simultaneoustransmission. This not only increasesbandwidth but provides greater cover-age, enabling very high-speed connec-tions over distances of 150 feet ormore.

As a result, a state-of-the-art802.11n WLAN can achieve speeds of300Mbps using two spatial streams,and future developments will bringsspeeds of up to 600Mbps using three orfour spatial streams. The 802.11 work-ing group is taking a similar path toreach the goal of 1Gbps throughputwith 802.11ac.

Crank up the ACThe proposed 802.11ac standard

features well-known technologies,including MIMO, along with anincrease in the radio channel. Just as802.11n increased throughput by dou-bling channel width from 20MHz to40MHz, 802.11ac provides evengreater speeds thanks to wide 80MHzchannels. In addition, advances in pro-cessing power have made it possible touse more sensitive coding techniquesthat depend upon finer distinctions inthe received signal.

Increasing efficiency — that is,maximizing the number of megabitstransmitted per megahertz of spectrum— is another way to increase datathroughput. A new technology calledmulti-user MIMO (MU-MIMO)improves upon the capabilities of the802.11n technology by enabling thesimultaneous transmission of differentdata frames to different end-usersthrough spatial awareness of clients andsophisticated queuing systems.

With any WLAN technology, thereal throughput (100Mbps for 802.11n)is generally a fraction of the theoreticalthroughput (500Mbps for 802.11n).Thus, the 1Gbps data rates of 802.11acmay exist only in ideal conditions. Fur-thermore, few Internet connections orinternal LANs operate on that kind ofbandwidth, so an upgrade to 802.11acmay not result in any real performancegains. Nonetheless, those who savor theidea of having the fastest WLAN possi-ble are expected to rapidly boost thenascent market for 802.11ac devices.

Cooking up GreaterWLAN SpeedThe IEEE continues to turn up the heat on WLANs, with the new 802.11ac Wi-Fi standard expected to deliver Gigabit speeds.

11www.emtecinc.com � www.emtecfederal.comMarch/April 2011

12 The Adviserwww.emtecinc.com � www.emtecfederal.com

Analyst: Contact Centers Lack Maturity

Contact centers are in desperate need of technology transformation tomeet the demands of their customers and agents, according to thelargest benchmark research ever done on the state of contact centers

worldwide. Based on input from almost 500 contact centers in all industry sec-tors, the report from Ventana Research cites immature processes, lack of infor-mation readiness, siloed applications and outmoded technology as challenges inthe typical multichannel contact center.

Applying the Ventana Research Maturity Index, the research found thatmore than half of organizations’ contact centers are currently at the “Tactical”level of maturity, the lowest of the four levels. The analysis placed only 11 per-cent of contact centers at the highest “Innovative” level.

The research firm says that while many contact centers now support multi-ple channels of communications, only a few can track interactions across chan-nels and even then it is typically only for traditional channels such as telephone,interactive voice response systems and e-mail.

“The explosion in the ways customers interact with companies has intro-duced significant new challenges for organizations and many contact centershave not adapted to meet these new demands,” said Richard Snow, VP ofResearch at Ventana Research. “Those organizations that invest in moderncontact center technology are most likely to improve both the efficiency and theeffectiveness of their overall operations and business performance.”

Power Management Market Growing

The PC and server power management software market is set to expandnearly fivefold from $168 million in 2010 to $783 million annually by2015, according to a new report from Pike Research. The clean-tech

market intelligence firm forecasts that PC power management software alonecould reduce CO2 emissions by almost 47 metric tons by 2015, equivalent totaking nearly 8 million cars off the road.

“Power management tools offer a fast return on investment for companieslooking to save costs and reduce emissions,” said senior analyst Eric Woods.“Often, this software may even come free of charge, thanks to utility companyrebates. This is a particular boon for corporate IT departments, since serversuse 60 percent of their maximum power while doing nothing at all.”

However, Woods added that these benefits are not yet a sufficient sellingpoint in some cases, since many IT departments are not responsible for energycosts and therefore do not have a powerful incentive to make changes.

Identity Theft Tops FTC Complaints

Reports of identity theft topped the list of consumer complaints to theU.S. Federal Trade Commission in 2010, the 11th consecutive year thatID theft has been at the top. Of 1.3 million complaints filed with the

FTC in 2010, 250,854, or 19 percent, were related to identity theft. Debt-col-lection complaints came in second with 144,159 filings, or 11 percent of thetotal.

The report breaks out complaint data on a state-by-state basis and alsocontains data about the 50 metropolitan areas reporting the highest per capitaincidence of fraud and other complaints. In addition, the 50 metropolitan areasreporting the highest incidence of identity theft are noted.

For the first time, “imposter scams” — in which imposters pose as friends,family, respected companies or government agencies to get consumers to sendthem money — made the top 10. The FTC also has issued a new consumer alertto help consumers avoid imposter scams.

The FTC notes that signs of an imposter scam include:

• They want you to wire money.

• They ask you to pay insurance, taxes or shipping in order to claim a“prize.”

• They claim to be with a government agency.

• They claim to be someone you care about, asking you to wire money tohelp them fix a car, get out of jail or a hospital emergency room, or get out of aforeign country.

The common characteristic in each of these scams is that they want you toact quickly. The FTC says it is essential to resist the pressure to act immediatelybefore you’ve checked it out.

The economy continues tostruggle, and many busi-nesses are looking for waysto cut costs and boost rev-

enues to spur recovery. Reducing soft-ware piracy could do just that, accord-ing to the Business Software Alliance(BSA) and global IT market researchand forecasting firm IDC. Reducingsoftware piracy creates a ripple effectthroughout the economy, generatingnew spending on related IT services anddistribution. That spending, in turn,creates jobs and delivers new tax rev-enues — and the faster the reduction insoftware piracy, the greater the returns.

Software piracy includes any unau-thorized copying, distribution or use ofcopyrighted software. It is a big busi-ness worldwide. U.S. Trade Representa-tive Ron Kirk recently released the firstannual report on so-called “notoriousmarkets,” which include online andphysical locations around the worldwhere piracy and counterfeiting is ram-pant. These pirates cost the IT industry$51 billion globally, while sappingcompetitiveness and innovation.

Reducing software piracy booststhe economy beyond its actual costsbecause of the so-called “multipliereffect.” Experts say that for every $1spent on legitimate packaged software,an additional $1.25 is spent on relatedservices from local vendors such asinstalling the software, training person-nel and providing maintenance services.

Think GloballyThe BSA/IDC study documented

the impact of reducing piracy rates by10 percentage points in 42 countries.The data show that such a reductionover the next four years would produce$142 billion in new economic activity,with more than 80 percent accruing tolocal industries. The reduction wouldalso create nearly 500,000 high-techjobs and generate roughly $32 billion innew tax revenues worldwide. Front-loading the gain by reducing piracy 10points in two years compounds the eco-nomic benefits by 36 percent, produc-ing $193 billion in new economic activ-ity and generating $43 billion in newtax revenues by 2013.

BSA believes that software theftcan be effectively reduced around theworld by promoting education aboutthe value of intellectual property andthe business practice of managing andoptimizing software assets through soft-ware asset management. Governmentsshould commit to legal software usethrough active software asset manage-

ment policies and promote legal soft-ware use by all government agencies,state-owned enterprises, contractorsand suppliers.

BSA also recommends implement-ing the World Intellectual PropertyOrganization’s Copyright Treaty to cre-ate an effective legislative environmentfor copyright protection, online andoffline. The World Trade Organiza-tion’s Trade-Related Aspects of Intellec-tual Property Rights Agreement alsorequires strong and workable intellec-tual property enforcement mechanisms,including providing for vigorousenforcement of misappropriation andinfringement of new software innova-tions such as cloud technologies. Theselegal tools should be used to supportdedicated resources for enforcement ofintellectual property laws, includingspecialized enforcement units, andimproved cross-border cooperationamong law enforcement agencies.

Benefit LocallyAlthough these actions target

pirates who sell thousands of unli-censed copies of software, making justone extra copy of an application —whether for profit or not — constitutessoftware piracy. Thus, businessesshould examine their own practices toensure that they are complying withsoftware license requirements.

Software compliance benefits indi-vidual businesses by reducing the riskof legal fees, fines and penalties, whichcan be as high as $150,000 perinfringement. Eliminating pirated soft-ware also reduces security risks —pirated software is unsupported, poten-tially defective, and often harborsviruses, worms and other malware.

Establishing a software asset man-agement process also helps organiza-tions evaluate their software needs,maximize IT investments and improveoverall performance. Unneeded soft-ware is systematically removed to freeup space on existing hardware as wellas to control licensing and supportcosts. Those budget dollars can then bereallocated to software purchases andupgrades that improve productivity anddeliver competitive advantage.

A lot of businesses are worriedabout the economy right now, andmany could take a positive step by scru-tinizing their servers and desktops forunlicensed software. By eliminatingpirated software, organizations can doa lot to help the economy — and theirown bottom lines.

Reduce Piracy,Boost the Economy

13www.emtecinc.com � www.emtecfederal.comMarch/April 2011

To end-users, passwords

may be a necessary nui-

sance, but to many orga-

nizations weak passwords

are a potential legal liabil-

ity. A growing number of regulations

stipulate that organizations be able to

prove they have established an infra-

structure that protects data from

destruction, loss, unauthorized alter-

ation or other misuse. Key to meeting

those regulatory requirements is the

ability to restrict end-user access to

data, enforce proof of identity and audit

online events.

Many organizations have estab-

lished security policies to aid in regula-

tory compliance, but enforcing those

policies can be a challenge. Simple

human nature comes into play. Most of

us are faced with a mind-boggling num-

ber of passwords to recall. Various

studies have shown that most end-users

have up to 10 passwords to remember,

with some survey respondents reporting

that they have as many as 20 passwords

to recall.

As a result, many of us resort to

some sort of memory-jogging technique

to save time and avoid being locked out

of needed applications. Rather than

supply a unique, robust password for

every application and network function,

we tend to use the same password for

most or all programs, or simplify pass-

words to the point they’re easy for oth-

ers to guess. If we do keep multiple, dis-

tinct, cryptic passwords, we’re likely to

post them somewhere handy lest we

forget.

Password Reduction PlanSingle sign-on (SSO) technology

can help reduce password overload. As

the name implies, SSO gives each

employee a single user name and pass-

word to remember. Instead of logging

into various network resources individ-

ually, the end-user logs into the SSOsystem once and gains access to all thefiles and applications he is authorized touse.

A SSO system creates a single,secure identity for each end-user byconsolidating their credentials into theirspecific object within their networkdirectory. Once they have a single iden-tity, users simply authenticate once atthe network login to launch their enter-prise single sign-on solution, which han-dles their subsequent applicationauthentications for them. The systemserves as a proxy for each end-user,managing the authorization process foreach application he needs to access. Itdoes the job of remembering the varioususer names and passwords associatedwith each application on the end-user’sbehalf.

More than just a relief for forgetfulend-users, SSO benefits organizationsfacing increasing regulatory scrutinyregarding their security practices byhelping to ensure that password policiesare followed. By consolidating user cre-dentials into a single identity, SSOenables enterprises to set up the funda-mental security framework necessary toenforce strict proof of identity. Doingso enables enterprises to meet regula-tory requirements and better protectdata by restricting user access to dataand auditing online events.

Knowing Who’s WhoEnterprises can restrict access to

sensitive information by leveraging therole-based access rights for each user’sidentity established in the networkdirectory. Leading enterprise SSO solu-tions reference this information to allowan administrator to configure end-useraccess to applications based on theirfunctional grouping within the direc-tory. This ensures only authorized usersgain access to confidential information.

When integrated with multi-factorauthentication technologies, SSO sys-tems can require employees to verifytheir identity at the network login via abiometric, smartcard or token device —or any combination of these — as wellas a complex password. When a userauthenticates with multi-factor authen-tication, the enterprise has irrefutableevidence of the user’s identity.

The enterprise can apply this strongproof of identity to report and audit theuser’s online events. For instance, once

the SSO system has confirmed the user’sidentity, it captures the time, number ofattempts and authentication used toaccess the network. It also records theuser’s online events, the systemsaccessed or information altered, as wellas the time he logs out.

Beyond ComplianceRegulatory compliance isn’t the

only benefit of SSO technology. SSOgreatly enhances network security sincepasswords are generally the first line ofdefense for applications and data. Justas most burglars come in through thefront door, many hackers will first tryto guess a password to gain entry intothe network. It doesn’t take technicalknowledge to access sensitive informa-tion if the password is posted on themonitor. SSO can result in an immedi-ate improvement in security for sensi-tive applications and data. With a singlepassword to remember, end-users aremore likely to choose one that’s difficultto crack, and change it frequently.

SSO can also relieve IT workloads.Despite the use of memory aids, mostend-users forget passwords from time totime. When an employee forgets Pass-word No. 4, his recourse is to call thehelp desk and have the password reset.In an enterprise, the sheer volume ofpassword-related help desk calls addsup to significant productivity losses forboth end-users and IT staff.

SSO can eliminate 95 percent ofpassword-related help desk calls, andreduce IT staff time devoted to pass-word management and resets. That canresult in significant cost savings.Experts estimate that the average pass-word-related help desk call costs about$25. An enterprise with 2,000 employ-ees fielding 1,400 such calls per monthcould save nearly half a million dollarsper year through password manage-ment.

Passwords may seem like a neces-sary evil, but failing to establish andenforce strong password policies canhave dire consequences. Easy-to-remem-ber passwords not only threaten net-work security but expose organizationsto potential regulatory penalties. SSOhelps solve these problems by providingemployees with one, strong password toaccess all their applications and data,and organizations with the ability tocontrol and audit that access.

14 The Adviserwww.emtecinc.com � www.emtecfederal.com

This copy of the Adviser was provided by Emtec Inc.

To receive your FREE subscription, sign up online at www.emtecinc.com/adviser

or send in this coupon.

� New Subscription � Change of Address

Name __________________________________________________________________________

Title ____________________________________________________________________________

Company _______________________________________________________________________

Address ________________________________________________________________________

City ______________________________________________________ State ________________

Zip ___________________________________________________________

Phone__________________________________________________________ Fax ____________

E-mail_________________________________________________________

Please print clearly. Send to Adventure Publishing, 4941 S. 78th E. Ave., Tulsa, OK74145. Fax (918) 270-7134.

Copyright © 2011 CMS Special Interest Publications. All rights reserved.

Editorial Correspondence:4941 S. 78th E. Ave., Tulsa, OK 74145Phone (800) 726-7667 • Fax (918) 270-7134

Change of Address: Send updated address label information to above address.

Some parts of this publication may be reprinted or reproduced in nonprofit or internal-usepublications with advance written permission.

The Adviser is published monthly by CMS Special Interest Publications. Printed in the U.S.A.Product names may be trademarks of their respective companies.

Subscribe Today!

4/11

Enforcing Password PolicySingle sign-on aids in regulatory compliance by giving end-users just one strong password to remember.

15March/April 2011 www.emtecinc.com � www.emtecfederal.com

Online Tax Filing Concerns Remain

Almost half of all Americans continue to have concerns that their per-sonal and financial information would not be kept private and secure ifthey file their state and federal tax returns on the Internet, according to

the results of a new national poll. The survey was commissioned by the onlinetax Web site Taxsoftware.com.

The level of concern fluctuates depending on the device to be used to filetax returns. Almost half (49 percent) are somewhat or very concerned aboutusing desktop computers, or are so worried that they would not use the com-puter at all. It was 44 percent for laptop computers, 43 percent for smart-phones, 32 percent for PDAs and 31 percent for iPads.

When compared with previous surveys, the newest results indicate thatAmericans are gradually becoming more comfortable with online tax filing. In a2007 survey conducted for Taxsoftware.com, two- thirds of adults were con-cerned that their personal and financial information would not be kept privateand secure if they prepared state and federal tax returns on the Internet. A simi-lar poll in 1997 found that 83 percent of Americans had similar worries.

“The two good pieces of news from this survey are that people apparentlyfeel the safest using the latest iPad technology to file their tax returns and that,over time, more Americans are feeling more comfortable about using the Inter-net to file those returns,” said Taxsoftware.com spokesman Mickey Macedo.

The Art of Video Games

The Smithsonian American Art Museum is inviting the public to helpselect video games that will be included in an exhibition to open nextyear. “The Art of Video Games” will explore the 40-year evolution of

video games as an artistic medium, with a focus on striking visual effects andthe creative use of new technologies.

Voting will take place online at www.artofvideogames.org. Participantscan vote for 80 games from a pool of 240 proposed choices in various cate-gories, divided by era, game type and platform. The games on the voting sitewere selected for their graphical excellence, artistic intent and innovative gamedesign.

“I want this exhibition to include the collective voice of the video gameworld, which is not limited to the developers, designers and artists but also thegame players,” said exhibition curator Chris Melissinos. “It is important to methat when gamers visit the exhibition, they find the experiences that most mat-ter to them.”

The games on the ballot were selected by Melissinos and reviewed by theexhibition’s advisory group, consisting of game developers, designers, industrypioneers and journalists.

“The Art of Video Games” will feature some of the most influential artistsand designers during five eras of game technology, from early developers suchas David Crane and Warren Robinett (who created games for Atari in the1970s) to contemporary designers like Kellee Santiago and David Jaffe. Theexhibition will feature 80 games and 20 gaming systems ranging from the AtariVCS to the PlayStation 3.

One in Three Suffer Phone Loss, Theft

At a time when smartphone use has become engrained in everyday life, anew survey from Norton reveals that 36 percent of consumers in theU.S. have fallen victim to cell phone loss or theft. Respondents reported

that it cost an average of $125.30 to resolve the situation.

Of the 20 most-populated cities in the U.S., Miami has highest rate of cellphone loss or theft (52 percent), followed by New York (49 percent) and LosAngeles (44 percent).

Norton noted that few respondents take steps to protect important andpersonal information stored on smartphones. Eighty-seven percent could nei-ther remotely lock nor remotely wipe their phone’s memory after a loss or theft,and more than half (54 percent) did not password protect their phones.

Smartphone loss or theft is far more than an inconvenience for users — italso can place highly sensitive information at risk. According to a separate sur-vey by Kaspersky Lab, approximately one-third of smartphone users store cre-dentials such as PIN codes, passwords and user names to access personal andcorporate e-mail on their devices. The Kaspersky Lab survey also noted thatmore than half (52 percent) of all smartphone users aren’t even aware of theexistence of mobile protection software for their phones, and only 12 percentare already using it.

The fastest-growing segmentof the server market is thehigh-density blade sector,meaning that so-called

“high-density zones” will need to beincorporated into most data centersduring the next five years, according toGartner. Through 2015, 50 percent ofdata centers will have a high-densityzone, up from less than 10 percent in2010.

Gartner defines a high-density zoneas one where the energy needed is morethan 10 kilowatts (kW) per rack for agiven set of rows. Gartner analysts saythat high-density zones will provide thebest method to balance the power andcooling requirements of different ITequipment (servers, storage and net-working gear) in the same physical datacenter, leading to energy cost optimiza-tion.

“High-density zones are by far thebest way to manage the differences inthe lifecycle changes of data centers’building structures, electromechanicalequipment and IT equipment,” saidRakesh Kumar, research vice presidentat Gartner. “However, many usersremain unsure of the benefits of high-density zones — especially in gainingflexibility in capacity planning — aswell as the potential pitfalls.”

Ever-Increasing EnergyRequirements

Traditional data centers built asrecently as five years ago were designedto have a uniform energy distribution ofaround 2kW to 4kW per rack, withcooling keyed to that level of powerconsumption. With the increasing useof high-density blade systems, thisdesign envelope is no longer sufficient.A standard rack of industry-standardservers needs 30 square feet to beaccommodated without supplementalcooling, and a rack that is 60 percentfilled could have a power draw as highas 12kW. Any standard rack of bladeservers that is more than 50 percent fullwill need to be in a high-density zone.

Kumar said that some of the mainissues facing data center managers inthe design of high-density zones includeplanning for lifecycle changes in IThardware, space and cooling. For exam-

ple, traditional forced-air cooling meth-ods become increasingly ineffective atdensities above 15kW per rack. A high-density zone will therefore typicallyrequire supplementary cooling, such asa chilled-water system, hot/cold aislecontainment or in-row/in-rack cooling.

“One of the most important strate-gic considerations in designing newdata centers or refurbishing existingones is balancing the rates of changebetween the building’s system and theIT systems,” said Kumar. “For exam-ple, over a 15-year period, a buildingwill remain essentially the same, but theelectromechanical systems will typicallyneed one round of modifications, whilethe IT systems will typically berefreshed two to three times.”

Planning Ahead forCapacity

Kumar said that balancing thesechanges is difficult. The core of theproblem is that new generations of ITequipment will become increasinglycomplex (blade systems and the evolv-ing fabric architectures are examples),resulting in ever-increasing energyrequirements. Therefore, one of the bestways to “future proof” against theseproblems is to use high-density zones.Gartner advises organizations todevelop a high-density zone largeenough to accommodate predicted ITcapacity growth, which should typicallybe 20 percent to 25 percent of theraised floor space.

The space required for the high-density zone will depend on many vari-ables. For example, the proportion ofhigh-density IT equipment to standardequipment will provide a rough guide.However, users must also look at theirfuture technical architectures, as thehigh-density zone must be big enoughto accommodate growth.

Gartner advises using high-densityzones as a mechanism to manage spacewithin the data center. Where spacecosts are at a premium, users shouldensure that the design and size of thezone can accommodate growth for atleast five years and, where possible, upto 10 years. Using scalable power distri-bution units (PDUs) and moveablewalls (for containment), should providea scalable environment without over-engineering for growth.

Power-PackedData CentersMore than 50 percent of data centers will incorporatehigh-density zones by year-end 2015, Gartner says.

TRANSFORMING ITEmtec, Inc. is an integrated IT solutions, services and systems provider driven by a singularmission: to help major organizations across a broad range of sectors realize fast and fullreturn on their IT investments.

Our solutions offerings span the entire IT lifecycle, from IT Consulting and ApplicationServices to Infrastructure Services and Cloud Solutions.

In short, we help you plan, procure, integrate, implement, manage and maintain IT to alignwith your business goals. We do that by combining the latest knowledge with proven ITproducts and systems from world-leading partners – and we have the consulting, engineeringand technical expertise, resources, and personnel to efficiently handle projects of any sizeand complexity.

Our commitment to delivering IT solutions, systems and services of the highest standard isreflected in our ISO 9001 certification. Let Emtec help you transform IT into an investmentthat returns true value to your organization.

IT CONSULTING� IT Strategy & Planning

� IT Performance & Governance

� IT Process Improvement

� IT Security & Compliance

APPLICATION SERVICES� Development, Maintenance & Support

� Package Implementation

� Validation & Verification

� Information Management

INFRASTRUCTURE SERVICES� IT Service Management

� Procurement & Lifecycle Services

� Infrastructure Optimization

� Managed Services

CLOUD SOLUTIONS� Cloud Strategy

� Cloud Development

� Infrastructure Optimization

V I S I T O U R W E B S I T E S T O L E A R N M O R E

A B O U T O U R E X PA N D E D O F F E R I N G S :

W W W. E M T E C I N C . C O MW W W. E M T E C F E D E R A L . C O M