Commonwealth Conversations: Technology

Posted by:
Dana Racine, Senior Network Engineer, Executive Office of Consumer Affairs

An operating system that runs on a PC or laptop provides a host of features that we have grown accustomed to, and sometimes take for granted. From a technical standpoint, an operating system manages processes, routes our data, and transmits our communications over the underlying infrastructure. Today more than ever, an operating system is a component of a larger vision of computing, whether it is a thin client or full system, the client operating system provides the place in which the user interacts and performs their work each day. 

Upgrading to newer revisions of an operating system can provide new features and security that can deliver a more stable and secure computing environment. In the Commonwealth, as with many other companies, the Windows operating system is the standard, which is currently deployed with Windows XP. However, Windows XP is now almost ten years old, and has an antiquated network stack, limited local firewall capabilities, and slowed growth with hardware vendors’ support. As with many other IT technologies, as other changes occur in the IT space, such as Internet browsers, biometrics, and encryption, so too must the operating system in order to deliver a fully integrated experience for the user.

Windows 7 is the newest iteration of the Microsoft desktop/laptop operating environment. This version of Microsoft’s software provides a host of new features that will ultimately provide value for the Commonwealth from both a technology and business perspective. In the security space especially, Windows 7 will outperform other operating systems “out-of-the-box,” with capabilities that used to require integrating (and purchasing) third party products.

Perhaps the most important feature that Windows 7 will provide to the Commonwealth is in usability and overall user experience. The new interface for Windows 7 is feature rich, and graphically pleasing, utilizing a more refined version of the Aero interface alongside DirectX 11. These API’s allow for hardware vendors who write video drivers for their video chipsets to build applications, including advanced web graphics that run faster, more fluidly, and more intuitively than in the past.

As memory begins to exceed 4GB on desktops and laptops, we are also in need of an operating system that can address this requirement. Windows 7 delivers both a 32-bit and 64-bit version, which is transparent to the user, allowing systems to allocate more than 4GB of memory (via 64-bit). It may be hard to contemplate why a user would need so much memory, especially with many applications moving toward web-based architectures. However, there are new websites that have deployed advanced animation and graphics, using plug-ins such as Flash or Silverlight, which can require 100-200MB of memory for a single browser window. Additionally, there are new desktop widgets, MS Office applications, and media that all contribute to memory utilization. Most of all however, we have seen that as users realize there is more horsepower available, they will take advantage of that horsepower by opening more windows simultaneously. Thus, systems with greater than 4GB will ultimately benefit the user by allowing more multi-tasking.

Despite all of the progress toward web-based programming, there are still a number of legacy applications online that require Windows XP compatibility. There may be a medical device in a lab that is attached to a PC, in which case the vendor does not provide support for Windows 7, or perhaps an old Access 97 database that only serves 10 people, but which nobody can seem to find the time to reprogram. In these instances, Windows 7 offers two solutions. First, there is application compatibility mode, which allows a process to be tricked by Windows 7 into believing it is running in a prior version of Windows. Second, there is a local application virtualization feature which provides a way to create a completely isolated environment for the application to run, but which is transparent to the user.

Discussion of virtualization is outside of the scope of this article, however, the most interesting feature of Windows 7 is that it does not require a backend to run the virtualized environment. If a legacy application requires Windows XP in isolation, the IT admin can, through Active Directory and scripting, create an application virtualization window on the local desktop that looks and acts as though it is just another GUI window within Windows 7. Behind the scenes, however, there is a version of Windows XP actually running, delivering up the application in a way that makes it appear as though it is really running in the Windows 7 operating system.   

From the security perspective, Windows 7 delivers a plethora of updates that will help encapsulate the user experience into an isolated environment more than ever. First, there is the updated firewall service. This new firewall has policy or traditional port based rules that can be dynamically assigned remotely or locally via central policy repositories. The new policies can even go so far as creating connection pairs with criteria, where a PC may only be allowed to communicate with a specific IP address only when an authenticated user is logged in.

Security updates are now provided in a more automated fashion, removing the fear of missing updates as they are deployed by Microsoft. Biometrics, including fingerprinting, is now built into the API’s of Windows, allowing for integration into Active Directory and third party applications. Drive-level FIPS compliant encryption is also now standard, with the capability to encrypt local hard drives as well as removable devices such as USB keys.

Finally, there is also an internal process protection system call User Account Control (UAC), which prevents a process from being invoked in super-admin mode; this ultimately stops many worms and malware from propagating using local admin rights. Internet Explorer 8 and secure DNS are two additional features that deliver a secure-computing model using the latest standards in networking.

Posted by:
Michael Johnson, Enterprise IT Architect, Information Technology Division

Many of you have been hearing about the second data center for years.  That project, now known as the Springfield Data Center (SDC), is now officially underway.  A ground breaking ceremony was held on June 22, as noted in the following excerpt from the press release:

The SDC will serve as a secure housing facility for the state's electronic records and data systems while also providing critical backup for the Commonwealth's existing primary data center. When complete, the $110 million facility will be a national model for green technology.

The 148,000-square-foot building is designed to drastically minimize energy use through efficiency measures and other design features. It will be constructed with the latest technologies in energy efficient data center infrastructure, sustainable building design and consolidated computer technology.

"The Springfield Data Center is a project with a multitude of benefits," said Governor Patrick. "In addition to securing critical data used by thousands of state workers, this facility will be a national model for environmentally-friendly data storage and an economic boost for the City of Springfield. I thank Congressman Neal, Mayor Sarno, the legislative delegation and the community for their support and dedication to making this project a reality."

The new data center is being designed with a host of state of the art efficient technologies, including fresh air cooling, EnergyStar servers and an advanced energy management system, which will make the new facility among the most energy efficient data centers in the country. The state's Division of Capital Asset Management and Information Technology Division have also been working with Western Mass Electric Co. to maximize potential rebates available through the utility to lower front end costs, while enhancing energy efficiency at the new facility.

In addition to the facilities work that is now moving full steam ahead, ITD technical architects are working hard to prepare for the consolidated, two data center vision that SDC will fulfill.  SDC will be not just one of the most energy efficient data centers in the country, it will also be a model of state-of-the art, best practice technologies and operational efficiency.  Construction is expected to be complete around May of 2012.  Meanwhile, there is much work to be done.

Stay tuned for updates as this exciting project proceeds.

Posted by:
Stephanie Marsan, SAI Communications Manager, Information Technology Division

How can we do more with less?

Citizens want simpler access and more consistency for the services that they use. SOA can help to achieve these objectives faster, better, and cheaper.

But what exactly is SOA?

SOA is not a technology; it’s a design approach that focuses on the application development process and how to deliver functional requirements in an efficient manner using standard protocols and technical specifications.

But wait, here’s where it matters to you… Effective implementation of SOA will allow an agency to react and adjust to new business requirements by offering a mechanism for enhancing existing systems without major re-design or upgrade efforts.  Your ability to react quickly to new needs will make your ability to say ‘yes we can’ easier, your budget restrictions seem less severe, and your mountain of work less daunting.  Amazing isn’t it?

How can SOA do that?

SOA uses “services” to deliver application functionality.  Services can be considered a discrete piece of functionality (i.e. validate a user name) or a bundle of functionality (make an electronic payment).  The features of services (what the service does, when it can be used, how it may be modified) are articulated through associated Service Level Agreements (SLA's) which provide a documented understanding between the provider of the service and the user (consumer) of the service.
Once a core set of services exist, agencies can then begin to take advantage of the reuse promise. 

So what’s in it for me again?

SOA enables you to connect your computing assets with each other and with the assets of others.  It is possible, with a fraction of the effort required in the past, to get your systems to speak to each other, regardless of their technology and what you may have been told in the past were ‘incompatible’ systems.

SOA aligns your IT resources with existing and emerging business needs. With SOA, you can unlock your IT resources from their application silos and make their functionality broadly available. By making information and IT resources available to your employees and your business partners without the constraints of homogenous systems, you can empower everyone to make better decisions, be more productive, and address their business challenges.  You’ll make friends and gain influence… really.