Preview: IBM z/VSE V6.2

IBM United States Software Announcement 217-091
April 11, 2017

Table of contents
OverviewOverviewPlanned availability datePlanned availability date
Key prerequisitesKey prerequisitesDescriptionDescription


Top rule
At a glance
Bottom rule

The focus of z/VSE® V6.2 will be online transaction processing, security, and connectivity to improve integration of z/VSE in a heterogeneous environment.

IBM z/VSE V6.2 is designed to deliver:

Exploitation of innovative IBM z Systems™ and IBM® System Storage® technology:

  • An Architectural Level Set that requires IBM zEnterprise® 196, IBM zEnterprise 114, or later.
  • Transparent support for the High Performance FICON® for z Systems™ (zHPF) protocol for user applications.
  • Support for the IBM z13™ Vector Facility (SIMD) for user applications.
  • FlashCopy® Space Efficient (SE) support for Extent Space Efficient (ESE) volumes configured in an IBM DS8880.

IBM CICS® Transaction Server for z/VSE V2.2:

  • Enhancements to CICS Explorer® to more easily manage CICS resources.
  • An upgrade of CICS Web Support (CWS) to HTTP 1.1 to support the latest web browsers and applications.
  • CICS API enhancements.

Security enhancements:

  • Clients can choose to use z/VSE's cryptographic services for their online and batch applications for enhanced security and more flexibility.
  • Clients can use secure connections for remote virtual tapes to protect sensitive data during network transfer.

Connector enhancements:

  • The z/VSE SOAP engine will help to meet the needs of CICS applications with growing data.
  • A new z/VSE REST (Representational State Transfer) Engine includes JSON (JavaScript™ Object Notation) support.

Ease of use functionality for SCSI-only systems:

  • Support for tape-less initial installation using SCSI and emulated FBA installation disks.
  • Support for stand-alone dump on SCSI disks.

New releases of IBM IPv6/VSE V1.3 and IBM TCP/IP for z/VSE V2.2



Back to topBack to top

Top rule
Overview
Bottom rule

IBM previews z/VSE V6.2, the new release of z/VSE.

The focus of z/VSE V6.2 will be online transaction processing, security, and connectivity to improve integration of z/VSE in a heterogeneous environment.

Together with hardware exploitation, ease of use functionality, and support of the latest IBM z Systems and IBM System Storage technology, z/VSE V6.2 may provide additional benefits to z/VSE clients, including allowing them to better protect their investments in the z/VSE platform and place new workload on z/VSE.

Enhancements planned for z/VSE V6.2 include:

Exploitation of innovative IBM z Systems and IBM System Storage technology:

  • z/VSE will introduce an Architectural Level Set that requires IBM zEnterprise 196, IBM zEnterprise 114, or later.
  • z/VSE will transparently exploit the High Performance FICON for z Systems (zHPF) protocol for user applications and thus bring the benefits of IBM z Systems and IBM System Storage to z/VSE clients.
  • Elliptic Curve Cryptography (ECC) of the OpenSSL component will be accelerated with a Crypto Express5S in an IBM z13 and IBM z13s.
  • The IBM z13 Vector Facility for z/Architecture®, also referred to as Single Instruction Multiple Data (SIMD), may improve performance. z/VSE will support SIMD instructions for user applications.
  • FlashCopy Space Efficient (SE) support will be provided for Extent Space Efficient (ESE) volumes configured in an IBM DS8880.

CICS Transaction Server for z/VSE V2.2:

CICS Transaction Server for z/VSE (CICS TS for z/VSE) V2.2 is the only release supported on z/VSE V6.2. This release replaces CICS TS for z/VSE V2.1 and delivers:

  • Enhancements to the CICS Explorer to more easily manage CICS resources.
  • An upgrade of CICS Web Support (CWS) to HTTP 1.1 for improved performance and security and to support the latest web browsers and applications.
  • Enhancements to the CICS Application Programming Interface (API).

Security enhancements:

  • The OpenSSL component of z/VSE (z/VSE Cryptographic Services) will be upgraded to OpenSSL 1.0.2h to benefit from newer SSL/TLS functions.
  • The OpenSSL component will transparently use hardware acceleration for Elliptic Curve Cryptography (ECC), if available.
  • Clients can choose to use z/VSE's cryptographic services for their online and batch applications for enhanced security and more flexibility:
    • OpenSSL for CICS Web Support will give clients more flexibility and allow them to take advantage of the OpenSSL security.
    • The EZA 'Multiplexer' and the EZA OpenSSL support will simplify the use of the EZA interface with any TCP/IP stack.
  • Basic Security Manager (BSM) will simplify the administration of batch resources.
  • Clients can use SSL/TLS connections for remote VTAPEs (virtual tapes) to protect sensitive data during network transfer.
  • LDAP sign-on support will be enhanced to fulfill ease of use customer requirements.
  • VSE/POWER® will enable TLS 1.0 (and higher) for PNET SSL connections.

Connector enhancements:

  • The z/VSE SOAP (Simple Object Access Protocol) engine allows the transfer of large amounts of data to better meet the needs of CICS applications with growing data.
  • REST (Representational State Transfer) has gained widespread acceptance across the web as an alternative to SOAP based web services. The new z/VSE REST Engine with JSON (JavaScript Object Notation) support will allow clients to provide RESTful web services running in a CICS environment, and develop CICS applications that consume RESTful web services that are hosted outside of z/VSE.
  • The z/VSE database connector will provide an ease of use batch and interactive interface that allows clients to perform database queries without the need to implement an application first.

Networking enhancements:

  • The z/VSE Linux™ Fast Path (LFP) will offer more connectivity options and allow LFP running as a z/VM® guest to access the network via the z/VSE Network Appliance or via a Linux on z Systems image in an LPAR.

Ease of use functionality for SCSI-only systems:

  • Tape-less initial installation using a SCSI installation disk as well as stand-alone dump using a SCSI dump disk will fulfill customer requirements. Clients may no longer be forced to include a physical tape volume in the configuration and thus reduce costs and simplify the configuration.

IBM IPv6/VSE V1.3:

IBM IPv6/VSE V1.3 replaces IBM IPv6/VSE V1.2 on z/VSE V6.2. It will deliver:

  • New FTP server security interface to simplify security definitions.
  • SSH (Secure Shell) copy facility for secure file transfer using SSH to and from z/VSE.
  • TXT2PDF generation facility to convert a text file into a Portable Document Format (PDF) file.

IBM TCP/IP for z/VSE V2.2:

IBM TCP/IP for z/VSE V2.2 replaces IBM TCP/IP for z/VSE V2.1 on z/VSE V6.2. It will deliver:

  • Support for the TLS 1.1 protocol for enhanced security.

z/VSE V6.2 will support IBM z Systems servers:

  • IBM z13
  • IBM z13s
  • IBM zEnterprise EC12 (zEC12)
  • IBM zEnterprise BC12 (zBC12)
  • IBM zEnterprise 196 (z196)
  • IBM zEnterprise 114 (z114)

z/VSE V6.2 can run in LPAR mode, or as a guest in any supported z/VM release. z/VSE V6.2 is the preferred follow-on product for clients with z/VSE V6.1, z/VSE V5, z/VSE V4, z/VSE V3, or VSE/ESA installed. Upgrade to z/VSE V6.2 can be done using initial installation or Fast Service Upgrade (FSU). FSU can be used only if upgrading from a z/VSE V6.1 system. Prior versions of z/VSE require initial installation.

z/VSE V6.2 offers Midrange Workload License Charge (MWLC) pricing metrics, including a sub-capacity option, for the z13™, zEC12, and z196 servers. IBM offers Advanced Entry Workload License Charge (AEWLC) pricing metrics, including a sub-capacity option, for the z13s, zBC12, and z114 servers. The entry models (capacity setting A01) of the z13s, zBC12, and z114 will be priced using z Systems Entry License Charge (zELC) for their IBM monthly license charge software.

IBM replaces Single Version Charging (SVC) with Multi-Version Measurement (MVM) for eligible z/VSE software programs, providing z Systems clients with more flexibility for new software deployments and software upgrade cycles. MVM also replaces the Migration Pricing Option (MPO). See Software Announcement 217-093, dated February 14, 2017.



Back to topBack to top

Top rule
Key prerequisites
Bottom rule

Hardware and software requirements

z/VSE V6.2 will introduce an ALS and will support IBM z Systems:

  • IBM z13
  • IBM z13s
  • IBM zEnterprise EC12
  • IBM zEnterprise BC12
  • IBM zEnterprise 196
  • IBM zEnterprise 114

It can run in LPAR mode, or as a guest on any supported z/VM release.

Compatibility

  • Starting with z/VSE V6.2, tape delivery is dropped. z/VSE V6.2 is delivered on DVD or through electronic delivery via Shopz. To perform initial installation clients have to create either an installation disk or a physical tape volume.
  • Starting with z/VSE V6.2, z/VSE can no longer be installed on disks of type 3380 (or disks of type 3390 in 3380 track compatibility mode). Disks of type 3380 are still supported as data disks.
  • An upgrade to z/VSE V6.2 can be done using initial installation or Fast Service Upgrade (FSU).
    • FSU can be used only if upgrading from a z/VSE V6.1 system. FSU from z/VSE V5 to z/VSE V6 is not possible.
    • FSU cannot be used if your system disks are of type 3380 (or of type 3390 in 3380 track compatibility mode).
    • Both initial installation and FSU will fail if your z Systems server is not z196 / z114 or higher.
  • CICS TS for z/VSE V2.2 is the only release supported on z/VSE V6.2. It replaces CICS TS for z/VSE V2.1.
  • Starting with z/VSE V6.2, CICS transactions can no longer be protected using table DTSECTXN. Clients still using table DTSECTXN to protect CICS transactions have to migrate to the BSM control file, preferably before upgrading to z/VSE V6.2.
  • IBM TCP/IP for z/VSE V2.2 is the only IBM release that can be used with z/VSE V6.2. It replaces IBM TCP/IP for z/VSE V2.1.
  • IBM IPv6/VSE V1.3 is the only IBM release that can be used with z/VSE V6.2. It replaces IBM IPv6/VSE V1.2.
  • Starting with z/VSE V6.1, z/VSE is shipped as English version only.


Back to topBack to top

Top rule
Planned availability date
Bottom rule

Fourth quarter 2017

Previews provide insight into IBM plans and direction. Availability, prices, ordering information, and terms and conditions will be provided when the product is announced.



Back to topBack to top

Top rule
Description
Bottom rule

The focus of z/VSE V6.2 will be online transaction processing, security, and connectivity to improve integration of z/VSE in a heterogeneous environment.

Together with hardware exploitation, ease of use functionality, and support of the latest IBM z Systems and IBM System Storage technology, z/VSE V6.2 may provide additional benefits to z/VSE clients, including allowing them to better protect their investments in the z/VSE platform and place new workload on z/VSE.

Enhancements planned for z/VSE V6.2 include:

Exploitation of innovative IBM z Systems and IBM System Storage technology:

  • Increased performance using the High Performance FICON for z Systems (zHPF) protocol:
    • The zHPF channel Input/Output (I/O) architecture is designed to improve the execution of small block I/O requests. z/VSE will translate applicable I/O commands into the zHPF protocol and thus transparently exploit the zHPF protocol for user applications. This brings the benefits of z Systems and IBM System Storage to z/VSE clients. Selected I/O intensive applications may especially benefit from a FICON Express16S in an IBM z13 or z13s with the zHPF protocol and IBM DS8880 storage.
    • z/VSE will provide the support for both the LPAR and z/VM guest environment. For z/VM guests the appropriate service level is required.
  • IBM z13 Vector Facility for z/Architecture potential to improve performance:
    • The Vector Facility is also referred to as Single Instruction Multiple Data (SIMD). The z/VSE support will allow user applications to use SIMD instructions and thus fulfill customer requirements. When using SIMD instructions in a z/VM guest environment the appropriate z/VM level is required.
  • FlashCopy Space Efficient (SE) support for Extent Space Efficient (ESE) volumes:
    • FlashCopy SE will allow clients to use an ESE volume as the target volume with the NOCOPY option.
    • To configure ESE volumes IBM DS8880 R8.1 is required.

CICS Transaction Server for z/VSE (CICS TS for z/VSE) V2.2:

CICS TS for z/VSE V2.2 replaces CICS TS for z/VSE V2.1. This release is designed for use only with z/VSE V6.2 and delivers:

  • Enhancements to the CICS Explorer to more easily manage CICS resources:
    • Define new CICS resources and modify or delete existing resources.
    • Monitor, control, and update dynamic storage areas and global temporary storage queue statistics.
    • Support "definitions" views for selected CICS resources.
  • An upgrade of CICS Web Support (CWS) to HTTP 1.1:
    • CWS has been upgraded to comply with HTTP 1.1, providing support for the latest web browsers and applications. New function has been added, such as persistent connections, pipelining, and chunking, to improve performance and security.
  • Enhancements to the CICS API to provide:
    • Support for UTF-8 and UTF-16, for use in data conversion, when using the channels and containers API.
    • Support for the APPEND parameter for PUT CONTAINER, to append specified data to existing container data.
    • Support for the BYTEOFFSET parameter for GET CONTAINER, to retrieve data at a specified offset in a container.
    • Support for date and time stamp formats that are in general use across the internet.
    • Support for Language Environment® (LE) MAIN for Assembler applications.

Security enhancements:

  • OpenSSL component of z/VSE (z/VSE Cryptographic Services):
    • The OpenSSL component is upgraded to OpenSSL 1.0.2h to benefit from newer SSL/TLS functions.
    • Elliptic Curve Cryptography (ECC) hardware acceleration with a Crypto Express5S in CCA coprocessor mode will be transparently used. If the hardware is not available, the ECC software implementation will continue to be used.
  • Ability to use OpenSSL for CICS Web Support:
    • Clients using CICS Web Support with SSL/TLS will be able to choose between the OpenSSL component delivered as part of the z/VSE operating system and the SSL component of a TCP/IP stack. This may simplify the configuration, gives clients more flexibility, and allows them to take advantage of the OpenSSL security.
  • EZA 'Multiplexer' and EZA OpenSSL support:
    • The EZA 'Multiplexer' simplifies the use of the EZA interface with any TCP/IP stack. Clients can configure which EZA interface phase is to be used for a given TCP/IP stack ID.
    • It also allows clients to use OpenSSL for the EZA SSL/TLS interface, independent of the used TCP/IP stack.
  • Ability to use SSL/TLS connections for remote VTAPEs to achieve transport layer encryption of sensitive tape data during network transfer.
  • Basic Security Manager enhancements:
    • The z/VSE Basic Security Manager (BSM) distinguishes between repositories for online and batch security definitions. The repository to protect batch resources is the phase DTSECTAB. It contains library, sublibrary, member, and file definitions. Whereas online resources can be easily maintained using the dialogs of the Interactive User Interface (IUI), for each batch resource the DTSECTAB needs to be updated. To simplify the administration of batch resources, z/VSE intends to provide a common interface for both online and batch resources. An IUI dialog will be offered that builds a DTSECTAB with the resources specified.
  • Enhanced LDAP sign-on support:
    • z/VSE will provide a RESET option for the LDAP user mapping tool to clear the cached password hash for a user. This forces a full LDAP sign-on to be performed next time the user signs in.
    • z/VSE will provide wildcard support for the CHANGE and DELETE commands of the LDAP user mapping tool to allow modification or deletion of multiple user records with one command. This, for example, allows clients to generate a new VSE password for all mapped users with one command.

Connector enhancements:

  • z/VSE SOAP Engine enhancement:
    • The existing z/VSE Simple Object Access Protocol (SOAP) implementation integrates z/VSE CICS applications in a heterogeneous environment using web services. User programs utilizing the z/VSE SOAP Engine are currently restricted by the COMMAREA and its 32K limitation. To help meet the needs of CICS applications with growing data, z/VSE plans to exploit the CICS Channels and Containers API for the SOAP Engine. The Channels and Containers API has been available since z/VSE V6.1 and CICS TS for z/VSE V2.1. The use of Channels and Containers lifts the COMMAREA limitation and allows the transfer of large amounts of data also for the SOAP protocol. User programs utilizing the z/VSE SOAP Engine will still be able to use the COMMAREA interface for compatibility.
  • New z/VSE REST Engine with JSON support:
    • An essential part of z/VSE's strategy is to integrate z/VSE in a heterogeneous environment. Representational State Transfer (REST) is a software architecture style consisting of guidelines and best practices for creating web services. REST has gained widespread acceptance across the web as a simpler alternative to, for example, SOAP based web services. RESTful systems typically communicate over the Hypertext Transfer Protocol (HTTP), using JavaScript Object Notation (JSON) or XML for the payload. z/VSE plans to provide a REST Engine that allows clients to provide RESTful web services running in a CICS environment. The REST Engine can also be used to develop CICS applications that consume RESTful web services that are hosted outside of z/VSE. The REST Engine will support various payload types including JSON and XML.
  • z/VSE database connector enhancement:
    • The existing z/VSE database connector DBCLI (Database Call Level Interface) allows z/VSE applications to access a relational database on any suitable database server. The database server may run on a platform other than z/VSE. With the current functionality, clients need to implement their own applications using the DBCLI programming interface to access the database. z/VSE intends to further enhance the z/VSE database connector DBCLI. For ease of use it is planned to provide both a batch interface and an interactive interface that allow clients to perform database queries without implementing an application first.
    • CICS REXX support will be added to DBCLI.

Networking enhancements:

  • The z/VSE Linux Fast Path (LFP) allows selected TCP/IP applications to access the network without requiring a TCP/IP stack on z/VSE. LFP is already available in a z/VM guest, or LPAR environment. To offer clients more connectivity options, LFP running as z/VM guest can now also communicate with a TCP/IP stack in an LPAR or with the z/VSE Network Appliance.

Ease of use functionality for SCSI-only systems:

The enhancements planned for the z/VSE SCSI support will fulfill customer requirements. Clients may no longer be forced to include a physical tape device in the configuration and thus reduce costs and simplify the configuration.

  • Tape-less initial installation using a SCSI installation disk:
    • Starting with z/VSE V5.2, clients can create an installation disk from a DVD image or internet delivery and then perform initial installation using this installation disk. Currently, the support is available for 3390-type installation disks only. IBM will add support for FCP-attached SCSI disks in an LPAR environment as well as emulated FBA and virtual FBA disks in a z/VM guest environment.
  • Stand-alone dump using a SCSI dump disk:
    • Once in a while z/VSE support asks clients to take a stand-alone dump for further problem analysis. The stand-alone dump can be created on a tape or disk device. Currently, ECKD™ disks, and, in a z/VM guest environment, additionally FBA-type disks are supported. z/VSE will allow clients to create a stand-alone dump on an FCP-attached SCSI disk in an LPAR environment.

IBM IPv6/VSE V1.3:

IBM IPv6/VSE V1.3 replaces IBM IPv6/VSE V1.2 on z/VSE V6.2 and will deliver:

  • New FTP server security interface:
    • FTP access to the z/VSE file system will be protected using the Basic Security Manager (BSM) or any other External Security Manager (ESM) product that clients may choose. This will allow clients to simplify their security definitions by using the resource class FACILITY as a single source.
  • SSH copy facility:
    • This facility uses a Linux pass-through image to facilitate an SSH connection to a remote host, providing for secure file transfer using SSH to and from z/VSE. It is compatible with the IBM TCP/IP for z/VSE product, LFP, z/VM IP Assist, and the z/VSE Network Appliance.
  • TXT2PDF generation facility:
    • This facility is based on the Open Source txt2pdf utility and converts a text file into a Portable Document Format (PDF) file. It provides many options to control the conversion, output appearance, and final presentation.

IBM TCP/IP for z/VSE V2.2:

IBM TCP/IP for z/VSE V2.2 replaces IBM TCP/IP for z/VSE V2.1 on z/VSE V6.2 and will deliver:

  • Support for the TLS 1.1 protocol for enhanced security.


Back to topBack to top

Top rule
Business Partner information
Bottom rule

If you are a Direct Reseller - System Reseller acquiring products from IBM, you may link directly to Business Partner information for this announcement. A PartnerWorld ID and password are required (use IBMid).

BP Attachment for Announcement Letter 217-091


Back to topBack to top

Top rule
Statement of good security practices
Bottom rule

IT system security involves protecting systems and information through prevention, detection, and response to improper access from within and outside your enterprise. Improper access can result in information being altered, destroyed, or misappropriated or can result in misuse of your systems to attack others. Without a comprehensive approach to security, no IT system or product should be considered completely secure and no single product or security measure can be completely effective in preventing improper access. IBM systems and products are designed to be part of a comprehensive security approach, which will necessarily involve additional operational procedures, and may require other systems, products, or services to be most effective. IBM does not warrant that systems and products are immune from the malicious or illegal conduct of any party.



Back to topBack to top

Top rule
IBM Electronic Services
Bottom rule

Electronic Service Agent™ and the IBM Electronic Support web portal are dedicated to providing fast, exceptional support to IBM Systems customers. The IBM Electronic Service Agent tool is a no-additional-charge tool that proactively monitors and reports hardware events, such as system errors, performance issues, and inventory. The Electronic Service Agent tool can help you stay focused on your company's strategic business initiatives, save time, and spend less effort managing day-to-day IT maintenance issues. Servers enabled with this tool can be monitored remotely around the clock by IBM Support, all at no additional cost to you.

Now integrated into the base operating system of AIX® V5.3, AIX V6.1, and AIX V7.1, Electronic Service Agent is designed to automatically and electronically report system failures and utilization issues to IBM, which can result in faster problem resolution and increased availability. System configuration and inventory information collected by the Electronic Service Agent tool also can be viewed on the secure Electronic Support web portal, and used to improve problem determination and resolution by you and the IBM support team. To access the tool main menu, simply type smitty esa_main, and select Configure Electronic Service Agent. In addition, ESA now includes a powerful web user interface, giving the administrator easy access to status, tool settings, problem information, and filters. For more information and documentation on how to configure and use Electronic Service Agent, go to the IBM Electronic Support website.

The IBM Electronic Support portal is a single internet entry point that replaces the multiple entry points traditionally used to access IBM internet services and support. This portal enables you to gain easier access to IBM resources for assistance in resolving technical problems. The My Systems and Premium Search functions make it even easier for Electronic Service Agent tool-enabled customers to track system inventory and find pertinent fixes.

Benefits

Increased uptime: The Electronic Service Agent™ tool is designed to enhance the Warranty or Maintenance Agreement by providing faster hardware error reporting and uploading system information to IBM Support. This can translate to less wasted time monitoring the symptoms, diagnosing the error, and manually calling IBM Support to open a problem record. Its 24x7 monitoring and reporting mean human intervention is not required to report errors.

Security: The Electronic Service Agent tool is designed to be secure in monitoring, reporting, and storing the data at IBM. The Electronic Service Agent tool is designed to securely transmit through either the internet (HTTPS or VPN) or modem to provide customers a single point of exit from their site. Communication is one way. Activating Electronic Service Agent does not enable IBM to call into a customer's system.

For additional information, go to the IBM Electronic Service Agent website.

More accurate reporting: Because system information and error logs are automatically uploaded to the IBM Support Center in conjunction with the service request, you are not required to find and send system information, decreasing the risk of misreported or misdiagnosed errors. Once inside IBM, problem error data is run through a data knowledge management system and knowledge articles are appended to the problem record.

Customized support: Using the IBMid entered during activation, customers can view system and support information in the My Systems and Premium Search sections of the IBM Electronic Support page.

My Systems provides valuable reports of installed hardware and software using information collected from the systems by Electronic Service Agent. Reports are available for any system associated with your IBMid. Premium Search combines the function of search and the value of Electronic Service Agent information, providing advanced search of the technical support knowledgebase. Using Premium Search and the Electronic Service Agent information that has been collected from your system, you are able to see search results that apply specifically to your systems.

For more information on how to utilize the power of IBM Electronic Services, contact your IBM Systems Services Representative or go to the IBM Electronic Support website.

Trademarks

IBM z Systems, z Systems, IBM z13, z13, ECKD and Electronic Service Agent are trademarks of IBM Corporation in the United States, other countries, or both.

z/VSE, IBM, System Storage, zEnterprise, FICON, FlashCopy, CICS, CICS Explorer, z/Architecture, POWER, z/VM, Language Environment and AIX are registered trademarks of IBM Corporation in the United States, other countries, or both.

JavaScript is a trademark of Oracle in the U.S. and other countries.

Linux is a registered trademark of Linus Torvalds in the United States, other countries, or both.

Other company, product, and service names may be trademarks or service marks of others.

Terms of use

IBM products and services which are announced and available in your country can be ordered under the applicable standard agreements, terms, conditions, and prices in effect at the time. IBM reserves the right to modify or withdraw this announcement at any time without notice. This announcement is provided for your information only. Additional terms of use are located on

Terms of use

For the most current information regarding IBM products, consult your IBM representative or reseller, or visit the IBM worldwide contacts page

IBM United States