Secure
Servers
for
Secure
Business
 CARMA
Overview ( Download
)
|
CARMA
allows for the integration and monitoring of all servers,
networks, system operations, applications and administrative
functions as a single, coherent, computer system; producing
a mirror image of the IT infrastructure.
CARMA
provides each user with a personalized profile that restricts
access to specified information and tasks within a computer
system, and logs all user actions, entries and exits to provide
a bullet-proof audit trail.
CARMA
reduces staff training and systems operation costs by integrating
disparate systems into a coherent whole. CARMA can also use
different cost bases to allocate computer systems costs to
multiple departments and users.
The myriad of access auditing features within
CARMA allow for accurate event analysis that produces source
data for productivity, performance and capacity surveys.
CARMA
generates an audit trail on all steps taken by users in chronological
order per user session allowing administrators to reconstruct
any sequence of events that took place inside the CARMA portal.
KEY
FUNCTIONS
Consolidation
CARMA
integrates and consolidates all of the many aspects of a company’s
daily workload. For example:
•
Application Processing
• Operational Procedures
• Communications
• Back - ups
• Peripheral Devices
• Monitoring of Service Calls
• Regulatory Compliance
• Cost Containment
• Security
Productivity
CARMA is also a powerful management tool
that increases organizational efficiency by:
• Fine-Tuning the existing procedures
and processes
• Streamlining a companys operations
from top to bottom
This in turn improves corporate profitability.
Reorganization
Permanently updated information and review
on existing work flows, administrative procedures and conventions
are gathered with a view of helping administrators to adapt
and restructure a company’s IT infrastructure to meet
the needs of an ever-changing work environment.
Streamlining
Redundant,
duplicate and unnecessary procedures are easily identified
with the installation of CARMA into an operating environment.
This often has an immediate, noticeable effect on reducing
IT costs.
|
PRIMARY
FEATURES
CARMA
is a complex program that can provide virtually any security-related
task. The primary features are:
• Access Control and Monitoring
• Unlimited Hotkey Allocation
• Direct Application & Task Access
• User Monitoring
• Client created Notes and Documentation
• Access Permissions
• Password Options
• Time Out Control
• Task Checks
• Time Surveys
• Cost Controls
• Charge Allocation
• Output Routing
• Auditing
Access
Control and Monitoring
CARMA
offers multiple levels of single and joint user-specific access
through a combination of permissions and passwords. Access
via an unlimited number of hotkeys is possible though users
are still restricted to accessing only permitted options and
tasks. CARMA also records illegal or futile access attempts.
•
Total user session control
• User task and system access options are displayed according to allocated permissions
• Optional anti virus check before task activation
• Optional return to last task executed
Unlimited
Hot Key Allocation
CARMA
allows for the creation of an unlimited number of hotkeys.
These can be used to directly access user-specific operations
and application administration at any time from any CARMA
platform position..
Direct
Application Access
CARMA
users can access any application or any task (including operational
processes, programs, back-up routines, print-spooler routines,
notes, e-mail, and connections to other servers) as well as
administer any function at any time in any sequence from any
point inside a CARMA platform. Security is never compromised
regardless of the access routine.
User
Monitoring
•
Who is doing what
• Which tasks are currently active
• Names of currently logged-in users
• System utilization
• Which tasks have been executed, when, by whom, for which cost centre
• Illegal access attempts
On-line
Notes and Documentation
Client
documentation and user notes are accessible through hot keys
and apply to any screen displayed by CARMA. Company specific
instructions are now available on-line at your fingertips.
Access
Permission
CARMA
activates a permission scheduler who determines access permission
according to the user’s profile allocation; this in
respect of application access and their substructures as well
as executing specific tasks.
•
Either all users are given basic access permission, or no
user is provided access permission unless it is specifically
allocated.
• Passwords are used to provide additional security
to user access of specific systems, applications and tasks
(joined access option).
Password
Options
User
generated:
•
during profile set-up
• by optional change
• by forced change (based on set parameters)
• upon the expiry of a set time interval
• Character pattern check
CARMA
Administrator generated:
•
for system access
• for application access
• for task call-up (specific routine) access |
Time-Out
Control
To prevent
non-authorized personnel from using specific workstations
an individual timer disables the continuation of the working
session after reaching the idle time limit. The session can
only be continued after successful password identification.
Task Check
CARMA provides the following information:
• Which task, performed by whom, when?
• Task history and current tasks in
process
• Task check after system crash to reconstruct
a specific event or illegal access
attempt.
Time Surveys
CARMA can locate bottlenecks and enhance
productivity by allowing administrators to conduct time surveys
of servers, individual applications, tasks or users over a
specified period of time. These surveys can be used to monitor
system performance as well as to conduct productivity analyses
and capacity planning.
Cost Control
CARMA provides a mechanism to allocate the
costs of different applications by user, task, cost centre
(e.g., department) and by client.
Charge Allocation
CARMA also provides a mechanism to charge
users (units, departments, clients, sister companies) in a
pay-as-you-go method based on usage and time.
Output Routing
Available routing options are:
• Output directed to a defined directory
• Output directed to a defined printer
name
• Output to screen only with print on
request
• Output directed to a defined device
Auditing
Maintaining a logging database enables CARMA to produce selective
event audits reflecting a detailed analysis from various prospective.
|
|
|
.....do
you know what's happening inside your network? |
| Page Top »
click |
Secure
Servers
for
Secure
Business
CHARTS
& DIAGRAMS
CARMA
provides an integrated approach
to IT security by surrounding corporate networks with a security
belt. The precise configuration of a Carma deployment varies based
on specific operating environments.
The charts displayed
in the section give an overview of how Carma is used to improve
network security and integration. These schematic diagrams provide
a visual interpretation of a Carma deployment from multiple perspectives,
providing users with a clearer picture of how Carma is positioned
in a corporate network.
Charts & Diagrams
printable in .pdf format
Adobe Acrobat Reader 
Required » click
to download
Chart & Diagram Samples
CARMA
Base Chart Diagram ( Download
)
CARMA
Structured Template ( Download
)
CARMA
Positioning Chart Diagram ( Download
)
CARMA
Legacy Approach Chart Diagram ( Download
)
CARMA
Hotkey Structure Chart Diagram ( Download
)
CARMA
Operational Chart Diagram ( Download
)
CARMA
User Access Chart Diagram( Download
)
CARMA
Project Management Chart Diagram ( Download
) |
|
.....do
you know what's happening inside your network? |
| Page Top »
click |
Secure
Servers
for
Secure
Business
AUDIT
REPORTS printable
in .pdf format
Adobe Acrobat Reader
Required » click
to download
One
of Carma’s strongest features is its auditing ability. Carma
can generate audit reports based on multiple parameters. Who has
accessed the network? When were they on-line? What programs did
they access, and what tasks did they complete while logged in? Carma
can provide all of these details and more.
The following
sample reports (taken from actual Carma installations) provide a
clearer picture of the information that Carma can provide.
Audit Report Samples
CARMA
Access Audit ( Download
)
CARMA
Access Applied Task Users ( Download
)
CARMA
Access Applied Commands ( Download
)
CARMA
Who is Logged in ? ( Download
)
CARMA
Total System Usage ( Download
)
CARMA
Access Analysis ( Download
)
CARMA
SAP Transport Review ( Download
)
CARMA
Access Permission ( Download
)
|
|
.....do
you know what's happening inside your network? |
| Page Top »
click |
Secure
Servers
for
Secure
Business
WHAT
IT NEEDS TO STAY ALIVE
( Download)
The following could be a list of your
requirements:
1
SECURITY • Demands
Trace and audit
ability of 'root' access
User identification
before application access
User authorization
by the security administration
Log-in password
generated by user (inc. optional encryption)
Log-in password
generated by the security administration (inc. optional encryption)
Log-in password
period, length and variable structure requirement
Selective
application access during log in including additional password option
Time-out and
variable timing until time-out activation, this optional per user
Alert message
to the security administrations office, reporting source & type
of misuse
Optional password
allocation for each and every operator step
Option to access
direct the entry permitted area by using a secret code which is
controlled by the system
administration / security unit
The ability
to access certain tasks only in presence of a 2nd person (supervisor)
2
AUDIT • Demands
All user actions
to be audited showing : user code and name, host name, log-in name,
terminal identification,
task code and name, date and time
History information
on user access must be available at any time over an infinite number
of years
System &
operating command level entry auditing: Each command must be reflected
on an audit-trail the way
the command was entered inclusive user code
and name, host name, log-in name, terminal identification, task
code and name, date and time
Reporting and
auditing of all user activities in an environment spread over numerous
UNIX host systems
Control over
all user actions from one central point
Exception audit
on any attempt, time-out, invalid password, etc.
Sequential
step by step control per user and working session (log-in to log-out
in chronological order)
Inspection
of current user activities (by system at random and application
name)
In case of
a system break-down : All tasks active at the time of the breakdown
and when they started
and by whom
Any changes
to user profile to be recorded
Password history
per user
3
COSTING • Demands
Cost calculation
by department, user, process and other optional levels
Interfacing
to billing and accounts receivable applications
4
OPERATION • Scheduling
Must incorporate
legacy systems into a menu with "on-line" access
Job scheduling
(progress/status report)
5
Management Features • Required
Appraisal
document support, showing user actions and applied system access ability
to link to graphical
applications to produce display tools for presentations
to contribute information leading to a system
utilization analysis supporting
info leading to a productivity survey.
Control and monitor all user activities from
one central point - including activities on external
computer systems.
Controlling
the application load of any Server. Note:
No control on firewall security or data entries.
User must be
able to cancel his/her own generated printout
at any time whenever needed within seconds without the
help of any third party (e.g. operations
manager, administrator, etc.).
System to identify last user logout and to re-login to
last logoff point.
System must
apply to the open system software standards,
to be able to be installed on any hardware
platform required.
Supports user
authentication. User only obtaining access to such
issues which are prior authorized by
the system integrator / administrator.
To have direct
access to any task or any menu platform from any place
via a "hot key" retrieval (without
going backwards and forwards using the applied
tree-structure).
Selective application
documentation to be retrieved online for current
action/display.
Printouts
must have optional storing facilities to be accessible
online at any time by any user for
repetitive usage.
Tasks
accessed by whom and when accessed must be visible at the
appropriate menu platform
to the administrator/infrastructure integrator
or any authorized person.
Any infrastructure
integration per application add-ons and modifications centrally
to be done,
distributed automatically over night to be available
to all systems and users the next day, Including:
•
Hardware inventory
• Entire user profile (department, workstation, cost factor,
etc)
• Application design and activation
• All communications
• Simple help desk facilities
• Back-ups
• System maintenance
In short, everything covered by any computer-utilisation activity.
All existing and future applications (programs, scripts, etc.)
to be integrated into one dbase and
distributed from a central point to all remote
hosts and servers. |
.....do
you know what's happening inside your network? |
|
Secure
Servers
for
Secure
Business
FAQ
| Frequently Asked Questions and Answers |
QUESTION |
ANSWER |
| Does
CARMA have any effect on the operating system's kernel? |
No, CARMA does not influence
the kernel in any way, so that any new operating system
release can be installed without any fear of side effects |
| A few of
our applications have build-in access protection, why must
we install CARMA to reinvent the wheel? |
CARMA supports a holistic approach,
one method applies to all your applications, used utilities,
operating procedures, your system maintenance, etc., in
short on everything done on your computer systems |
| What
is a HotKey? |
HotKey's are basically the equivalent
to, e.g., "Bookmarks or "Shortcuts. The add-on convenience,
however, is its versatile application: HotKey's are, for
the convenience sake, also personalized reference descriptions
utilized in a "password" manner ("*") this to reinforce
security measures. A HotKey in CARMA provides you with immediate
access to any other task, be it another application entry,
Back-up, Help-desk, stop printing your document, Communications;
a HotKey represents a cross task access to any major or
sub-entry of a hierarchical structure |
| Does
CARMA protect our application access in our intra- /
inter-net environment? |
Yes, CARMA not only complements
the "Fire-Wall" access protection but will also handle and
control any application access, including your costing needs.
This in return simplifies all computer access relating costing
calculations |
| What
is involved in the CARMA installation process and how long
will it take us to make use of the full benefits of a
CARMA installation? |
Our consultants will assist your
IT specialists, your project managers and your user force,
in short, everybody who knows something about "what is where
on your computer system and for whom". With your support
the full current workload status of your computer systems
will be analyzed, your system infrastructure adapted and
at the same time the relevant training of your security/admin
management exercised.
How
long it will take depends on the volume, the variety of
tasks and processes, the requested detail of control and
security, number of users and departments, network complexity
and last but not least on the time factor to retrieve
the requested information (folder missing, staff responsible
not available or no longer with the company). In a very
complex environment one would split the implementation
process into two and more phases
|
| What
could be the sequence of the steps taken leading to
a successful implementation? |
We suggest the following sequence: Seq.
Set-Up/Design
Comment
01 Legacy Systems
immediate fund saver
02
Communications
03 Media Control
04
Back-up Procedures
05 On-line Applications
menu restructuring where
app.
06
Command Level Entry Analysis
exec. protection
07 Other customized procedures
08 Cost Allocation and
Invoicing
if applicable
09 System Maintenance
10 Link to other applications
Note:
It is advised that any documentation should be captured
at the time the subject is deployed into the CARMA dbase
|
| We
don't want to many passwords - is there any way around it? |
Sure
there is. Passwords do represent additional security features,
e.g., payroll access only with the supervisor's permission,
here one would allocate a password. Any system user works
under the CARMA administrators allocated permission so that
a 2nd access permission for the same user becomes redundant |
| We
are using various Servers, does this create a conflict? |
No,
CARMA supports all platforms and workstations |
.....do
you know what's happening inside your network?
|
| Page Top »
click |
Secure
Servers
for
Secure
Business
PRICING
Software licensing
The software licensing fee lasts for three years. It is done based
on two criteria: number of servers and number of profiled users.
It also includes a set amount of initial consulting, which is comprised
of installation, training and user profiling. This gives customers
an installed, operational product. First year maintenance is included
with the licensing fee. The licensing fee is billed in two parts:
20% due and payable with the order (no work will be done until this
amount has been paid), and 80% due and payable upon completion of
the installation (net 30).
Maintenance
This covers the ongoing development costs of Carma: upgraded versions,
the integration of new features into the product, patches and technical
support. It does not include training and further customization
of the product to the needs of specific customers. Maintenance is
set at 16% per annum of the original license fee. After three years,
customers who want to continue receiving support for their installation
will need to renew their software license. Renewing customers will
be offered a contract provision whereby they will be guaranteed
to receive the lower of either a) the licensing fee at their date
of renewal, or b) their original licensing fee adjusted for inflation.
Consulting
This covers the cost of sending a Carma installer to a customer’s
location for further customized work in areas such as user profiling
and customer software application integration under the Carma umbrella.
The standard rate is $320/hr.
Training
Customers are encouraged to delegate one or two employees to work
with the Carma installer to learn how to profile users and install
Carma. If required, CSI can offer further training to small groups
of a customer’s employees. Costs will vary depending on the
length and complexity of the training offered, and the number of
students enrolled. All courses will be taught by trained CSI personnel. |
.....do
you know what's happening inside your network? |
| Page Top »
click |
Secure
Servers
for
Secure
Business
REQUEST
INFORMATION printable
in .pdf format
Adobe Acrobat Reader
Required » click
to download
CARMA
Information request Form ( Download
) |
.....do
you know what's happening inside your network? |
| Page Top »
click |
|
|
