FIPS compliance is all the rage in some sectors. Our formal statement has always been that Interlok can be configured to be as FIPS compliant as the underlying JVM. All encryption/SSL duties are delegated to the JCE and JSSE layers respectively. Failure to support FIPS algorithms isn’t normally a product issue, it’s a java virtual machine configuration issue.

I’ve said that what we do is a combination of house-building and town-planning. Town planning sounds easy, stick some houses in, join them up with a road and voila: a new town. I haven’t spoken to any good town planners but I can imagine that it’s not that simple. You have to know what makes a community work; have the big picture, map out the roads, organise the bus-stops, know where the sewage system runs and know how all these things will impact the community. A city is not an accident but the result of coherent visions and aims¹

I often get asked what it is that I do; by my father, by family friends, other people who might not be in IT. Einstein says If you can’t explain it to a six year old, you don’t understand it yourself; so here goes: Our software makes sure that the curtains between business and economy class are in the right place on the plane. Our software enables telecoms companies to provision new telephone lines / new mobile numbers. Our software makes sure your car gets serviced on time. That’s pretty glib; it’s not just our software; but none of those things could happen without our software. Ultimately though, what we do is a combination of house-building and town planning.

Sometimes I look at the state of integration and I think that things could be so much better. We’ve effectively been doing it since the Berlin airlift. By now you’d hope that things would have settled down and the ability to do integration would simply be a commodity and I would be out of a job. I’m not and that says more about each new generation of programmers than it does about me.

The adapter has supported remote JMX via JMXMP for a while; which means you can connect to an adapter via jconsole, or other tools. The only problem with the reference implementation (e.g. service:jmx:jmxmp://localhost:5555) that people tend to use is that it isn’t terribly useful if you’re managing a community, where the various IT policies aren’t going to let unfettered access through their firewall to the adapter; some of our smaller customers they don’t even have an IT dept., and talking the business admin through how they need to modify inbound NAT on whatever router it is they’re using is not for the faint-hearted (and basically you end up being their IT dept. which is another sorry state of affairs).