Shape the future of IBM!
We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:
Post your ideas
IBM is transforming its request for enhancement (RFE) process. The purpose of the transformation is to provide a more consistent experience for you to submit requests and to enable IBM product owners to respond to your requests more quickly. For more information click here.
Start by posting ideas and requests to enhance a product or service. Take a look at ideas others have posted and upvote them if they matter to you,
1. Post an idea
2. Upvote ideas that matter most to you
3. Get feedback from the IBM team to refine your idea
Help IBM prioritize your ideas and requests
The IBM team may need your help to refine the ideas so they may ask for more information or feedback. The offering manager team will then decide if they can begin working on your idea. If they can start during the next development cycle, they will put the idea on the priority list. Each team at IBM works on a different schedule, where some ideas can be implemented right away, others may be placed on a different schedule.
Receive notifications on the decision
Some ideas can be implemented at IBM, while others may not fit within the development plans for the product. In either case, the team will let you know as soon as possible. In some cases, we may be able to find alternatives for ideas which cannot be implemented in a reasonable time.
Allow a SFG Community to allow using more than one PGP key for decryption.
Allow a SFG community to allow partners to use the existing key or the new key to encrypt their data with so that SFG then can use either PGP key for decryption - this will allow partners to make changes in a gradual way , when we generate new PGP...
Local "admin" account logon logs should be captured
Recently, we observed one issue with by default local accounts logon logs in Sterling Integrator application. Logs are getting captured when the authentication log is in debug mode. Logs are not getting captured when authentication log is in non-d...
Providing a list of supported encryption keys.
VENDOR supported Keys Keys that will be supported RSA (3072) Ed25519 ECDSA (nistp521) The feedback from the PepsiCo ECG team below is we only accept the following supported keys: PepsiCo supported keys ssh -rsa 2048, ssh-rsa 1024, ssh-rsa , ssh-dss
Capture partner TLS version information during handshake
For all communications protocols (FTPs, SFTP, AS2, ConnectDirect etc), we would like to capture TLS version in logs. In case of upgrades, it helps to work with respective partners to upgrade to supported TLS version.
Implement Password rules for FTP(s) and SFTP Server Adapter External Authentication
Our platform is using IBM Sterling Integrator 6.1.1 Not using Sterling Secure Proxy All the accounts are created using local LDAP on the app servers. These accounts do not use IBM Sterling Authentication. FTP(s) or SFTP Following are the requireme...
Supply Client Certificate Details to BP launched by HTTP Server Adapter
Details as to the CommonName of the Client Certificate and its Signing Authority would be useful in BP ProcessData to validate that the Client Certificate belongs to the source system that used it, and that it is signed by the correct CA (when mul...
SFG Community to be able to refer to Multiple PGP Server profiles for encryption / decryption.
For SFG Community we need to be able to select the PGP Server profile being used as SBI already has provision to create multiple PGP Server profile for different PGP implementation.
Implicit SSL is making a comeback with some sites due to its immediate application of SSL
Implicit SSL is generally not considered a best practice when setting up FTPS. The preferred alternative is Explicit SSL, which is the current standard for FTPS connections for B2B Integrator. However, some of our customers experience intense busi...
Support for TLS V1.3 for B2BAC trading partner connections
The governance body across the Superannuation Transaction Network (STN) is maturing its security posture. As such they are looking to mandate TLS V1.3 connection in the future.
Password stretching use appropriate ASD approved algorithm for B2Bi
A recent audit under the Gateway Network Governance Body - Information Security Requirements has identified that B2BI is not compliance is ASD ISM control 1402 - Security Control: 1402; Revision: 5; Updated: Aug-20; Applicability: O, P, S, TS Stor...
Do not place IBM confidential, company confidential, or personal information into any field.