Shape the future of IBM!
We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:
Post your ideas
IBM is transforming its request for enhancement (RFE) process. The purpose of the transformation is to provide a more consistent experience for you to submit requests and to enable IBM product owners to respond to your requests more quickly. For more information click here.
Start by posting ideas and requests to enhance a product or service. Take a look at ideas others have posted and upvote them if they matter to you,
1. Post an idea
2. Upvote ideas that matter most to you
3. Get feedback from the IBM team to refine your idea
Help IBM prioritize your ideas and requests
The IBM team may need your help to refine the ideas so they may ask for more information or feedback. The offering manager team will then decide if they can begin working on your idea. If they can start during the next development cycle, they will put the idea on the priority list. Each team at IBM works on a different schedule, where some ideas can be implemented right away, others may be placed on a different schedule.
Receive notifications on the decision
Some ideas can be implemented at IBM, while others may not fit within the development plans for the product. In either case, the team will let you know as soon as possible. In some cases, we may be able to find alternatives for ideas which cannot be implemented in a reasonable time.
Make ECHDE ciphers available for Selection in Connect Direct for IBM i
Current only RSA ciphers are available on Connect Direct for IBM in version 3.8. RSA ciphers are not considered deprecated due to ROBOT vulnerability.
Option to disable Connect Direct Web Services web page
Current version of Connect Direct Web Services software provides two interfaces - RESTful API and webpage GUI access. Software should allow to disable web GUI access.
Need to read/write files to 3rd part encryption format/schema via an I/O exit able to utilize sub processes for the decrypt/encrypt step.
We would be able to read/write to encrypted devices having proprietary formats.
synchronize the versions of JRE in Connect Direct
Install agent is packaged with an older version of Java with numerous security vulnerabilities. Main java : $ ./jre/ibm-java-x86_64-80/jre/bin/java -version
java version "1.8.0_261"
Java(TM) SE Runtime Environment (build 184.108.40.206 - pxa6480sr6fp15-...
CDW services should be running as non-system and non-admin user account
Our security assessment team found an issue with 'System' running CDW services by default. Although IBM allows a service account to run CDW services, it requires this account to be a member of local admin group. Either method causes security c...
Update SNMP support to v3
Security benefits, as per security issues detailed here: https://www.us-cert.gov/ncas/alerts/TA17-156A
Restore the Cipher.txt functionality
In Connect:Direct v4.1 for Unix and v4.6 for Windows, we use the Cipher.txt file to limit the selection of cipher suites to strong ones so the spcli.sh "Display CipherSuites" command only shows what's allowed in the Cipher.txt file. This good secu...
CD for system i does not have possibility IFS directories and libraries restriction as on other platforms
In CD for unix is possible to define restriction for download and source directories in user map configuration on local functional user. I do not see this possiblity on CD for system i, Please could you add this functionality also for transfer fro...
certificate-based authentication support for CDAIJ and CDW
Many customers from banks need to change their OS users' password every 1 or 3 months for all OS according to their security regulation which means all applications or middleware using the old password must change at the same time. For customers,...
Add cipher support
Need to connect to a wide variety of Customers.
TLS_RSA_WITH_AES_256_CCM (0xC0,0x9D)TLS_DHE_RSA_WITH_AES_128_CCM (0xC0,0x9E)TLS_DHE_RSA_WITH_AES_256_CCM (0xC0,0x9F)TLS_RSA_WITH_AES_128_CCM_8 (0xC0,0xA0)TLS_RSA_WITH_AES_256_CCM_8 (0xC0,0xA...
Do not place IBM confidential, company confidential, or personal information into any field.