IBM Sterling


This portal is to open public enhancement requests for IBM Sterling products and services. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas

  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

ADD A NEW IDEA

Clear

Pinned ideas

PINNED Present Multiple Host Keys - RSA and ECDSA
As with standard Linux servers today Secure Proxy should be able to present Host Keys (more than one) in both RSA and ECDSA formats depending on what type the vendor incoming connection supports. Vendors are demanding Host Keys that are stronger t...
Share feedback 4

Ideas

Showing 208 of 2953

Support for JMS 2.0

Currently, in IBM Sterling B2B Integrator version 6.2.0, the supported JMS version is 1.1, and it's at its End of Life (surpassed by version 2.0). We are restricted by the Compliance and Security Team from using older versions of products or th...
over 1 year ago in Sterling B2B Integrator / Security 2 Future consideration

Support OIDC/Oauth 2.0 in SSP

Modern authentication requirements need support for OIDC/Oauth 2.0 alongside the existing SAML 2.0 support. Please extend SSP to provide this flavor of access as well.
about 1 year ago in Sterling Secure Proxy / Security 1 Planned for future release

SSP FIPS mode enable should work with HSM device

Sterling Secure proxy communication failing with SSL error when we enable FIFS mode and SSL certs are stored under HSM device. below is the SSL error: Short Text => TLS/SSL handshake failure, reason=Handshake failure , GSK codes (init/validate)...
about 1 month ago in Sterling Secure Proxy / Security 2 Under review

Protect usage of the 'decrypt_string.sh|cmd' command

The database password stored in sandbox.cfg can be encrypted, but the facility to decrypt it is readily available within the installation (i.e. "decrypt_string.cmd|sh"). A user with access to the SFG installation directory would therefore not have...
over 1 year ago in Sterling B2B Integrator / Security 4 Future consideration

Support storage of private ssh key in HSM

Mastercard's File Transfer System uses SSP, CM and SEAS for SFTP Server. The current configuration does not comply with our policy that requires SSH private key to be stored in a Hardware Security Module (HSM). These keys are configured in CM UI a...
3 months ago in Sterling Secure Proxy / Security 3 Future consideration

Ability to Block Concurrent Sessions of All Users

Due to security reasons, it is necessary to have the option to block concurrent sessions of all users. Right now, it can be only be achieved via Bandwidth Limiting Policy however since that option affects only the selected users, newly created use...
11 months ago in Sterling B2B Integrator / Security 2 Functionality already exists

Native PGP needs to support AEAD(Authenticated Encryption with Associated Data) cipher

Our multiple finance customers requesting to support for AEAD cipher in PGP in file transfers. We are using Native PGP which is bundled in B2Bi/SFG. Current Native PGP adheres to RFC 4880 which doesn't support AEAD. We need AEAD support in product...
11 months ago in Sterling B2B Integrator / Security 1 Future consideration

User based data limit policy

When the same data limit policy is applied to various users, the inbound traffic byte counter is the sum of all the users included in the policy. So if one of them is reaching the limit. All the users of the policy are affected. Please, conside...
6 months ago in Sterling B2B Integrator / Security 5 Needs more information

Provide QueueWatch Audit data

As part of our effort to more thoroughly track usage in SBI, we need to be able to audit QueueWatch usage. In IBM case TS013772150, we were informed that this functionality does not exist.
about 2 years ago in Sterling B2B Integrator / Security 2 Future consideration

Support current SFTP/SSH host key and public key algorithms.

Sterling currently only supports ssh-rsa algorithm for host and public key. this is limiting sftp transfers with our new SFTP partners. New SFTP servers like Azure SFTP doesnt support ssh-rsa for host key algorithm. https://learn.microsoft.com/en-...
about 1 year ago in Sterling B2B Integrator / Security 1 Planned for future release

By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.