Skip to Main Content
Integration


This is an IBM Automation portal for Integration products. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas
  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.


ADD A NEW IDEA

Pinned ideas

View all
PINNED supports ECDH-ES algorithms for JWE
Debit or credit card tokenizers (THALES / VISA / Etc.) implement JWE with ECDH as an encryption mechanism for sensitive data in the different flows applicable to wallets such as Apple Pay, GPay, etc. given its wide diffusion and easy adoption.
PINNED Add a "Maximum persistent reuse" parameter for the backside of an MPGW or WSP
On an MPGW or a WSP, I want to be able to configure that the persistent backside connection should be closed after X amount of requests have been sent through that connection. I can already do this for the frontside by setting the "Maximum persist...

DataPower Gateway

Showing 344

DNS over TLS

A simple easily added feature to enhance the DataPower gateway would be to add TLS to the DNS configuration so that we can officially support DNS over TLS.
almost 4 years ago in DataPower Gateway 0 Future consideration

Qualys web scan flagging a "Slow HTTP Request" vulnerability on MPGW. This is considered a High Risk vulnerability.

Qualys scan found a potential Slow HTTP headers vulnerability which can be exploded for a Denial of Service (DoS) attack. The offending behavior identified by Qualys is that the server resets timeout after accepting headers from peers when process...
almost 4 years ago in DataPower Gateway 0 Future consideration

SQL-Source Support for JDBC AES256 Encryption

The DataPower SQL-Source doesn't support JDBC connection to Oracle database with AES256 encryption. We have been forced to configure the connection to use AES128 which does not meet security requirements. This limitation has been observed both wit...
almost 6 years ago in DataPower Gateway 0 Not under consideration

Add option for Multiple KDC servers for DataPower Resiliency

We are using kerberos delegation and have a KDC server configured. We have 4 KDCs but have only configured one of them in DataPower. Microsoft doesn't support load balancing KDC's, so we are not able point to a load balanced address for the KDC se...
almost 4 years ago in DataPower Gateway 0 Future consideration

Log SQL Injection Attack Without rejecting Transaction

Log SQL Injection Attack Without rejecting Transaction of Web Application Firewall.
almost 6 years ago in DataPower Gateway 0 Not under consideration

DataPower platform needs to return response headers to enhance security

Security guidelines dictate that all secured services return certain response headers such as below to enhance security. But DataPower appliance currently does not return them. Content-Security-PolicyX-Content-Type-OptionsStrict-Transport-Security...
almost 2 years ago in DataPower Gateway 1 Not under consideration

Add X-Global-Transaction-ID header in token validation api on IDG v10.

When the user calls the Oauth security API, IDG accesses the external token management server to check if the token is valid. IDG v7.6:IDG calls token validation api with X-Global-Transaction-ID header, so token management server can record it. ID...
almost 4 years ago in DataPower Gateway 0 Future consideration

support key based authentication for Datapower SSH

As per our security direction, we wanted to use key based authentication to our Datapower via CLI instead of username/password.
almost 2 years ago in DataPower Gateway 1 Functionality already exists

Full Chain PKIX Certificate Validation needs to support latest DoD NSS Domain Controller Certificate Template

Full Chain Certificate Validation (PKIX) does not work with newer DoD NSS Domain Controller certificates. The support case TS001515278 references a case where newer Domain Controller DoD certificates cause this issue. We are requesting that IBM ad...
about 6 years ago in DataPower Gateway 0 Not under consideration

Add option to disable renaming of files for uniqueness for SFTP poller handler

We have multiple SFTP/FTP Poller Handler FSH's in MPGW's. When it attempts to copy a file down from a remote location, it tries to temporarily rename the file. I understand that this is necessary if there are multiple pollers and it renames the fi...
about 6 years ago in DataPower Gateway 0 Not under consideration