Skip to Main Content
Integration


This is an IBM Automation portal for Integration products. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas
  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.


Status Functionality already exists
Workspace DataPower Gateway
Created by Guest
Created on Jan 10, 2024

DataPower does not currently support rsa-sha2-256,rsa-sha2-512 on the FrontSideHandler for SFTP, but rather only rsa-sha.

Key encryption algorithms are not supported, yet we have clients moving to new algorithms, and disabling the older, meaning we would be unable to connect. This would ultimately force us to move away from datapower for this service. Specifically for FrontSideHandler for SFTP on Datapower MultiProtocolGateway.
"SSH Connector host key algorithms updated - added rsa-sha2-256 and rsa-sha2-512. Algorithms rsa-sha2-256 and rsa-sha2-512 are considered more secure than ssh-rsa . The reason is that the SHA-1 hash algorithm used in the ssh-rsa is cryptographically broken, so SHA-1 was replaced with SHA-2 ."
This is for Physical device, Firmware level IDG.10.5.0.7

Idea priority Urgent
  • Admin
    Ulas Cubuk
    Reply
    |
    Feb 26, 2024

    Support for rsa-sha2-256 and rsa-sha2-512 hostkey algorithms has been added in the current Continuous Delivery (CD) release.(10.5.1)

    This support is targeted to be included in the next major Long Term Support (LTS) firmware release.