Integration


This is an IBM Automation portal for Integration products. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas

  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.


Add a new idea Subscribe
Status Not under consideration
Workspace DataPower Gateway
Created by Guest
Created on Jun 4, 2024

RELATED IDEAS

Support for long HSM key names

The current HSM does not allow to use speaking names (e.g. the common name of the corresponding certificate) for the keys as the complete path (e.g. hsm://hsm3/www.foobar.com) may not contain more than 31 characters.

Idea priority High
  • Guest
    Reply
    |     Sep 6, 2024

    I know that we use a third-party HSM, but isn't it possible to update the HSM firmware, too? Back in the DataPower 3.5 times I had such a case where we had to install an HSM fix.

    What about just asking the HSM manufacturer?

    Regarding the max lenght expectation - I would expect to be able to name a HSM key by the common name of the related certificate. Given that common names may have 64 characters and the fact that the HSM also uses the domain name to build the actual key name, I would suggest a length of 128 characters. Or mayby we should just propose the standard linux filename lenght limit of 255 characters.

  • Admin
    Ulas Cubuk
    Reply
    |     Aug 14, 2024

    Thank you for raising this request. The name length/size limitations are inherent to the crypto module which we adhere to. Hence, we are declining this request. We will re-evaluate once there is a change to the origin of the limitation. In the meanwhile, please help us to understand if you have any max size expectations.

By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.