Skip to Main Content
IBM Data and AI Ideas Portal for Customers


This portal is to open public enhancement requests against products and services offered by the IBM Data & AI organization. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:


Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,


Post your ideas

Post ideas and requests to enhance a product or service. Take a look at ideas others have posted and upvote them if they matter to you,

  1. Post an idea

  2. Upvote ideas that matter most to you

  3. Get feedback from the IBM team to refine your idea


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

IBM Employees should enter Ideas at https://ideas.ibm.com


ADD A NEW IDEA

Security

Showing 73

Provide the option to exclude SELECT statements from db2audit when collecting DML data

The painful and expensive IBM recommended workaround that ended up not being feasible was to create event monitors (multiple so that records can be cleared) with WLM. However, the volume and format of output generated by the event monitors is diss...
over 3 years ago in Db2 / Security 0 Not under consideration

DB2 LUW : Trusted contexts over IPC

There are many applications where application and DB is co-located in the same server. User impersonation via trusted contexts helps control the access of the database for individual users even though a common technical ID is seeded in application...
over 1 year ago in Db2 / Security 1 Future consideration

Allow creating allow/deny list of system calls possible by fenced external routines

This will secure the database further from malicious users trying to break out into the host running managed Db2 services on Cloud. This can be done using:1. seccomp() before spawning the db2fmp process and 2. Making more secure SELinux policies f...
9 months ago in Db2 / Security 0 Not under consideration

Online db encryption at rest

To implement encryption at rest - we have to do backup - restore i.e. outage to application. OUtage can only be avoided in case of HADR setup which is not always the case. This RFE is to bring feature of online db encryption without any outage to ...
over 5 years ago in Db2 / Security 0 Not under consideration

Update SYSMON_GROUP Authority to include privileges needed for db2top (and other monitoring type functions)

Revisit db2top and dcmtop access requirements to identify the basic monitoring features which require privileges above and beyond sysmon_group privileges and update Db2 to have the sysmon_group given all necessary permissions
about 3 years ago in Db2 / Security 1 Not under consideration

DB2 LUW - Enhance Trusted Context

We use Trusted Context (TC) to allow connections into a database from IP's configured. However with the move to the cloud, it has become a challenge as the source IP's change dynamically with application restart. We need a TC mechanism to be able ...
over 6 years ago in Db2 / Security 0 Not under consideration

Store auditing information directly in a table ( this option does not require files )

Allow DB2 to configure auditing to store auditing information in a table. Information could be retrieved using SELECT commands and there is no need to use system procedures or utilities like db2audit to extract information from files. The purpose ...
over 4 years ago in Db2 / Security 1 Not under consideration

remove all world writable permissions on files and directorys see also 79173

Our Security does not want to see files and directorys which have the world writeable permission set se also fea 79173 PMR is case TS000140222
about 6 years ago in Db2 / Security 0 Not under consideration

Online SSL certificate renewal for Encryption at rest

SSL_KMIP_CLIENT_CERTIFICATE_LABEL change requires instance restart. Can we do this parameter as dynamic online update parameter without any outage to db2 instance.
about 6 years ago in Db2 / Security 0 Not under consideration

DB2 Certificate Authentication with HSM Support

DB2 certificate authenticated TLS/JDBC connections should be configurable at the client via the standard "DriverManager.getConnection()" mechanism, where parameters are added to indicate that TLS client certificate authentication will be used. It ...
almost 3 years ago in Db2 / Security 0 Future consideration