Skip to Main Content
IBM Data and AI Ideas Portal for Customers


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Post your ideas

Post ideas and requests to enhance a product or service. Take a look at ideas others have posted and upvote them if they matter to you,

  1. Post an idea

  2. Upvote ideas that matter most to you

  3. Get feedback from the IBM team to refine your idea

Help IBM prioritize your ideas and requests

The IBM team may need your help to refine the ideas so they may ask for more information or feedback. The product management team will then decide if they can begin working on your idea. If they can start during the next development cycle, they will put the idea on the priority list. Each team at IBM works on a different schedule, where some ideas can be implemented right away, others may be placed on a different schedule.

Receive notification on the decision

Some ideas can be implemented at IBM, while others may not fit within the development plans for the product. In either case, the team will let you know as soon as possible. In some cases, we may be able to find alternatives for ideas which cannot be implemented in a reasonable time.

Additional Information

To view our roadmaps: http://ibm.biz/Data-and-AI-Roadmaps

Reminder: This is not the place to submit defects or support needs, please use normal support channel for these cases

IBM Employees:

The correct URL for entering your ideas is: https://hybridcloudunit-internal.ideas.aha.io


ADD A NEW IDEA

FILTER BY CATEGORY

Security

Showing 70

Let a change of a SYS*_GROUP in the dbm cfg be reflected in the db2audit secmaint.del-file next to/instead of in db2diag.log

For security monitoring purposes every 30 minutes our production db2audit-files are archived, extracted and uploaded to a special security server for analysis purposes. However very important information is missing: when changing a SYS*_GROUP, the...
over 6 years ago in Db2 / Security 0 Not under consideration

Modify permissions on DB2/LUW installation directories

During installation and instance creation of DB2/LUW ESE (and AESE), the following directories are create as world writable (OTHER permissions of 777) without the sticky bit set: sqllib/db2dump/DIAG0000sqllib/db2dump/eventssqllib/tmpsqllib/uifsqll...
almost 7 years ago in Db2 / Security 0 Not under consideration

Monitor element, or audit/diagnostic utility, that identifies TLS version of an active DB2 LUW connection (application or session)

We are on the path now to enforcing TLS 1.2 for all SSL at my company. To make it easier for developers, at this point we have enabled TLS 1.2 but are continuing to allow TLS 1.0 and 1.1 database connections. We are hesitant to simply disable TLS ...
5 months ago in Db2 / Security 0 Future consideration

Update SYSMON_GROUP Authority to include privileges needed for db2top (and other monitoring type functions)

Revisit db2top and dcmtop access requirements to identify the basic monitoring features which require privileges above and beyond sysmon_group privileges and update Db2 to have the sysmon_group given all necessary permissions
over 1 year ago in Db2 / Security 1 Future consideration

Db2 should allow binding its port 50000 on windows to localhost only.

Db2 currently doesn't allow binding its port 50000 on windows to localhost only, this port is left as open port and can be connected from other machines, unauthorized users can exploit this information to test vulnerabilities in the open service a...
about 2 years ago in Db2 / Security 2 Future consideration

Add a way to pre-encrypt db2 user password before adding it in response file to do db2 silent install.

We are OEM customer to provider our user Db2+Cognos installation, we're using db2 silent install with a response file, for now, there is no way (no tools, no command) to encrypt a plain db2 user password so that we can add this encrypted password ...
over 2 years ago in Db2 / Installation & Upgrade / Security 0 Not under consideration

Single source for User access details

The SYSIBMADM.PRIVILEGES view should be enhanced to include all privileges that a user has on the database. currently it reports most of them but does not include data about a user's access on Columns & SurrogateIDs . i.e from syscat.colauth &...
over 3 years ago in Db2 / Security 1 Not under consideration

load privilages should not affect runstants

RS should not require load authority Authorization For a table, you require one of the following authorities: •SYSADM•SYSCTRL•SYSMAINT•DBADM•SQLADM•CONTROL privilege on the table•LOAD authority
about 4 years ago in Db2 / Security 0 Not under consideration

Provide support in Db2 native encryption for KMIP 1.2 or higher

DB2 native encryption currently supports KMIP 1.1 where the master key flows (in a secure communication channel) from the centralized keystore to Db2 in order to decrypt the data encryption key. Later versions of KMIP support an alternate approach...
about 4 years ago in Db2 / Security 0 Not under consideration

Key rotation of DEK

Facility to rotate DEK in addition to rotation of DMK. Currently db2 does support master key rotation however for banking regulations there is need of facility to rotate the DEK as well.
over 4 years ago in Db2 / Security 0 Not under consideration