Skip to Main Content
IBM Data and AI Ideas Portal for Customers


This portal is to open public enhancement requests against products and services offered by the IBM Data & AI organization. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:


Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,


Post your ideas

Post ideas and requests to enhance a product or service. Take a look at ideas others have posted and upvote them if they matter to you,

  1. Post an idea

  2. Upvote ideas that matter most to you

  3. Get feedback from the IBM team to refine your idea


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

IBM Employees should enter Ideas at https://ideas.ibm.com


Status Not under consideration
Workspace Planning Analytics
Created by Guest
Created on Jun 7, 2021

PAW Documentation

We need to justify PAW's infrastructure and security requirement due to its super complicated infrastructure requirement, most IT department from mega-size companies to SME cannot understand how PAW actually work and approve the PAW's infrastructure.


Looking at the current documentation provided, it cannot explain the following:

  1. Is PAW even safe to use or did IBM put in any code to sniff any content in customers' network? We probably know IBM will not do that, but how to proof? Customers are requesting to put docker to scanning, but due to its super complicated infrastructure, it is not possible to tell how to extract and we cannot guarantee if the scanning software is supported or not. At the same time, IBM cannot provide any documentation or Tech Note to address security concerns.

  2. Infrastructure, it comes with docker and docker compose, which version? Any licensing implication to docker and docker compose? Did IBM has any agreement with docker that it is free to use? Which version of docker and docker compose that comes with PAW? How does the component working together?

  3. Documentation of each micro-services, many of them just one-liner to describe what the service do, there isn't any Tech Note or documentations to describe properly on each micro-services, this is the best documentation available: https://www.pantarhei.at/wp-content/uploads/2018/06/PAW-Local-Distributed-Soufiane-Azizi.pdf, but it wasn't updated neither, the services describe is way too simple for such a big investment on PAW.

  4. Will the communication between each micro-services safe? Possible to get sniff by any other applications? Any encryption being done for the data transmission between each containers? If yes, what type of encryption? Is this up to industry standard?


Needed by Date Jun 7, 2021
  • Admin
    Stuart King
    Reply
    |
    Jun 10, 2021

    Changed status to not under consideration. We do not expose the internal architecture of Planning Analytics Workspace local (Docker compose, Docker Swarm, OpenShift). The internal architecture of Workspace is not required by customers to determine if Workspace is safe or impact how customers may choose to deploy and scale the application.

    License implications are already well known. Docker compose is included and no additional license is required.

    Security between containers is addressed by the platform. That is an advantage of containerized deployment of microservices.