Skip to Main Content
IBM Data and AI Ideas Portal for Customers


This portal is to open public enhancement requests against products and services offered by the IBM Data & AI organization. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:


Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,


Post your ideas

Post ideas and requests to enhance a product or service. Take a look at ideas others have posted and upvote them if they matter to you,

  1. Post an idea

  2. Upvote ideas that matter most to you

  3. Get feedback from the IBM team to refine your idea


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

IBM Employees should enter Ideas at https://ideas.ibm.com


ADD A NEW IDEA

Security

Showing 73

schema-privilege for USAGE ON SEQUENCE

To GRANT USAGE ON SEQUENCE there is only the old method with db2 grant usage on sequence sq_test to role <rolename> But i want to use schema-privileges, but there is not the function GRANT USAGEIN ON SCHEMA MYSCHEMA TO ROLE <rolename> ...
over 2 years ago in Db2 / Security 0 Future consideration

Revoke on function blocked by depended objects.

The revoke on a function is being blocked due to dependent on the target object. revoke EXECUTE ON FUNCTION "xyz"."aaaaaa"(DATE) from PUBLIC SQL0478N The statement failed because one or more dependencies exist on the target object. Target object t...
almost 3 years ago in Db2 / Security 0 Future consideration

DB2 Certificate Authentication with HSM Support

DB2 certificate authenticated TLS/JDBC connections should be configurable at the client via the standard "DriverManager.getConnection()" mechanism, where parameters are added to indicate that TLS client certificate authentication will be used. It ...
almost 3 years ago in Db2 / Security 0 Future consideration

Update SYSMON_GROUP Authority to include privileges needed for db2top (and other monitoring type functions)

Revisit db2top and dcmtop access requirements to identify the basic monitoring features which require privileges above and beyond sysmon_group privileges and update Db2 to have the sysmon_group given all necessary permissions
about 3 years ago in Db2 / Security 1 Not under consideration

Provide the option to exclude SELECT statements from db2audit when collecting DML data

The painful and expensive IBM recommended workaround that ended up not being feasible was to create event monitors (multiple so that records can be cleared) with WLM. However, the volume and format of output generated by the event monitors is diss...
over 3 years ago in Db2 / Security 0 Not under consideration

DB2 RCAC Masking usage enhancement

This is urgent request to enhance RCAC masking rule. We are using it on several systems but due to below limitation or bug we have to use static hardcoded values in the masking rule, which is lot of manual process and impose security risk. This fe...
over 3 years ago in Db2 / Security 0 Not under consideration

Db2 should allow binding its port 50000 on windows to localhost only.

Db2 currently doesn't allow binding its port 50000 on windows to localhost only, this port is left as open port and can be connected from other machines, unauthorized users can exploit this information to test vulnerabilities in the open service a...
over 3 years ago in Db2 / Security 2 Functionality already exists

Add a way to pre-encrypt db2 user password before adding it in response file to do db2 silent install.

We are OEM customer to provider our user Db2+Cognos installation, we're using db2 silent install with a response file, for now, there is no way (no tools, no command) to encrypt a plain db2 user password so that we can add this encrypted password ...
almost 4 years ago in Db2 / Installation & Upgrade / Security 0 Not under consideration

DB2 processes such as db2ckpwd and db2wdog run as root

The DB2 processes such as db2ckpwd and db2wdog run as root, which results in elevated system level access by those processes. Since root access is elevated system level access, a malicious user may gain access to other OS level APIs/processes and ...
almost 4 years ago in Db2 / Security 1 Not under consideration

Do not block DDL on RCAC-protected table if rule not affected by change

after alter add column RCAC rule must be dropped and recreated, even if new column is not part of rule IBM perspective: In our ALTER TABLE ADD COLUMN documentation it says: https://www.ibm.com/support/knowledgecenter/en/SSEPGG_11.5.0/com.i...
over 4 years ago in Db2 / Security 0 Not under consideration