IBM Data and AI Ideas Portal for Customers


This portal is to open public enhancement requests against products and services offered by the IBM Data & AI organization. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:


Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,


Post your ideas

Post ideas and requests to enhance a product or service. Take a look at ideas others have posted and upvote them if they matter to you,

  1. Post an idea

  2. Upvote ideas that matter most to you

  3. Get feedback from the IBM team to refine your idea


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

IBM Employees should enter Ideas at https://ideas.ibm.com


ADD A NEW IDEA

Security

Showing 60

Allow creating allow/deny list of system calls possible by fenced external routines

This will secure the database further from malicious users trying to break out into the host running managed Db2 services on Cloud. This can be done using:1. seccomp() before spawning the db2fmp process and 2. Making more secure SELinux policies f...
10 months ago in Db2 / Security 0 Not under consideration

DMC DB2 Authorization for depricated SNAP Views

To use all monitor functions from the DMC the user that connected to the database that will be monitored, must have a lot of grants to funktions , views and tables. That is totaly managed in the DB2 System. But additionaly some functions such as S...
12 months ago in Db2 / Security 0 Not under consideration

Please provide the last grant time for auth (system/db/schema level) and privilege.

Please provide account creation, deletion, and the timestamp when a particular account was granted auth (system/db/schema level) and privileges on an object. db2luw is branded as an insecure DBMS every time in a security certification audit becaus...
12 months ago in Db2 / Security 0 Not under consideration

Create a tool in db2 luw that is provided to be fully STIG compliant, like the 'security_compliance_manager' in IIAS.

To improve the security of db2 luw, please create a tool that is provided to be fully compliant with the STIG, like the 'security_compliance_manager' in IIAS. I know you have plans for a CIS benchmark, but please create a tool that is STIG complia...
12 months ago in Db2 / Security 0 Not under consideration

Add support for database SINGLE_USER mode access

Time to time there is requirement to be the only user on the database like drop and create database, but there are also users with system authorizations connected to database. Or there is product (even from IBM) like Maximo: https://www.ibm.com/su...
over 1 year ago in Db2 / Security 0 Not under consideration

Update SYSMON_GROUP Authority to include privileges needed for db2top (and other monitoring type functions)

Revisit db2top and dcmtop access requirements to identify the basic monitoring features which require privileges above and beyond sysmon_group privileges and update Db2 to have the sysmon_group given all necessary permissions
about 3 years ago in Db2 / Security 1 Not under consideration

Provide the option to exclude SELECT statements from db2audit when collecting DML data

The painful and expensive IBM recommended workaround that ended up not being feasible was to create event monitors (multiple so that records can be cleared) with WLM. However, the volume and format of output generated by the event monitors is diss...
over 3 years ago in Db2 / Security 0 Not under consideration

DB2 RCAC Masking usage enhancement

This is urgent request to enhance RCAC masking rule. We are using it on several systems but due to below limitation or bug we have to use static hardcoded values in the masking rule, which is lot of manual process and impose security risk. This fe...
over 3 years ago in Db2 / Security 0 Not under consideration

Add a way to pre-encrypt db2 user password before adding it in response file to do db2 silent install.

We are OEM customer to provider our user Db2+Cognos installation, we're using db2 silent install with a response file, for now, there is no way (no tools, no command) to encrypt a plain db2 user password so that we can add this encrypted password ...
almost 4 years ago in Db2 / Installation & Upgrade / Security 0 Not under consideration

DB2 processes such as db2ckpwd and db2wdog run as root

The DB2 processes such as db2ckpwd and db2wdog run as root, which results in elevated system level access by those processes. Since root access is elevated system level access, a malicious user may gain access to other OS level APIs/processes and ...
about 4 years ago in Db2 / Security 1 Not under consideration

By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.