IBM Z Software


This portal is to open public enhancement requests against IBM Z Software products. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas

  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

Add a new idea Subscribe
Status Future consideration
Workspace z/OS Connect
Created by Guest
Created on Mar 4, 2025

RELATED IDEAS

Support for JWE Payload(entire/individual elements) Encryption in z/OS Connect as specified by Mastercard

  1. Overview
    This Request for enhancement (RFE) proposes the implementation of JWE payload(entire/individual elements)  encryption support in IBM z/OS Connect, as specified by Mastercard under the following URL: Mastercard Payload Encryption Documentation.
     
  2. Background
    Mastercard has outlined a method for securing sensitive data using payload(entire/individual elements)  encryption. This method ensures that sensitive information is encrypted before being transmitted over the network, providing an additional layer of security. Currently, z/OS Connect does not natively support this form of payload encryption, which is essential for compliance with Mastercard's security requirements.
     
  3. Objectives
    1. Implement support for payload(entire/individual elements)  encryption in z/OS Connect.
    2. Ensure compliance with Mastercard's payload(entire/individual elements)  encryption specifications.
    3. Enhance the security of data transmitted through z/OS Connect.
  4. Scope
    The scope of this RFC includes:
    1. Adding support for payload(entire/individual elements)  encryption and decryption in z/OS Connect.
    2. Providing configuration options to enable and manage payload encryption.
    3. Ensuring compatibility with existing z/OS Connect features and configurations.
  5. Requirements
    1. Functional Requirements
      1. Encryption and Decryption
        • Implement methods to encrypt and decrypt payloads(entire/individual elements)  as specified by Mastercard.
        • Support for both symmetric and asymmetric encryption algorithms.
      2. Configuration:
        • Provide configuration options in the “server.xml” file to enable and manage payload encryption.
        • Allow users to specify encryption keys, algorithms, and other relevant parameters.
      3. Compatibility:
        • Ensure that the payload(entire/individual elements)  encryption feature is compatible with existing z/OS Connect configurations and features.
    2. Non-Functional Requirements
      1. Performance:
        • Ensure that the implementation of payload(entire/individual elements)  encryption does not significantly impact the performance of z/OS Connect.
      2. Security:
        • Ensure that the encryption keys and other sensitive information are securely managed and stored.

 Conclusion
Implementing support for payload(entire/individual elements)  encryption in z/OS Connect will enhance the security of data transmitted through the platform and ensure compliance with Mastercard's security requirements. This RFC outlines the necessary steps and considerations for implementing this feature.

Idea priority High

By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.