IBM Data and AI RegTech Ideas Portal

Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Post your ideas

Post ideas and requests to enhance a product or service. Take a look at ideas others have posted and upvote them if they matter to you,

  1. Post an idea

  2. Upvote ideas that matter most to you

  3. Get feedback from the IBM team to refine your idea

Help IBM prioritize your ideas and requests

The IBM team may need your help to refine the ideas so they may ask for more information or feedback. The offering manager team will then decide if they can begin working on your idea. If they can start during the next development cycle, they will put the idea on the priority list. Each team at IBM works on a different schedule, where some ideas can be implemented right away, others may be placed on a different schedule.

Receive notification on the decision

Some ideas can be implemented at IBM, while others may not fit within the development plans for the product. In either case, the team will let you know as soon as possible. In some cases, we may be able to find alternatives for ideas which cannot be implemented in a reasonable time.


For product documentation, see Knowledge Center.
Create and View Support Cases and Use the Discussion Forum here

Shorter URL for this site is: http://ibm.biz/WFS-Ideas or https://ibm.biz/RegTech-Ideas

Status Delivered
Component Documentation
Created by Guest
Created on Apr 9, 2019

Please document how to implement SWIFT security recommendations in WBIFN.

Requirement from my customer for information on how to implement SWIFT security recommendations in WBIFN.

As a result of the recent security incident at another SWIFT customer institution, my customer is asking for documentation on how SWIFT recommendations and guidelines can be implemented in the WBIFN products.

As an example, one specific question from my customer is if and how two factor authentication (2FA) can be enforced when users login to the WBIFN WAS applications MER/RMA/AO.

Please refer to PMR/Service request number 18390,010,678

However the information requested by my customer is not limited to getting documentation on enforcing 2FA, but any other means to implement SWIFT's security recommendations in WBIFN are asked for.

The recommendations would ideally be based on and alligned with the Security Guidance Checklist issued by SWIFT.

SWIFT has created a number of checklists to assist its users in verifying whether their infrastructure meets the minimum recommendations of the security guidance documents.

One of these is KB tip 5020818 - Security Guidance Checklist for interfaces by 3rd party providers

Other KB tip numbers are 5020786, 5020890, 5020928

The documention is needed for both WBIFN and FTM for SWIFT .

The documentation is needed asap to progress with implementation of the required changes in the customer's environment. Hence the urgent priority.