IBM Data and AI RegTech Ideas Portal

Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Post your ideas

Post ideas and requests to enhance a product or service. Take a look at ideas others have posted and upvote them if they matter to you,

  1. Post an idea

  2. Upvote ideas that matter most to you

  3. Get feedback from the IBM team to refine your idea

Help IBM prioritize your ideas and requests

The IBM team may need your help to refine the ideas so they may ask for more information or feedback. The offering manager team will then decide if they can begin working on your idea. If they can start during the next development cycle, they will put the idea on the priority list. Each team at IBM works on a different schedule, where some ideas can be implemented right away, others may be placed on a different schedule.

Receive notification on the decision

Some ideas can be implemented at IBM, while others may not fit within the development plans for the product. In either case, the team will let you know as soon as possible. In some cases, we may be able to find alternatives for ideas which cannot be implemented in a reasonable time.


For product documentation, see Knowledge Center.
Create and View Support Cases and Use the Discussion Forum here

Shorter URL for this site is: http://ibm.biz/WFS-Ideas or https://ibm.biz/RegTech-Ideas

Add a new idea Subscribe
Status Planned for future release
Workspace OpenPages Ideas
Component Other
Created by Guest
Created on Nov 26, 2020

RELATED IDEAS

More graceful handling when 'special character' is entered in OP.

When entering certain characters into OpenPages (OP) application, OP gives an error message and terminates the user's session.

The error message is:

'Malicious attack has been detected. Your session has bee terminated. '

This has occurred on the 'Internal Event Detail' Screen on the 'Event Title' field.

Input of special characters should be handled by the application more gracefully so that the user experience is better. Due to the error message and the user session being terminated, the issue is being reported to our cyber security team and therefore involves multiple teams creating unnecessary work to close the issue.

If the message can be configurable to suit the needs of the client that would be even more helpful.

  • Guest
    Apr 21, 2021

    Hi, The word malicious is what causes concern to the user. Can the wording be along the lines. 'Please urgently contact your support team to investigate this error'

    ×

    Attachments Open full size

  • Admin
    JOHN Lundgren
    Mar 16, 2021

    This request is a candidate for a future generally available (GA) release. IBM's statements regarding its plans, directions, and intent are subject to change or withdrawal without notice at IBM's sole discretion. IBM will update this request to reflect any changes.

    ×

    Attachments Open full size

  • Admin
    JOHN Lundgren
    Mar 16, 2021

    Thank you again for submitting this RFE!

    Upon further review, we now understand that the definitive nature of the current message text is an issue.


    We will plan to update the message to better indicate that this is a "Potential" malicious attack.

    ×

    Attachments Open full size

  • Admin
    JOHN Lundgren
    Jan 28, 2021

    Given the above commentary, we are closing this RFE.

    If other issues are found (that are not explainable given the above information), please create a Customer Support Ticket to further pursue.


    Thank you.

    ×

    Attachments Open full size

  • Admin
    JOHN Lundgren
    Jan 28, 2021

    Thank you for your additional information.


    Our Development Team reports that:

    ; by itself will not trigger this. It needs to appear in combination with other special characters.


    For example, I was able to enter in ; in regular everyday alphanumeric text in the description field as below. I even had a ; appear after a . w/o issue


    );, (;, <; >; :; ?; /; \; also works. Things that will definitely trigger it though are combos like "; and '; and that is by design because those are commonly used in XSS attacks.

    ×

    Attachments Open full size

  • Admin
    JOHN Lundgren
    Jan 22, 2021

    Thank you for providing more information. We will continue our review. Thanks again!

    ×

    Attachments Open full size

  • Guest
    Jan 20, 2021

    Hi , Please see attached. If you require more info please confirm what you would like to see.

    Thank you.

    Case info for I...
    ×

    Attachments Open full size

  • Guest
    Jan 20, 2021

    Hi, I am working on getting some examples and will revert back. Thank you.

    ×

    Attachments Open full size

  • Admin
    JOHN Lundgren
    Jan 10, 2021

    Thank you again for submitting this RFE!

    Please provide specific examples that demonstrate the reported behavior.

    IBM is requesting more information from the submitter before the request can be evaluated. This request will remain open in this status for 30 days, but if the submitter doesn't respond, the request will be closed.

    ×

    Attachments Open full size

  • Admin
    JOHN Lundgren
    Dec 3, 2020

    Thank you for submitting this RFE!

    The IBM team is evaluating this RFE. A decision or request for more information will be provided within 90 days.

    ×

    Attachments Open full size

By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.