IBM Data and AI RegTech Ideas Portal

Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Post your ideas

Post ideas and requests to enhance a product or service. Take a look at ideas others have posted and upvote them if they matter to you,

  1. Post an idea

  2. Upvote ideas that matter most to you

  3. Get feedback from the IBM team to refine your idea

Help IBM prioritize your ideas and requests

The IBM team may need your help to refine the ideas so they may ask for more information or feedback. The offering manager team will then decide if they can begin working on your idea. If they can start during the next development cycle, they will put the idea on the priority list. Each team at IBM works on a different schedule, where some ideas can be implemented right away, others may be placed on a different schedule.

Receive notification on the decision

Some ideas can be implemented at IBM, while others may not fit within the development plans for the product. In either case, the team will let you know as soon as possible. In some cases, we may be able to find alternatives for ideas which cannot be implemented in a reasonable time.

For product documentation, see Knowledge Center.
Create and View Support Cases and Use the Discussion Forum here

Shorter URL for this site is: or

More graceful handling when 'special character' is entered in OP.

When entering certain characters into OpenPages (OP) application, OP gives an error message and terminates the user's session.

The error message is:

'Malicious attack has been detected. Your session has bee terminated. '

This has occurred on the 'Internal Event Detail' Screen on the 'Event Title' field.

Input of special characters should be handled by the application more gracefully so that the user experience is better. Due to the error message and the user session being terminated, the issue is being reported to our cyber security team and therefore involves multiple teams creating unnecessary work to close the issue.

If the message can be configurable to suit the needs of the client that would be even more helpful.

  • Guest
  • Nov 26 2020
  • Planned for future release
Component Other
Priority Medium - Important
  • Guest commented
    21 Apr 04:14pm

    Hi, The word malicious is what causes concern to the user. Can the wording be along the lines. 'Please urgently contact your support team to investigate this error'

  • Admin
    JOHN Lundgren commented
    16 Mar 06:28pm

    This request is a candidate for a future generally available (GA) release. IBM's statements regarding its plans, directions, and intent are subject to change or withdrawal without notice at IBM's sole discretion. IBM will update this request to reflect any changes.

  • Admin
    JOHN Lundgren commented
    16 Mar 06:28pm

    Thank you again for submitting this RFE!

    Upon further review, we now understand that the definitive nature of the current message text is an issue.

    We will plan to update the message to better indicate that this is a "Potential" malicious attack.

  • Admin
    JOHN Lundgren commented
    28 Jan 06:33pm

    Given the above commentary, we are closing this RFE.

    If other issues are found (that are not explainable given the above information), please create a Customer Support Ticket to further pursue.

    Thank you.

  • Admin
    JOHN Lundgren commented
    28 Jan 06:24pm

    Thank you for your additional information.

    Our Development Team reports that:

    ; by itself will not trigger this. It needs to appear in combination with other special characters.

    For example, I was able to enter in ; in regular everyday alphanumeric text in the description field as below. I even had a ; appear after a . w/o issue

    );, (;, <; >; :; ?; /; \; also works. Things that will definitely trigger it though are combos like "; and '; and that is by design because those are commonly used in XSS attacks.

  • Admin
    JOHN Lundgren commented
    22 Jan 01:06pm

    Thank you for providing more information. We will continue our review. Thanks again!

  • Guest commented
    20 Jan 04:44pm

    Hi , Please see attached. If you require more info please confirm what you would like to see.

    Thank you.

  • Guest commented
    20 Jan 04:43pm

    Hi, I am working on getting some examples and will revert back. Thank you.

  • Admin
    JOHN Lundgren commented
    10 Jan 06:13pm

    Thank you again for submitting this RFE!

    Please provide specific examples that demonstrate the reported behavior.

    IBM is requesting more information from the submitter before the request can be evaluated. This request will remain open in this status for 30 days, but if the submitter doesn't respond, the request will be closed.

  • Admin
    JOHN Lundgren commented
    3 Dec, 2020 03:51pm

    Thank you for submitting this RFE!

    The IBM team is evaluating this RFE. A decision or request for more information will be provided within 90 days.

IBM's success depends on gathering feedback from customers like yourself. Aha Ideas Portal is the third party tool through which IBM Offering Managers gather feedback from customers such as yourself.
IBM is a global organization with business processes, management structures, technical systems and service provider networks that cross borders. As such, the information collected through Aha Ideas Portal (Customer Name, Customer Email Address) will be stored by them in the United States, and handled only as per IBM's instructions and policies. Your data (Name and Email Address) will NOT be shared with other IBM customers.
In order to safeguard your information in Aha, do not leave your workstation unattended while using this application, log off after using it, and print only if necessary. If you need to make a hardcopy, remember to pick up the print-out immediately, keep it under lock, and destroy it immediately when no longer needed.
NOTICE TO EU RESIDENTS: per EU Data Protection Policy, if you wish to remove your personal information from the IBM ideas portal, please login to the ideas portal using your previously registered information then change your email to "anonymous@euprivacy.out" and first name to "anonymous" and last name to "anonymous". This will ensure that IBM will not send any emails to you about all idea submissions