Curam by Merative Ideas Portal
Hide about this portal

Shape the future of Curam!

We invite you to shape the future of Curam, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Post your ideas

Start by posting ideas and requests to enhance a product or service. Take a look at ideas others have posted and upvote them if they matter to you,

  1. Post an idea

  2. Upvote ideas that matter most to you

  3. Get feedback from the Curam team to refine your idea

Help Curam prioritize your ideas and requests

The Curam team may need your help to refine the ideas so they may ask for more information or feedback. The offering manager team will then decide if they can begin working on your idea. If they can start during the next development cycle, they will put the idea on the priority list. Each team at Merative works on a different schedule, where some ideas can be implemented right away, others may be placed on a different schedule.

Receive notification on the decision

Some ideas can be implemented at Merative, while others may not fit within the development plans for the product. In either case, the team will let you know as soon as possible. In some cases, we may be able to find alternatives for ideas which cannot be implemented in a reasonable time.


Merative External Privacy Statement: https://www.merative.com/privacy

Add a new idea Subscribe
Status Future consideration
Categories Social Program Management Platform
Created by Siemon Kamstra
Created on Mar 6, 2024

RELATED IDEAS

Upgrade Cúram XML Server to TLS V1.3

The actual Cúram XML Server V8 runs with TLS V1.2.

In 2018 TLS V1.3 was introduced.

TLS V1.3 has many advantages over TLS V1.2:

  • Eliminates support for outmoded algorithms and ciphers

  • Eliminates RSA key exchange, mandates Perfect Forward Secrecy

  • Reduces the number of negotiations in the handshake

  • Reduces the number of algorithms in a cipher suite to 2

  • Eliminates block mode ciphers and mandates AEAD bulk encryption

  • Uses HKDF cryptographic extraction and key derivation

  • Offers 1-RTT mode and Zero Round Trip Resumption

  • Signs the entire handshake, an improvement of TLS 1.2

  • Supports additional elliptic curves

(Source: https://www.thesslstore.com/blog/tls-1-3-everything-possibly-needed-know/ )

TLS V1.3 is supported by Java 8.

We think an upgrade to TLS V1.3 for the XML Server is highly recommended, as this brings the Cúram security on a modern level.

The pressure of our security department and server-administrators to use TLS V1.3 will grow in the near future.

Customer Name Dataport, Hamburg, Germany
Persona Based Summary

As a provider of government IT-solutions that processes highly confidential data I want my applications to be secure and to implement up-to-date security measures of which TLS V1.3 is one.
Market Segment Eligibility & Entitlement
Type of Request Customer Requirement
Market Opportunity

Implementation of this feature will keep the Cúram Software modern concerning security.
Usage frequency + #/type of users impacted

Once implemented, always.
  • Attach files
      Drop here to upload
    • Admin
      Graham McCrindle
      Reply
      |       Apr 29, 2024

      Hi Siemon

      We have reviewed your enhancement suggestion.

      Based on the information provided, our understanding of your request is as follows:

      • Request that we upgrade the the Curam XML server to TLS V1.3

      The theme is aligned with our current multi-year strategy for our product, and we have accepted your suggestion as a consideration for a future release. Not all items under consideration will make it into a release. As plans are confirmed, you will be notified when a specific release includes this enhancement.

      Thank you for taking the time to share your ideas with us. We are committed to involving our users in building our product roadmap and appreciate your suggestions.

      Regards,

      Graham McCrindle, CURAM Product Management Team

    • Admin
      Graham McCrindle
      Reply
      |       Mar 13, 2024

      Hi Siemon

      Thank you for taking the time to share your ideas with us. We are committed to involving our users in building our product roadmap and appreciate your suggestions.

      We will review the information you have provided and get back to you within 30 days. If additional details are required to complete our evaluation, we will send you a request for more information.

      Thank you,

      Graham McCrindle, CURAM Product Management Team