Merative Ideas Portal

Shape the future of Merative!

We invite you to shape the future of Merative, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Post your ideas

Start by posting ideas and requests to enhance a product or service. Take a look at ideas others have posted and upvote them if they matter to you,

  1. Post an idea

  2. Upvote ideas that matter most to you

  3. Get feedback from the Merative team to refine your idea

Help Merative prioritize your ideas and requests

The Merative team may need your help to refine the ideas so they may ask for more information or feedback. The offering manager team will then decide if they can begin working on your idea. If they can start during the next development cycle, they will put the idea on the priority list. Each team at Merative works on a different schedule, where some ideas can be implemented right away, others may be placed on a different schedule.

Receive notification on the decision

Some ideas can be implemented at Merative, while others may not fit within the development plans for the product. In either case, the team will let you know as soon as possible. In some cases, we may be able to find alternatives for ideas which cannot be implemented in a reasonable time.


Merative External Privacy Statement: https://www.merative.com/privacy

Add a new idea Subscribe
Status Under review
Categories Social Program Management Platform
Created by Siemon Kamstra
Created on Mar 6, 2024

RELATED IDEAS

Upgrade Cúram XML Server to TLS V1.3

The actual Cúram XML Server V8 runs with TLS V1.2.

In 2018 TLS V1.3 was introduced.

TLS V1.3 has many advantages over TLS V1.2:

  • Eliminates support for outmoded algorithms and ciphers

  • Eliminates RSA key exchange, mandates Perfect Forward Secrecy

  • Reduces the number of negotiations in the handshake

  • Reduces the number of algorithms in a cipher suite to 2

  • Eliminates block mode ciphers and mandates AEAD bulk encryption

  • Uses HKDF cryptographic extraction and key derivation

  • Offers 1-RTT mode and Zero Round Trip Resumption

  • Signs the entire handshake, an improvement of TLS 1.2

  • Supports additional elliptic curves

(Source: https://www.thesslstore.com/blog/tls-1-3-everything-possibly-needed-know/ )

TLS V1.3 is supported by Java 8.

We think an upgrade to TLS V1.3 for the XML Server is highly recommended, as this brings the Cúram security on a modern level.

The pressure of our security department and server-administrators to use TLS V1.3 will grow in the near future.

Customer Name Dataport, Hamburg, Germany
Persona Based Summary

As a provider of government IT-solutions that processes highly confidential data I want my applications to be secure and to implement up-to-date security measures of which TLS V1.3 is one.
Market Segment WH Government
Type of Request Customer Requirement
Market Opportunity

Implementation of this feature will keep the Cúram Software modern concerning security.
Usage frequency + #/type of users impacted

Once implemented, always.
  • Attach files
  • Admin
    Graham McCrindle
    Reply
    |     Mar 13, 2024

    Hi Siemon

    Thank you for taking the time to share your ideas with us. We are committed to involving our users in building our product roadmap and appreciate your suggestions.

    We will review the information you have provided and get back to you within 30 days. If additional details are required to complete our evaluation, we will send you a request for more information.

    Thank you,

    Graham McCrindle, CURAM Product Management Team