API Replacement: Secure Gateway Service for IBM Cloud

The Secure Gateway Service team is making changes to further improve security and to prepare for the EU General Data Protection Regulation (GDPR).

Are you using the SDK or API to create destinations? 

  • You’ll need to download the new SDK or call the new API and method by 6 May 2018

  • We always recommend using the most secure methods possible, but allow options for users to configure to fit their needs

  • This is a part of designing for security and the EU GDPR


As a part of this work we will be updating the Graphical User Interface (GUI), the Software Development Kit (SDK) and the Application Programming Interface (API) for creating a destination through the Secure Gateway Service. While the secure tunnel between the installable Secure Gateway Client and the Server in IBM Cloud is always secured with TLS, we offer the user the option to configure both connections on either side of the tunnel. That is: both the connection between the client and the destination/resource and the connection between the Server and user or application can be specified. We offer the option to use a variety of protocols and security methods including support of TLS, TCP, HTTPS, HTTP, and UDP.

Changes to SDK and API:

The updated Create Destination action for the management API will require a user to explicitly specify choices related to the protocol and security methods for a destination being created, there will no longer be a default for these. We have published and documented an updated SDK  that calls the updated API and requires the explicit user action to specify protocol and security methods which is available here. The new SDK and API will be available in all regions after 1AM EST on 7 March.  All users of the SDK should download and implement the updated SDK as soon as possible to take advantage of the improved security by design. Any users choosing to call the API directly should be sure to do so using the new path and methods as described in the SDK documentation linked above. The previous API and methods will be supported in private for 60 days until 6 May and then all users must call the new version. After this date calling the previous API will return an error.

For Your Information:

Users of the GUI will notice that the protocol and methods now default to the most secure option (TLS-MA).

We have also recently updated our mini-Service Description (mini-SD) to reflect both GDPR declarations regarding data protection and the name change of the IBM Cloud Platform, you can view the new terms in the mini-SD here.

Please Note:

Clients are responsible for ensuring their own compliance with various laws and regulations, including the European Union General Data Protection Regulation. Clients are solely responsible for obtaining advice of competent legal counsel as to the identification and interpretation of any relevant laws and regulations that may affect the clients’ business and any actions the clients may need to take to comply with such laws and regulations.  The products, services, and other capabilities described herein are not suitable for all client situations and may have restricted availability. IBM does not provide legal, accounting or auditing advice or represent or warrant that its services or products will ensure that clients are in compliance with any law or regulation.

Learn more about IBM’s own GDPR readiness journey and our GDPR capabilities and offerings to support your compliance journey here.


As always, we’re here to help! Please reach out to us in the support forums.


More from integration

IBM Continues Top Ranking in G2 Quarterly Reports

2 min read - IBM offerings were featured in more than 1270 unique G2 reports, earning over 330 leadership awards across various categories. The 2023 Spring Reports from G2 help buyers discover the right solution for their real-world business problems. G2 reports identify use cases for software purchasing and provide insight into technology trends. See how IBM stacks up against other vendors in these comprehensive reports, specifically looking at the following: Ease of implementation (ease of setup, implementation time and more) Ease of use…

A Quick Tour of IBM Event Endpoint Management

4 min read - Exploring IBM Event Endpoint Management and its capabilities. There are some typical questions asked by application developers who are getting started with using events: How can I discover events that others in my company already have that I would find useful? When I find topics I want to use, how can I understand the data that is on them? How can I start using these topics as efficiently as possible? The simple answer to all the above? IBM Event Endpoint…

IBM Offerings Finish Strong in G2 Winter Reports

2 min read - IBM offerings were featured in over 1,200 unique reports, earning over 180 leadership awards across multiple categories. The 2023 Winter Reports from G2 help buyers discover the best solutions to solve their real-world business problems. By leveraging the aggregated review scores and insights for software and services, competitive comparisons and market leadership demonstrated in grids, and identifying trends in specific markets, buyers can pinpoint the best tools to fit any use case. IBM thanks its users for sharing their experiences…

Modernized Applications Can Help Build Agility into Your Data Exchange Environments

4 min read - IBM Sterling Data Exchange offers modernized capabilities that build agility into B2B integration and managed file transfer environments. The past few years have provided a new understanding of just how interconnected the world is right now. Global supply chains have been disrupted, impacting people and companies that manufacture goods and deliver them to warehouses, shops or directly to customers. While most focus on rising costs of living, it also affects the types and amounts of goods available and how quickly…