RSA announces the release of RSA Authentication Agent 8.0.4 for Web:
Web Agent 8.0.4 include security fixes and other software updates.
Web Agent 8.0.4 includes new default templates that use a content security policy (CSP) and CSP HTTP headers to prevent certain types of attacks on trusted web pages, such as cross-site scripting (XSS) and date injection attacks. By default, a CSP is enabled, but you can also continue to use your existing templates.
When using Web Agent for IIS, RSA recommends opening SharePoint documents online using Office Online server configuration instead of in their native applications. For example, use Office Online (Office Web Apps), instead of opening Microsoft Word documents in Microsoft Office.
|For additional documentation, downloads and more, visit the RSA SecurID Access page on RSA Link.|
|EOPS Policy:||RSA has a defined End of Primary Support policy associated with all major versions. Please refer to the Product Version Life Cycle for additional details.|