RSA, The Security Division of EMC, announces the release of Web Threat Detection 5.0

Document created by RSA Admin Employee on Jul 31, 2014Last modified by RSA Link Team on Apr 11, 2016
Version 2Show Document
  • View in full screen mode

Summary:

RSA, The Security Division of EMC, announces the release of Web Threat Detection 5.0. Key features and enhancements introduced in this major release include:


Broader and Deeper Visibility 

 

 

Data Stream. A new service enables to extract, real-time sessionized web data activities along with Web Threat Detection Threat Scores, into external repositories, leveraging industry standards protocol AMQP 0-9-1(RabbitMQ) in a JSON format.

 

Mobile Traffic Visibility. Improved and dedicated mobile application traffic monitoring and analysis. The native support for JSON content will enable clickstream and streaming analytics with mobile traffic. 


Enhanced Threat Detection


 

Real-time Threat Groups. Threat Groups, are enhanced to get updated in real-time; enabling real-time identification of navigation-based threats such as DDoS, Password Guessing and Money Movements. Custom Threat Groups can also be created for sensitive webpages.

 

Profile Timeline. Advanced investigation capabilities based on historical user and IP sessionized data, along with Risk Indicators such as: Multiple Locations, Multiple IPs, Unique Pages, Alerts and Click Speeds, that provide clickstream summary.

Rule Enhancements. We continue to invest in enhancing rules engine to detect more advanced threats. Rules can be written to find Name-Value pairs of data any element in the transaction including headers, cookies, setcookies, args and rawargs. Any combination of name, value or name/value combination can be found using the new syntax


Ease of Use


Additional User Permission and Access Controls. New User Permissions such as User Management, Rules Management and Tenant Admin were added enabling the control to user access to different components of the product.

Single Sign-On while navigating between the Web Threat Detection Dashboard and Admin applications.  

 

Platforms:

The Web Threat Detection is supported on CentOS 6.x or Red Hat Enterprise Linux 6.x

 

 

 

Recommendation:

RSA recommends that customers upgrade to RSA Web Threat Detection 5.0 now available for download.  Follow the instructions below to obtain the software.

 

 

 

Obtaining Web Threat Detection 5.0 Software:

 

 

 

To download the Web Threat Detection 5.0 software, log on to RSA Link at https://community.rsa.com and follow these steps:

 


 

    1.     Click ""Products"" in the top navigation menu.

 

    2.     Select ""RSA Silver Tail/Web Threat Detection"" from the list of products.

 

    3.     Select the ""Version Upgrades"" link at the top of the page.

    4.     You will be presented with a list of products that you are entitled to based on the RSA products you have purchased.  Select the ""RSA Silver Tail F&M SW On Prem Lic"" to access the available Web Threat Detection software downloads.  If you do not have this licence in your list of products, then please contact RSA Customer Support.


Attachments

    Outcomes