RSA, The Security Division of EMC, announces the release of Web Threat Detection 5.1

Document created by RSA Admin Employee on May 18, 2015Last modified by RSA Link Team on Apr 11, 2016
Version 2Show Document
  • View in full screen mode

Summary:

RSA, The Security Division of EMC, announces the release of Web Threat Detection 5.1

 

Platforms:

The Web Threat Detection platform runs on CentOS 6.x or Red Hat Enterprise Linux 6.x

 

Description:

RSA Web Threat Detection (WTD) 5.1 is a major release with a host of new features and enhancements, including:

 

Broader Visibility

 

á         Internationalization

á         WTD can now process UTF-8 characters in HTTP/S traffic. This provides further visibility into websites that are in non-English, i.e., bi-directional languages such as Arabic, accented languages such as French, and double-byte languages such as Kanji. This visibility will also help detect threats that occur across global websites. Strings with UTF-8 characters are now used in Streaming Analytics, available for rule writing, and viewable on the Clickstream.

 

á         Incident Management Integration

á         WTDÕs incidents are integrated into RSA Security Analytics Incident Management. For information regarding Incident Management, please refer to the RSA Security Analytics product documentation.  If Incident Management is present in the environment, all incidents generated from WTD can be sent to it in real time. This helps with centralized management of internal and external threats and increases operational efficiencies between infosec and fraud teams. Also, WTDÕs web session intelligence can be shared with larger security teams.

 

Enhanced Threat Detection

 

á         Rule Builder

á         Easier and faster rule writing is possible via the new Rule Builder. The Rule Builder provides quick access to attributes, scores, keys, registers, pages and EDS files, that are required to write rules. This removes the need to navigate between the rules UI, investigation UI, and the configuration UI to locate information while authoring a rule. 

 

á         Enhanced User Tracking

á         Advanced user-tracking provides capabilities for complex web apps closely matching websiteÕs user monitoring needs. This enables flexibility for identifying and tracking user-based web sessions by leveraging complex and derived attributes. In case of multi-domain environments, per-domain user tracking via multiple methods is possible.

 

Ease of Use and Compliance

 

á         Audit Logging for User Management

á         Audit Logging capabilities have been extended in this release to include user add, edits and deletes.

 

á         Self-Service Password

á         A userÕs password can now be changed by directly by the user without the need for administrative intervention.

 

á         Profile Timeline Storage Manager

á         Automatic purge of Profile Timeline data is now possible by adding a Time-To-Live configuration. 

 

Recommendation:

RSA recommends that customers upgrade to RSA WTD Version 5.1

 

Attachments

    Outcomes