000034308 - Attempts to scrub/hash JSON data elements are not always working in RSA Web Threat Detection

Document created by RSA Customer Support Employee on Dec 30, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000034308
Applies ToRSA Product Set: Web Threat Detection
RSA Product/Service Type: Mitigator
RSA Version/Condition: 5.1.2
O/S Version: Red Hat Enterprise Linux 6.x
Product Description: RSA WTD F&M SW On Prem Lic
IssueAttempts to hash/scrub JSON sensitive data elements are working sometimes but in other cases are NOT working as expected.
This is causing sensitive customer data to be exposed to users accessing the FUI (Forensic User Interface).

JSON Selector scrubbing is working except for 2 - 4 % approx, in WTD version 5.1.2.
Issue is random, and which field gets hashed or not when scrubbing fails is random as well. (e.g. Card Number, CVV, Expiration Date, Date Of Birth, etc.)

ResolutionThis issue has been resolved in RSA Web Threat Detection 6.1.

Attachments

    Outcomes