RSA announces the release of Web Threat Detection 6.2. The release includes the following features and enhancements. For further details, see the Release Notes and product documentation.
Transaction Scoring in RSA Adaptive Authentication
The Web Threat Detection integration with RSA Adaptive Authentication provides a seamless integration with your Adaptive Authentication implementation.
The Transaction Scoring with Adaptive Authentication feature increases the number of event types sent for risk assessment and can stop more fraud by creating cases for review and enriching Risk Engine data. Customers can leverage information captured by Web Threat Detection to monitor and score transactions in Adaptive Authentication, without altering the code on the website pages. Web Threat Detection is configured to parse the transaction and send the data as an Adaptive Authentication SOAP call to Adaptive Authentication. The transactions are sent for risk assessment, and the customer can create Adaptive Authentication policy rules to create cases for offline investigation. By feeding additional transactions to Adaptive Authentication, and marking the cases as fraudulent or genuine, the Adaptive Authentication Risk Engine receives additional data, enhancing its performance.
Web Threat Detection 6.2 includes support for AES128-GCM encryption of log files that contain transactions. You can configure the application to use either AES128-GCM or RC4 encryption.
Web Server Upgrade
Web Threat Detection 6.2 includes an updated NGINX server, enhancing performance and stability, and reducing resource consumption.
JSON Web Token (JWT) Support
Web Threat Detection 6.2 can view traffic that uses JWT. You can configure the application to extract transaction data from part of the header or the payload of the token in the HTTP request or response.
The Web Threat Detection 6.2 installation package includes several utility scripts that you can use to perform tasks in your Web Threat Detection environment, such as simulating web traffic and encrypting or decrypting log files. For more information, see the RSA Web Threat Detection System Administration Guide.
The Web Threat Detection 6.2 documentation set includes several enhancements, including a Security Configuration Guide, enhanced rules documentation, and utility script information.
Web Threat Detection 6.2 supports the following browser versions that support Transport Layer Security (TLS) 1.2:
- Internet Explorer 11 or later
- Firefox versions with TLS 1.2 support
File System Support
Web Threat Detection is supported when installed on an IPv4 network.
Web Threat Detection 6.2 supports the use of Web Threat Detection products with VMware vMotion. A virtual machine running Web Threat Detection processes can be seamlessly moved across physical hosts with vMotion. Migrations can be executed without restarting the processes with minimal data loss to Web Threat Detection applications.
Java Runtime Environment Support
Web Threat Detection supports the following Java environments for the Profile Timeline feature or eFraudNetwork Integration, :
For additional documentation, downloads, and more, visit the page on RSA Link.
RSA has a defined End of Primary Support policy associated with all major versions. Please refer to the Product Version Life Cycle for additional details.