RSA Announces the Release of Web Threat Detection 6.2

Document created by RSA Product Team Employee on Jul 20, 2017Last modified by RSA Product Team Employee on Jul 20, 2017
Version 2Show Document
  • View in full screen mode

Summary:

RSA announces the release of Web Threat Detection 6.2. The release includes the following features and enhancements. For further details, see the Release Notes and product documentation.

Transaction Scoring in RSA Adaptive Authentication

The Web Threat Detection integration with RSA Adaptive Authentication provides a seamless integration with your Adaptive Authentication implementation.

The Transaction Scoring with Adaptive Authentication feature increases the number of event types sent for risk assessment and can stop more fraud by creating cases for review and enriching Risk Engine data. Customers can leverage information captured by Web Threat Detection to monitor and score transactions in Adaptive Authentication, without altering the code on the website pages. Web Threat Detection is configured to parse the transaction and send the data as an Adaptive Authentication SOAP call to Adaptive Authentication. The transactions are sent for risk assessment, and the customer can create Adaptive Authentication policy rules to create cases for offline investigation. By feeding additional transactions to Adaptive Authentication, and marking the cases as fraudulent or genuine, the Adaptive Authentication Risk Engine receives additional data, enhancing its performance.

Enhanced Security

Web Threat Detection 6.2 includes support for AES128-GCM encryption of log files that contain transactions. You can configure the application to use either AES128-GCM or RC4 encryption.

Web Server Upgrade

Web Threat Detection 6.2 includes an updated NGINX server, enhancing performance and stability, and reducing resource consumption.

JSON Web Token (JWT) Support

Web Threat Detection 6.2 can view traffic that uses JWT. You can configure the application to extract transaction data from part of the header or the payload of the token in the HTTP request or response.

Utility Scripts

The Web Threat Detection 6.2 installation package includes several utility scripts that you can use to perform tasks in your Web Threat Detection environment, such as simulating web traffic and encrypting or decrypting log files. For more information, see the RSA Web Threat Detection System Administration Guide.

Documentation Enhancements

The Web Threat Detection 6.2 documentation set includes several enhancements, including a Security Configuration Guide, enhanced rules documentation, and utility script information.

 

Supported Platforms:

Operating Systems

  • Red Hat Enterprise Linux (RHEL) 6.x up to and including 6.8

  • CentOS 6.x up to and including 6.7

Browser Support

Web Threat Detection 6.2 supports the following browser versions that support Transport Layer Security (TLS) 1.2:

  • Internet Explorer 11 or later
  • Firefox versions with TLS 1.2 support

File System Support

  • EXT 4
  • NFS

Network Support

Web Threat Detection is supported when installed on an IPv4 network.

VMWare Compatibility

Web Threat Detection 6.2 supports the use of  Web Threat Detection products with VMware vMotion. A virtual machine running Web Threat Detection processes can be seamlessly moved across physical hosts with vMotion. Migrations can be executed without restarting the processes with minimal data loss to Web Threat Detection applications.

Java Runtime Environment Support

Web Threat Detection supports the following Java environments for the Profile Timeline feature or eFraudNetwork Integration, :

  • Oracle JRE 8

  • Oracle JDK 8

 

For additional documentation, downloads, and more, visit the RSA Web Threat Detection  page on RSA Link.

 

EOPS Policy:

RSA has a defined End of Primary Support policy associated with all major versions. Please refer to the Product Version Life Cycle for additional details.

Attachments

    Outcomes