ObjectSecurity OT.AI Platform | v2.0.5 Release Notes

Modified on Mon, 06 Nov 2023 at 08:35 AM

What's New - v2.0.5. Previous version Release Notes can be accessed here.

ObjectSecurity OT.AI Platform General Release v2.0.5 adds new logging features, CVE database update abilities, and malware signature database update abilities. Other updated and enhanced features include frontloading of CVE analysis, password configuration setting changes, and increased ease of use surrounding license features.

TABLE OF CONTENTS

What's Changed with This Release
Feature details

What's Changed with This Release:

What's New:

The SUPERADMIN can forward all assessment results to an ELK stack of their choosing. This can be configured in the SUPERADMIN's Settings Page.
[On-Prem Only] The SUPERADMIN of on-prem deployments can now update the CVE signature database in the Settings Page.
[On-Prem Only] The SUPERADMIN of on-prem deployments can now update the Malware signature database in the Settings Page.

What's Updated:

The CVE detection assessment has been frontloaded. It will be executed before other assessment types.
Users can now change their password from the Settings Page.
On-Prem users can now apply their deployment license from the Settings Page.

Feature details

New Feature: Assessment Result Forwarding to ELK Stack

With the addition of the Results Forwarding to ELK Stack feature, the user may now set the location (IP and port) for their analysis assessment results to be easily forwarded. The ELK Stack forwarding feature makes processing and storing results much more accessible and gives the user flexibility to search through and process results with more granularity. Since ELK Stack provides a unique Kibana query system, the user can sort results in a way that is not limited to what the front-end GUI provides.

This feature can be accessed by the SUPERADMIN and configured within the settings page. There are three supported protocols: UDP, TCP, and HTTP. Instructions for configuring each of these can be found here.

New Feature: [On-Prem Only] CVE Signature Database Update Ability

With the addition of the CVE Signature Database Update feature, On-Prem users may now pull updates from the NVD CVE Signature Database to update the range of mapping possibilities for their CVE analysis mapping results. This feature is for On-Prem offline users who want to stay on top of the newest CVE published daily. Since On-Prem deployments have no connectivity to the internet, users with On-Prem deployments must use this feature to update their master CVE mapping database.

New Feature: [On-Prem Only] Malware Signature Database Update Ability

With the addition of the Malware Signature Database Update feature, On-Prem users may now pull updates to the Malware Signature Database. This feature is for On-Prem offline users who want to stay on top of the newest Malware published daily. Since On-Prem deployments have no connectivity to the internet, users with On-Prem deployments must use this feature to update their Malware mapping database.

Updated Feature: CVE Detection Assessment Frontloading

With this update to the assessment order, the CVE assessment is completed before other assessments. This re-ordering was done to take advantage of the fast analysis time produced by the CVE assessment and to show users the most critical information first.

Updated Feature: Password Update From Settings Page

With this update, users can now update their password from the settings page without the assistance of the SUPERADMIN.

Updated Feature: License Applying From Settings Page

With this update, the SUPERADMIN can now apply for the platform license from the settings page- making the initial setup much more accessible.