Source Defense Announcements  announcements

http://admin.sourcedefense.com

Update to the Security Policies & New Integration Methods

Source Defense is happy to release an updated administration admin version which includes security policy enhancements, logic changes, and adjustments, support for the latest SSO standards, an updated API, and various bug fixes and improvements.

Security policies enhancements 

Keylogging 

While keylogging prevention by 3rd parties is important, we understand that there might be a need to allow a 3rd party access to keystrokes events. This release introduces control over the Keylogging behavior of the Source Defense security platform, allowing to choose per policy level whether or not to "listen" to keystrokes, receive only redacted data (*) or full data.

The default setting for this feature will be redaction, this will allow a 3rd party to know a key was pressed, but will always report "*" as the key pressed.

New security policy - "Low"

Following feedback received from users, we decided that some of the logic under the "Vendors and Scripts" area might create confusion and therefore should be adjusted.

The update introduces the new "Security policy" field which replaces the combination of "Security level" and "Action" which might have caused confusion.

The action formally called "Run directly on browser" will now run under the new security policy - "Low". The "Low" policy will allow the script on the page while managing any 4th party introduced by it.
This policy will mainly be used for analytics platforms, and page manipulation scripts such as page optimization and form autocomplete services.

SAML 2.0 support

We are happy to announce SAML 2.0 is now supported for SSO integration in an easy and streamline way following by an easy, step by step guide.

API 2.0

A new and comprehensive API is now available, allowing queries for all data available in the administration dashboard including policy violation data, and new policy recommendations pending approval.

Audit log

The audit log section was updated and will now include a clear display of changes, highlighting new VS old values, making it cleared and simpler to understand.


For any questions or manuals required, please contact Source Defense support at support@sourcedefense.com or contact your Source defense account manager.