What's New
Version 22.8R2
|
Product Version |
Build |
|---|---|
|
ICS 22.8R2 |
14015 |
| ISAC 22.8R2 | 33497 |
| Default ESAP | 4.3.8 |
•Secure Boot with TPM/vTPM: The Secure Boot feature offers protection against unauthorized bootloader and kernel images, malware, and rootkits, and ensures compliance with security by design principle while improving boot time. For more information, see Secure Boot with TPM/vTPM.
•Rotate Internal Storage Key: This process encrypts sensitive information like passwords when storing them internally and ensures the encryption key is unique and random for every ICS instance, see Rotate Internal Storage Key.
•Security Enhanced WAF Operation: This feature web applications by filtering and monitoring HTTP traffic, preventing attacks such as SQL injection, cross-site scripting (XSS), and other web exploits, see Configuring Web Application Firewall UI and Security Enhanced WAF Operation console.
•Shared Secret key: This feature configures a Shared Secret for each source/target pair at time of creation of Push Config Target, see Configuring Targets.
•Password key Generation: New API's introduced to generate and fetch the password key, see APIs.
•Next Generation Web server: The Next Generation Web Server has been developed to enhance the performance and scalability of web server infrastructure, see Next Generation Web Server. Web server logs are implemented for web-related event codes with debug severity, see Using the Debug Log.
•SELinux Security Policy: The ICS system provides an Enforcing only SELinux capability, ensuring that even the root user or admin cannot switch SELinux to permissive mode without rebooting the system, See SELinux Security Policy.
•Verbose Log: Administrators can toggle SELinux verbose logging to control the detail level of SELinux-related logs, see SELinux Verbose Log.