As the digital attack surface continues to evolve, it’s crucial to stay ahead of the curve in terms of cybersecurity. That’s why we are excited to share with you the advancements we’ve made to our platform to better protect our customers from cyber threats. In this blog series, we will continuously highlight the newest features and updates that make the smarterSec Security Platform even more powerful for safeguarding your digital assets. From enhanced threat detection to improved user experience, our improvements will help our customers to stay one step ahead of potential security breaches. Whether you’re a current user or just interested in learning more about smarterSec, this blog series is for you. Your feedback is more than welcome. So, join us as we take a closer look at the latest innovations for the smarterSec Security Platform.
If you want to dive deeper into the functionalities of the smarterSec Security Platform, you can find more information here: smarterSec Security Platform
New features & improvements
Main features
New Role Availability – Notifications for Target Administrators
Target Administrators will receive email alerts when new technical scanning roles are available.
An example is shown below.
Internal feature – Distribute a permission matrix to customers
This internal feature enables the distribution of a permission matrix (authorizations per role) to customers. It provides detailed insight into the current role setup and allows us to tailor roles based on your individual requirements.
Improvements & Fixes
- Restrict Testcases by SAP HANA Build Version
-Testcases can now be limited to specific SAP HANA build versions. - Unified SAP HANA Target Configuration
-Targets no longer need to be separated per database. System databases and their tenants can now be grouped together. - Enhanced Scanning Normalization
-Improved normalization enables more accurate and performant checks (e.g., profile parameters). - Extended Access to SuccessFactors Roles and out of maintenance ABAP Data
-Testcases can now easily access SAP SuccessFactors user roles and identify SAP ABAP components that are out of maintenance. - Direct Testcase Search in Assessment Cockpit
-Testcases can now be searched explicitly using TC-{id} patterns. - Improved CSRF Token Error Handling
-Missing or incorrect CSRF token messages are now displayed correctly. - Client-Specific Data in Audit Presentation Export
-A client-specific column has been added to the Testcase overview at the beginning of the .pptx export. - Fix – RFC Library Extraction Issue
-Fixed a bug in the RFC library that could abort workload analysis extractions. - Fix – Dashboard Chart Inconsistency
-Fixed a rare issue where client-specific findings were incorrectly counted in dashboard charts. - Fix – Scenario Selection Performance
-Fixed long loading times when selecting scenarios. - Fix – SAP ABAP Timezone Calculation
-Fixed issues with timezone and daylight saving time calculations.
Content
As always, we have updated all Testcases to check for the latest releases of components, kernels, and security patches for all available target types.
- Improved logic for profile parameter checks and documentation formatting
- Improved Testcase references
- The following Testcases were switched to a log-based approach rather than extracting intersecting timeframes:
-[TC-222]: Assignment of critical authorization profiles
-[TC-223]: Assignment of critical authorization roles
-[TC-227]: Security policy change documents
We will update you on our new platform features regularly here in this blog – stay tuned and give us a follow on LinkedIn to not miss any further updates!
Related topics: Managed Security Service for the smarterSec Security Platform // smarterSec Security Platform