As the digital attack surface continues to evolve, it’s crucial to stay ahead of the curve in terms of cybersecurity. That’s why we are excited to share with you the advancements we’ve made to our platform to better protect our customers from cyber threats. In this blog series, we will continuously highlight the newest features and updates that make the smarterSec Security Platform even more powerful for safeguarding your digital assets. From enhanced threat detection to improved user experience, our improvements will help our customers to stay one step ahead of potential security breaches. Whether you’re a current user or just interested in learning more about smarterSec, this blog series is for you. Your feedback is more than welcome. So, join us as we take a closer look at the latest innovations for the smarterSec Security Platform.
If you want to dive deeper into the functionalities of the smarterSec Security Platform, you can find more information here: smarterSec Security Platform
New features & improvements
Main features
General Support for SSH-based Targets
We have added broad support to connect to any OS via SSH and automatically perform the necessary security checks. This feature can be leveraged for all types of hardening on the operating system level. For example, SAProuter writes a log in its root directory about the options it was started with. In order to check the overall security of the SAProuter, you would have to constantly access this log and check the options. For such cases, we have added support to connect to the OS via SSH and automatically perform the necessary security checks.
Recommended schedule per Testcase
Each Testcase now comes with a recommended schedule, allowing you to create smaller, more manageable scans. With these customized schedules, you can prioritize critical Testcases and ensure timely issue detection.
Enhanced email alerting
As a user, I always want to know the security status of my systems. While it was always possible to receive Delta Notifications in regular periods, several additional configuration options were made available.
You can now enable alert notifications by adding new configurations for the corresponding time periods below.
- You can limit notifications to specific environment types, Testcase severities, or Testcases.
- Notifications without Testcase assignments automatically include all available Testcases.
Content
SAProuter
The standardization to support any SSH-based targets helped us to create additional new Testcases for SAProuter. Checking this target during the runtime is very important to identify insecure start conditions that are not compliant to commonly known standards. One example is the route permission table that must be checked to identify permissive statements and to allow secure communication to the connected systems.
SAP Cloud Connector
For the SAP Cloud Connector we added two new Testcases in the area of patch management.
SAP Business Technology Platform (BTP)
Several Testcases were added and improved for the SAP BTP across different categories: Authorization Checks, Logging, Critical Services, Communication, Brute force Detection, and Critical Configuration Changes.
SAP NetWeaver AS ABAP
For this target type multiple new Testcases were added to identify users with critical authorizations. Furthermore, several improvements across these categories: ACL Files, Patch Management, Network Protocols, and ICF-Services were implemented.
We will update you on our new platform features regularly here in this blog – stay tuned and give us a follow on LinkedIn to not miss any further updates!
Related topics: Managed Security Service for the smarterSec Security Platform // smarterSec Security Platform