Kubernetes WAAP Version 1.16.0
This version includes the following modifications:
Actor Analysis – AllOf
The Actor Analysis – AllOf feature is designed to enable you with enhanced configurability for actors. With this new functionality, you can configure actors based on a specified list, and thus ensure that all actors in the list are present in the request for the configuration to be valid. As such, it allows greater flexibility and control over actor configurations, and leads to improved accuracy in identifying and managing bad actors.
Usage Example — You can now define an actor by specifying 2 headers, such as a token and username.
This fine-grained control allows for more precise actor configuration and ultimately strengthens the overall effectiveness of actor analysis.
Configurable Security Response
In this release, we have improved the response mechanism on the Security page, specifically focusing on the handling of content types. The system now accurately analyzes the content type of HTTP requests to allow the detection of expected response types based on the received content.
The supported response types are:
type = JSONtype = XMLtype = TEXTtype = GRPCtype = HTML (default)Multi-Enforcers Upgrading
The Multi-Enforcers Upgrading capability is specifically crafted to facilitate seamless upgrade of extensive KWAAP Enforcers deployments.
Some key points of this functionality:
This feature proves invaluable when KWAAP Enforcers are distributed across multiple K8s clusters and thus making it challenging to perform a simultaneous upgrade.In scenarios where upgrading all Enforcers at once may not be feasible and could span over a few days, this feature ensures a smooth transition.During this transitional period, the newer version of Enforcers functions as the previous Enforcer version. The pre-existing KWAAP backend manages both the previous and newer Enforcers until the entire upgrade process concludes.After the upgrade is complete, the new backend is installed, and all the new Enforcers seamlessly switch to operate as the new version without requiring a restart. This enhancement streamlines the upgrade process, providing a trouble-free experience for users managing large-scale deployments.
Custom Filter in Security Events
The Custom Filter in Security Events enhances the ability to precisely manage Security Events. This feature allows the creation of complex filters using both the AND and OR operators. You can craft highly nuanced filters tailored to your specific security needs, and ensures accurate and focused results. With the Custom Filter feature, you can elevate your security strategy, and enable a more granular analysis and response to potential threats within your web application environment.
Apigee Gateway Integration
Incorporating Apigee Gateway into our product is a significant advancement. It broadens KWAAP compatibility, strengthens security, and ensures smooth integration within the API landscape. It enables KWAAP to extensively protect API traffic in a variety of environments.
GUI Modifications
In this version, we introduce the following GUI look and feel improvements to optimize the user experience:
Decoding Behavior refactoringCustom Rules refactoringSource groups refactoringNew login page