Release Notes
Deployment - July 15, 2019 |
Azure Redis cache performance improvements - 11:50 UTCType:Improvement Description: Minor changes to improve scaling performance. Known limitations: N/A Affected Components: Data Fetchers Azure |
Deployment - July 14, 2019 |
Enhancing compliance engine mechanism - 11:50 UTCType:Improvement Description: Redesigned the compliance engine, in order to improve its auto scaling and performance. Known limitations: N/A Affected Components: Continuous compliance Compliance engine
|
Deployment - July 11, 2019 |
Fixing wrong documentation links - 12:15 UTCType:Bug fix Description: Replaced some of our documentation links that were redirected to the old documentation system. Known limitations: N/A Affected Components: Dome9 Documentation ----------------------------------------------------------------------------- Compliance playground toggle change - 12:15 UTCType: Compliance Playground UI ----------------------------------------------------------------------------- Fixing links to entities from open findings - 12:15 UTCType: Protected Assets Findings page ----------------------------------------------------------------------------- Policies page empty policies view fix - 12:15 UTCType: Compliance policies page ----------------------------------------------------------------------------- Dynamic Access terminate leases fix - 12:15 UTCType: Network Security Service - Access Lease ----------------------------------------------------------------------------- Continuous Compliance Report - large CSV report fix - 13:05 UTCType: Compliance Reports |
Deployment - July 10, 2019 |
New IAM Safety pages and features - 11:10 UTCType:New Feature Description: Changed the performance and look and feel for IAM Safety "Accounts and IAM Users" and "my IAM Safety settings". Added Many IAM entities to Many Dome9 users, meaning single dome9 user or more can enable many IAM entities. Known limitations: Apple and Android Mobile app does not support those features yet. Affected Components: Dome9 IAM Safety Dome9 IAM Safety Configuration ----------------------------------------------------------------------------- Users page - adding action and new information - 11:10 UTCType: User Management ----------------------------------------------------------------------------- Single Sign On Failure page - Added more information - 12:10 UTCType: Dome9 SSO login Dome9 User login |
Deployment - July 9, 2019 |
Added Single Sign On failure page - 08:45 UTCType: ImprovementDescription: Added a new page for showing single sign on login failures for debugging purposes. Known limitations: N/A Affected Components : Dome9 SSO login Dome9 User login
----------------------------------------------------------------------------- Fixed Edit rule modal - 16:40 UTCType: Bug Fix Rulesets and compliance rules ----------------------------------------------------------------------------- New properties on assessments results JSON - 16:40 UTC Type: Improvement GSL engine
|
Deployment - July 4, 2019 |
My Settings
Compliance and governance
|
Deployment - July 3, 2019 |
BUG FIXES
|
Deployment - July 1, 2019 |
Cloud Inventory
Compliance and governance
BUG FIXES
|
Deployment - June 27, 2019 |
Cross system
BUG FIXES
|
Deployment - June 26, 2019 |
Compliance and governance:
Cloud Inventory
|
Deployment - June 20, 2019 |
Compliance and governance:
|
Deployment - June 19, 2019 |
Compliance and governance:
BUG FIXES
|
Deployment - June 18, 2019 |
Compliance and governance:
|
Deployment - June 12, 2019 |
Compliance and governance:
BUG FIXES DFT-428 - Not able to add exclusion due to special characters. |
Deployment - June 10, 2019 |
Compliance and governance:
BUG FIXES DFT-527 - IP Lists - Fixed issue with adding IP's. |
Deployment - June 4, 2019 |
Compliance and governance:
|
Deployment - June 2, 2019 |
Compliance and governance:
|
Deployment - May 23, 2019 |
Compliance and governance:
BUG FIXES DFT-497 - Remediation URL fixes for Azure Port Based Rules |
Deployment - May 16, 2019 |
|
Deployment - May 5, 2019 |
Cross system
Cloud Inventory
Network Security
Compliance and governance:
BUG FIXES DFT-364 - Fixed view SSO settings for Auditors. |
Deployment - May 2, 2019 |
Compliance and governance:
BUG FIXES DOME-11383 - AWS Onboarding - Fixed External ID generator. |
Deployment - May 1, 2019 |
Across system
Compliance and governance:
BUG FIXES DFT-491 - Assessment API usage- improved errors handling. |
Deployment - April 30, 2019 |
Compliance and governance:
|
Deployment - April 23, 2019 |
Administration:
|
Deployment - April 15, 2019 |
Cloud Inventory:
BUG FIXES DOME-11097 - Assessment history - results page filters fix. |
Deployment - April 9, 2019 |
BUG FIXES DFT-468 - Policies page - Attach policies - improved performance. |
Deployment - April 3, 2019 |
Compliance and governance:
|
Deployment - April 1, 2019 |
Compliance and governance:
|
Deployment - March 28, 2019 |
Cloud accounts:
|
Deployment - March 26, 2019 |
BUG FIXES DFT-464 - Security hub support on Oregon region fix. |
Deployment - March 24, 2019 |
Compliance and governance:
|
Deployment - March 19, 2019 |
Cloud accounts:
BUG FIXESDFT-348 - Security groups not being pulled into an onboarded Dome9 account |
Deployment - March 17, 2019 |
Compliance and governance:
|
Deployment - March 14, 2019 |
Compliance and governance:
BUG FIXESDFT-316 - Compliance NACL fix for Destination ports. |
Deployment - March 7, 2019 |
Compliance and governance:
Compliance Updates: New Bundles:
New Rules:
|
Deployment - March 3, 2019 |
Compliance and governance:
Examples:
|
Deployment - February 27, 2019 |
Compliance and governance:
|
Deployment - February 18, 2019 |
Compliance and governance:
|
Deployment - February 17, 2019 |
Compliance and governance:
User menu:
|
Deployment - February 14, 2019 |
Cloud inventory - Add GCP cloud account:
Compliance dashboard:
BUG FIXESDFT-434 - Detaching policy in continuous compliance. |
Deployment - January 29, 2019 |
Administration - Account settings:
My settings - Email notifications:
BUG FIXESDFT-350 - Invalid credentials emails being sent even if all options are disabled. |
Deployment - January 14, 2019 |
Compliance and governance: PREVIEW
Cross system:
BUG FIXESDFT-406 - Fixed KeyVault diagnosticSettings object handling. |
Deployment - January 10, 2019 |
Cross system:
BUG FIXESDFT-414 - Exclusions not appearing due to deleted rule. DFT-383 - Improved big compliance assessment runs handling
|
Deployment - December 16, 2018 |
BUG FIXESDFT-394 - GSL fix - Use secure ciphers in CloudFront distribution Rule ID: D9.AWS.CRY.16 DFT-396 - D9.GCP.NET.AG5.VMInstance.22.TCP- Correct description and Remediation DFT-408 - Dynamo DB -Remove the rule D9.AWS.CRY.18 due to Default encryption settings DFT-412 - Remove the rules D9.AZU.CRY.07 and D9.AZU.CRY.08 Click here for more details |
Deployment - December 10, 2018 |
Compliance and governance:
BUG FIXES
|
Deployment - December 5, 2018 |
Protected Assets:
Email notifications:
|
Deployment - November 25, 2018 |
Compliance and governance:
Compliance Updates: New Bundles:
New Rules:
November 25, 2018 Rules Changes - click here BUG FIXES
|
Deployment - November 23, 2018 |
Compliance and governance: PREVIEW
|
Deployment - November 18, 2018 |
Compliance and governance: PREVIEW
BUG FIXES Compliance:
|
Deployment - November 14, 2018 |
Cross system:
Compliance and governance:
BUG FIXES Compliance rule builder:
|
Deployment - November 13, 2018 |
Compliance and governance:
|
Deployment - November 8, 2018 |
Administration
|
Deployment - November 5, 2018 |
Compliance and governance:
BUG FIXESSystem Dashboard:
Compliance report:
|
Deployment - November 1, 2018 |
Compliance and governance: PREVIEW
|
Deployment - October 29, 2018 |
BUG FIXESProtected Assets:
|
Deployment - October 23, 2018 |
Administration:
|
Deployment - October 11, 2018 |
Compliance and governance:
Administration:
|
Deployment - October 10, 2018 |
Cloud Accounts
|
Deployment - October 8, 2018 |
Administration
|
Deployment - October 4, 2018 |
PREVIEW to GA
|
Deployment - September 27, 2018 |
Compliance Updates: New Bundles:
New Rules:
September 27, 2018 Rules Changes - click here
BUG FIXESCompliance engine:
Compliance rules:
|
Deployment - September 17, 2018 |
BUG FIXES
|
Deployment - September 16, 2018 |
BUG FIXES
|
Deployment - September 06, 2018 |
BUG FIXES
|
Deployment - September 04, 2018 |
Compliance Updates:New Rules:
Deleted Rules:
Changes To Existing Rules - Click Here BUG FIXES
For more information please click here |
Deployment - August 22, 2018 |
Compliance and governance:
|
Deployment - August 22, 2018 |
BUG FIXES
|
Deployment - August 20, 2018 |
BUG FIXES
|
Deployment - August 16, 2018 |
Example:
|
Deployment - August 15, 2018 |
PREVIEW
Example:
|
Deployment - August 05, 2018 |
Compliance Updates:New Bundles:
New Rules:
Rules Changes: BUG FIXES
Additional Rule Changes including Wording Changes - Updated Rule Names, Description and Remediation Fields, Compliance Sections Updates. For more information please click here |
Deployment - July 12, 2018 |
PREVIEW
Example:
|
Deployment - July 02, 2018 |
Compliance engine:New Rules:
Rules Updated:
Bundle Titles and Descriptions update:
For more information please click here |
Deployment - June 18, 2018 |
Compliance Bundles changeWe have expanded and updated our compliance bundles! Updated some existing rules / bundles mappings including the following bug Fixes
BUG FIXES
|
Deployment - June 14, 2018 |
PREVIEW
FEATURES/FUNCTIONALITY
BUG FIXES
|
Deployment - June 11, 2018 |
PREVIEW
CROSS SYSTEM
BUG FIXES
|
Deployment - June 6, 2018 |
FEATURES/FUNCTIONALITY
BUG FIXES
|
Deployment - May 31, 2018 |
PREVIEW
BUG FIXES
|
Deployment - May 30, 2018 |
FEATURES/FUNCTIONALITY
BUG FIXES
|
Deployment - May 28, 2018 |
Compliance Bundles changeWe have expanded and updated our compliance bundles! As security threats continue to evolve, we want to ensure that you are adhering to up-to-date compliance requirements and security best practices in the public cloud. We have made the following enhancements to our compliance module. 1. Added 5 new bundles for additional GCP and Azure coverage:
2. Added new rules to include additional security guidelines
Additional Client Impact:
New Findings in Continuous Compliance Scheduled Reports New Findings being sent to SIEM system Compliance score changes
BUG FIXES
|
Deployment - May 23, 2018 |
BUG FIXES
|
Deployment - May 16, 2018 |
FEATURES/FUNCTIONALITY
BUG FIXES
|
Deployment - May 15, 2018 |
PREVIEW
FEATURES/FUNCTIONALITY
Examples:
BUG FIXES
|
Deployment - May 14, 2018 |
PREVIEW
|
Deployment - May 9, 2018 |
BUG FIXES
|
Deployment - May 8, 2018 |
PREVIEW
BUG FIXES
|
Deployment - May 7, 2018 |
FEATURES/FUNCTIONALITY
|
Deployment - May 3, 2018 |
FEATURES/FUNCTIONALITY
|
Deployment - May 2, 2018 |
FEATURES/FUNCTIONALITY
|
Deployment - May 1, 2018 |
PREVIEW
Examples: DynamoDbTable should have encrypted=true DynamoDB table size: DynamoDbTable should have tableSizeBytes<100 DynamoDB number of items: DynamoDbTable should have itemCount<100 FEATURES/FUNCTIONALITY
|
Deployment - April 26, 2018 |
FEATURES/FUNCTIONALITY
|
Deployment - April 26, 2018 |
FEATURES/FUNCTIONALITY
BUG FIXES
|
Deployment - April 24, 2018 |
FEATURES/FUNCTIONALITYCompliance Bundles change Dome9 now has new and improved compliance bundles! Compliance Engine bundle management will be based on the unified mapping of the Dome9 compliance checks to various security and compliance frameworks. Additional Client Impact: New Findings in Continuous Compliance Scheduled Reports New Findings being sent to SIEM system [Details]
BUG FIXES
|
Deployment - April 12, 2018 |
PREVIEW
Examples: Encryption key is enabled rule: StorageAccount should have encryption.key.enabled=true Check that StorageAccount uses only https traffic: StorageAccount should have httpsOnlyTraffic=true |
Deployment - April 8, 2018 |
PREVIEW
Examples: Route53Domain should not have expirationTime before(-1, 'minutes') Route53Domain should not have autoRenew=false Route53Domain should not have expirationTime before(7, 'days')
BUG FIXES
|
Deployment - March 27, 2018 |
PREVIEW
FEATURES/FUNCTIONALITY
|
Deployment - March 25, 2018 |
PREVIEW
|
Deployment - March 19, 2018 |
PREVIEW
Examples: AcmCertificate should not have notAfter before(-1, 'minutes') ApplicationLoadBalancershould not havelisteners with [ certificates with [ expiration before(-1, 'minutes') ] ] ELBshould not haveelbListeners with [ certificate.expiration before(-1, 'minutes') ] FEATURES/FUNCTIONALITY
BUG FIXES
|
Deployment - March 15, 2018 |
PREVIEW
Examples: Route53HostedZone should not have recordSets contain-any [ records contain-any [ assetMetadata.type='S3Bucket' and assetMetadata.exists=false] ] Route53HostedZone should not have recordSets contain-any [ records contain-any [ assetMetadata.type='CloudFront' and assetMetadata.exists=false] ] Route53HostedZone should not have recordSets contain-any [ records contain-any [ assetMetadata.type='CloudFront' and assetMetadata.active=false] ] |
Deployment - March 11, 2018 |
PREVIEW
Examples: IamServerCertificate should not have expiration before(0, 'minutes') ELB should not have elbListeners with [ certificate.iamServerCertificate.expiration before(1, 'months') ] ApplicationLoadBalancer should not have listeners with [ certificates with [ iamServerCertificate.expiration before(0, 'minutes') ] ] |
Deployment - March 8, 2018 |
FEATURES/FUNCTIONALITY
|
Deployment - March 7, 2018 |
PREVIEW
Examples: ELB should not have elbListeners with [ policies with [ attributes contain-any [$ in ( 'ECDHE-RSA-RC4-SHA', 'EXP-RC4-MD5') ] ] ] ApplicationLoadBalancer should have attributes contain-any [ key='access_logs.s3.enabled' and value='true' ] |
Deployment - March 6, 2018 |
FEATURES/FUNCTIONALITY
BUG FIXES
|
Deployment - March 5, 2018 |
PREVIEW
FEATURES/FUNCTIONALITY
|
Deployment - March 1, 2018 |
FEATURES/FUNCTIONALITY
BUG FIXES
|