June 2021
| Feature | Description |
|
KDI Mac Address Validation Changes |
We have removed format validations and added a 30-character maximum length validation to the Mac Address field in the KDI. The benefits of these changes are:
|
| Search by 'role name' in User Settings UI |
Customers can search by Key Points
|
| Handling of older assets not recently seen during Kenna Connector Runs | Assets which are outside of the set retention and purge periods will not be imported during connector runs. You can read more about this in our updated Asset Purge Period Setting article. |
|
VI+ Updates |
1. Now customers can search for CVEs by Qualys KB Id (QID) to find all associated CVEs.
2. We added a link to the specific source of a given exploit to the "Show Vulnerability Definition" response. |
| Prisma Cloud Connector Updates |
1. ALAS Findings Prisma Cloud Connector ALAS (Amazon Linux Advisory Services) findings were previously being presented in Kenna as informationals and the associated CVEs were not being scored. There can be a 1:1 relationship with CVE or a 1:Many relationship with a CVE, similar to QIDs. We now present the proper scoring for the CVEs associated with the ALAS finding. Please note that the Prisma Cloud scanner does not identify which specific CVE is or is not present on the asset, therefore we show all the associated CVEs. 2. Prisma Informationals We added support for Prisma ID Security warnings to the Prisma Cloud Connector so that Kenna brings these in as informationals. Many vulnerabilities are publicly discussed or patched without a CVE ever being assigned to them. While monitoring open source vulnerabilities, the PAN team identifies vulnerabilities you need to be aware of, and assigns PRISMA IDs to them whenever applicable.
|
May 2021
| Feature | Description |
|
Kenna VI+ API Changes:
|
Popular Malware exploitable CVEs were collecting large numbers of malware hashes which could create very large responses when querying the "Show Vulnerability Definitions" API endpoint and sometimes caused 504s. For all CVEs, we removed malware hashes and replaced them with a malware count field in the response to that endpoint. A new "Show Malware Hashes" endpoint was created where you can query those CVEs to get the hashes. |
|
Home Page Changes
|
All widgets on the Home Page now reflect full customer data regardless of role. This change will not affect System Roles of Admin, Normal, and Read Only. Data made unavailable to a Custom Role will be greyed-out and the user will not have access to click. For example, on the "Today's Risk Meter Scatter Plot" Custom Roles can click on "Not Accessible" to see unaccessible risk meters represented as grey dots. Admins have the ability to enable/disable home page access for any custom access role. A new endpoint was created to Bulk Update Permissions for custom user roles. Further details are available on the Kenna Home Page article. |
|
New Asset Purge Period Setting |
A new feature is available which will automatically purge inactive assets according to a timeframe selected by the customer administrator. Currently the feature is available to all customers in test and production instances. Customers are required to choose a retention period by July 1st, 2021. If a retention period has not been chosen by July 1st, Kenna Security will default to the following settings:
Further details are available on the Asset Purge Period article. |
| Improved Connector Error Messaging 2.0
|
Following last month's release, error messages continue to be improved as an ongoing effort to build a database of potential errors and corresponding comprehensive error messages to display to the customer. Two specific areas have been improved:
|
| Client Setting to Increase the Asset Export Limit in the UI |
There is a new client setting called “Async Asset Export” that can be enabled in client environments. When enabled, this setting will increase the UI asset export limit to 500k (from 100k) by changing the export to process in the background and send the user an email to download the file as a GZIP (this is similar to the process for Vulnerability and Fix exports from the UI). This setting is turned off by default. When it is not enabled the UI, asset exports in the client's environment will continue to have the 100k limit and download directly in the browser as a CSV. |
| Added Image ID and Container ID to KDI |
For a customer who wishes to use the KDI for a container scanner that doesn't have a connector yet, we added container and image locators in order to map the ingested data for image or container assets. |
April 2021
| Feature | Description |
|
Risk Meters: Dashboard Views and Faster Risk Meter Creation |
Improved Risk Meter Drop down for Dashboard Views Users now see enriched information in the Risk Meter drop down when creating and modifying Dashboard Views.
It is also possible to add the child Risk Meters to Dashboard Views without adding parent Risk Meters.
Optimized Risk Meter Creation Risk Meter creation speeds markedly improved in both the UI and API. |
|
Connectors: Improved Error Messaging |
Improved Connector Run Error Messages Users now see more comprehensive error messages designed to reduce frustration, improve resolution time, and enable self-resolution of issues in as many instances as possible without the need to contact support. From the Connectors page or Home page, you see detailed messages that identify the application that is posting the error and alert the user to the specific problem. The message also provides clear solution steps and/or exit points. Note: The error message indicates if/when users should reach out to support after following the suggested troubleshooting steps. |
|
Bug Fixes: Unassigned Roles Deletion and Search Queries Streamlined |
Deleting Unassigned Role Unassigned roles that returned an error message when attempting to delete can now be deleted. Search Queries Some search query results were impacted by the order of the query, which returned inconsistent results. Users will now find search queries return the same results regardless of the order of the query. |
March 2021
| Feature | Description |
|
Risk Meters: User Role Creation |
Improved Risk Meter Drop down for User Role Creation Improved the Risk Meter drop down menu for creating or editing User Roles. Now you can use type-ahead in the Search bar.
You can click the arrow to expand child hierarchy.
|
|
Exports: Enhancement |
Export Vulnerabilities with Full Solutions from the UI You can now see a column for 'Short Solution' and a column for 'Solution', which has the full scanner solution.
Vulnerability Exports Limit Increase to 500K with Details from the U For the existing vulnerability export with details, an increase in the limit from 100k to 500k vulnerabilities with details was implemented.
Important: These export features must be turned on by request by your customer success team. If you do not engage regularly with a CSM or a CSE, please contact support if you want these turned on. |
|
Connectors: Prisma Cloud Compute Edition (PCCE) |
Search By Image Ability to search by asset identifier for images ingested from the Prisma Cloud Connector and the containers that are running them.
|
|
UI: Changes to Alternate Fix Button Location and Vuln CSV Export Column |
Alternate Fix Button Location Users do not need to scroll down the page to see the Alternate Fixes Available button in Explore.
Vuln CSV Export Column The previously named 'Solution' column has been renamed to 'Short Solution' to better describe the content. The column named 'Solution' now reflects the full scanner solution. Note: If you are using a script that references these column, please take note and make sure you are pulling the data you intend. |
February 2021
| Feature | Description |
|
VM Explore: Search Result |
Search result speed improvement in Risk Meter when using the All Groups drop-down in the top left of the VM Explore page.
|
|
API: Enhancement |
Remote code execution (RCE) added to the Kenna.VM and Kenna.VI+ client-facing API. In addition, Kenna.VI+ API has popular targets added to it.
|
|
Connectors: Prisma Cloud Compute Edition (PCCE) |
Scheduled Scans Scheduled Scan functionality has been added to PCCE connector. Registry/Repo Information Ability to present Registry and Repo Tag information for each of the scanned images. It prepends the word registry or repo to the tag for easier identification as seen in the image below:
|
|
UI: Pop-ups Fix |
Previously, when you reached the bottom and continue scrolling, the content of the pop up did NOT scroll and got cut off. Now, after reaching the bottom of the dropdown you can continue scrolling.
|
January 2021
| Feature | Description |
|
Hierarchical Risk Meters: Exports |
Note: Exporting children from the API is not a part of this release, but will be a part of the work to support HRM in the API.
|
|
Audit Logs: GCP |
The Audit Logs feature in GCP has the same functionality as Audit Logs in AWS and allows clients to pull down data regarding user-initiated events that happen in the client’s instance of the Kenna application and the Kenna API. It also allows clients visibility into user behavior in their Kenna instance so they can be responsive to any breaches and/or nefarious behavior. For more information on Audit Logs or how to configure this feature, please refer to the below information: |
|
Containers: Search Capability |
Ability to search by container ID for clients using Prisma Cloud Compute Connector.
|
__________________________________________________
For past release notes, please refer to this archived page.
Comments
Article is closed for comments.