New Features Recap: Aperture, PAN-DB 2.0, WildFire 2.0.10 and Traps
Read through the new features for Prisma SaaS (formerly Aperture), PAN-DB 2.0, WildFire 2.0.10 and upcoming features for Traps Management Service in Palo Alto Networks LIVEcommunity.
With so much that happened during the holidays at the end of 2018 and as we settle in to 2019, I want to take a moment to recap some of the new features that came out in December such as Aperture Release 40, PAN-DB 2.0 and WildFire 2.0.10. I would also like to cover the new features for Traps Management Service coming this month.
NOTE: Aperture has changed to Prisma SaaS.
The new release feature for Aperture release 40 includes Azure Active Directory Integration for Group-Based Scanning. This new feature allows you to connect Aperture directly to your Directory Services. It also allows you to adhere to data privacy regulations or exclude scanning confidential assets for a specific user group.
Risk Categories: High, Medium, and Low: Category risk assessment will provide customers with another match criteria aspect derived from our threat intelligence so that they may create more granular security policy decisions to further decrease exposure to threats.
Newly Registered Domains: A new category adds “recently registered domains” as a category for domains registered within the last 32 days. This new category provides another match criteria for further granular security policy decisions to further decrease exposure to threats.
Today, the PAN-DB categorization engine produces a single category for each URL, and the URL filtering security profiles in PAN-OS act upon a single category per URL during policy look-up. This feature adds support for multiple category labels for a given URL, but it also allows customers to make more fine-grained policy decisions by creating custom URL categories in form of category filters combining these labels.
The goal of PAN-DB 2.0 Cloud Data Store design is to achieve:
New/Enhanced Features Introduced in Wildfire 2.0.10:
Script Sample Analysis: The WildFire Public Cloud can now analyze and classify script files with verdicts using static and dynamic analysis. Note: To use this feature, you must download and install the PAN-OS Applications and Threats content release package that is slated for release on 12/6/2018. For more information on this feature, please see the following article: WildFire Script Support
Elf Malware Test File: Palo Alto Networks now provides an ELF sample malware file to test your WildFire deployment. The new file can be downloaded using a direct download link using your browser or through the WildFire API.
The Traps Management Service updates for January include dynamic Endpoint group support and Package visibility.
Dynamic Endpoint Group Support for Operating Systems You can now define membership for a dynamic Endpoint group based on the specific Endpoint type (workstation, server, or mobile) or operating system version (for example, SUSE Linux 12.1).
Installation Package Visibility You can now hide installation packages that are less critical or no longer relevant on the Agent Installations page. This option provides an alternative to permanently deleting an installation package.