Features
- [DRA-612] - Groups and Business Units permissions update
- [DRA-844] - Change method of loading icons json files on drawio-core
- [DRA-866] - Add support to HATEOAS on iriusrisk-core
- [DRA-900] - Associate icons to the new AWS components
- [DRA-901] - Associate icon for the new Azure component
- [DRA-903] - Associate icon to the new FTP server component
- [DRA-905] - Associate icons to the new Network and Generic components
- [INR-524] - Replace the logic for exporting countermeasures to call the new reporting module
- [INR-536] - Get project cards widget Open API definition
- [INR-559] - Add environment variable in the report URL check
- [RT-244] - Improve audit entries when deleting countermeasures
- [RT-807] - See unrounded score values of risks
- [MSR-292] - Create new action to mark countermeasure as any desired state
- [INR-560] - Fix ImageLoader component
Bug Fixes
- [DRA-925] - Component images not loading in the project screen
- [DRA-930] - Threat model updating for multiple days
- [INR-556] - Fix Reference ID in standard path
- [INR-570] - When the diagram is too wide it does not display well in tablet mode
- [MSR-796] - Conditions based on answers to questions are not working until the questionnaire is manually saved
- [MSR-927] - Type: Hidden elements appear on architecture questionnaire
- [MSR-936] - Rules modified shouldn't work in disabled libraries
- [RT-110] - Different styles for all actions menu depending on the tab
- [RT-788] - Add Threat dialog is not opened in Templates section
- [RT-812] - Skip issue tracker from auto sync process when it fails
- [RT-814] - Countermeasure description is not loaded in edition window
New Knowledge-base Content
Security Standards:
-
[CON-1412]: Updated Azure Security Benchmark to v3
Cloud components:
-
[CON-1417]: New Google Cloud Platform components:
-
GCP SCC (Security Command Center)
-
GCP SDK (With language selection)
-
-
[CON-1412]: New Azure component:
-
Azure Customer Lockbox
-
Content Updates:
-
[CON-1389]: New Network and Generic components:
-
VPN (Virtual Private Network)
-
Router
-
Load balancer
-
ISP (Internet Service Provider)
-
DNS (Domain Name System)
-
Source code repository
-
Social media
-
Video conferencing software
-
Ticketing system
-
Issue tracker
-
-
[CON-1397]: New FTP Server component
-
[CON-1414]: Mitre ATT&CK’s detection descriptions have been updated
-
[CON-1415]: Several changes in some web components:
-
Modified the Web Client component description from “Generic HTTPS Web Client” to “A client-side application used for connecting to a web server over HTTP/S”
-
Risk patterns: GENERIC-CLIENT, WEB-CLIENT (No changes)
-
-
Modified the Web UI component description from “An HTML/JavaScript interface viewed by a browser” to “An HTML/CSS/JavaScript interface viewed through a browser“
-
Risk patterns:
-
From: 3rd-partly-web-libraries, BROWSER, GENERIC-CLIENT
-
To: 3rd-partly-web-libraries, RP-WEB-UI
-
-
-
New Browser component with the following description “An application software for accessing websites“
-
Risk patterns: GENERIC-CLIENT, WEB-CLIENT, BROWSER
-
-
-
[CON-1420]: Updated copyright header
Detailed changelog ([N]ew/[E]dited/[D]eleted):
-
Weaknesses
-
[D] no-notification-incident
-
-
Component Definitions
-
[N] CD-AZURE-CUSTOMER-LOCKBOX
-
[E] CD-MICROSOFT-AZURE-AD-B2C ["desc"]
-
[E] CD-MICROSOFT-AZURE-AD-DS ["desc"]
-
[E] CD-MICROSOFT-AZURE-API-MNGMT ["desc"]
-
[E] CD-MICROSOFT-AZURE-APP-SERVICE-ENV ["desc"]
-
[E] CD-MICROSOFT-AZURE-ATTESTATION ["desc"]
-
[E] CD-MICROSOFT-AZURE-BASTION ["desc"]
-
[E] CD-MICROSOFT-AZURE-BLOB-STORAGE ["desc"]
-
[E] CD-MICROSOFT-AZURE-BLOCKCHAIN-WORKBENCH ["desc"]
-
[E] CD-MICROSOFT-AZURE-BOT-FW-SDK ["desc"]
-
[E] CD-MICROSOFT-AZURE-CDN ["desc"]
-
[E] CD-MICROSOFT-AZURE-CLI ["desc"]
-
[E] CD-MICROSOFT-AZURE-CLOUD-SHELL ["desc"]
-
[E] CD-MICROSOFT-AZURE-CONF-LEDGER ["desc"]
-
[E] CD-MICROSOFT-AZURE-CONTAINER-INSTANCES ["desc"]
-
[E] CD-MICROSOFT-AZURE-CONTAINER-REGISTRY ["desc"]
-
[E] CD-MICROSOFT-AZURE-DATA-BOX ["desc"]
-
[E] CD-MICROSOFT-AZURE-DATA-CATALOG ["desc"]
-
[E] CD-MICROSOFT-AZURE-DATA-FACTORY ["desc"]
-
[E] CD-MICROSOFT-AZURE-DATA-LAKE-ANALYTICS ["desc"]
-
[E] CD-MICROSOFT-AZURE-DATABRICKS ["desc"]
-
[E] CD-MICROSOFT-AZURE-DB-MYSQL ["desc"]
-
[E] CD-MICROSOFT-AZURE-DB-POSTGRESQL ["desc"]
-
[E] CD-MICROSOFT-AZURE-DDOS-PROTECTION ["desc"]
-
[E] CD-MICROSOFT-AZURE-DEDICATED-HSM ["desc"]
-
[E] CD-MICROSOFT-AZURE-DEFENDER-IOT ["desc"]
-
[E] CD-MICROSOFT-AZURE-DNS ["desc"]
-
[E] CD-MICROSOFT-AZURE-EVENT-GRID ["desc"]
-
[E] CD-MICROSOFT-AZURE-EVENT-HUB ["desc"]
-
[E] CD-MICROSOFT-AZURE-FILES ["desc"]
-
[E] CD-MICROSOFT-AZURE-HDINSHIGHT ["desc"]
-
[E] CD-MICROSOFT-AZURE-IMPORT-EXPORT ["desc"]
-
[E] CD-MICROSOFT-AZURE-IOT-EDGE ["desc"]
-
[E] CD-MICROSOFT-AZURE-IOT-HUB ["desc"]
-
[E] CD-MICROSOFT-AZURE-LINUX-VM ["desc"]
-
[E] CD-MICROSOFT-AZURE-MACH-LEARN ["desc"]
-
[E] CD-MICROSOFT-AZURE-MARKETPLACE ["desc"]
-
[E] CD-MICROSOFT-AZURE-NOTIFICATION-HUBS ["desc"]
-
[E] CD-MICROSOFT-AZURE-NW-WATCHER ["desc"]
-
[E] CD-MICROSOFT-AZURE-POWER-BI ["desc"]
-
[E] CD-MICROSOFT-AZURE-POWERSHELL ["desc"]
-
[E] CD-MICROSOFT-AZURE-PRIVATE-LINK ["desc"]
-
[E] CD-MICROSOFT-AZURE-QUEUE-STORAGE ["desc"]
-
[E] CD-MICROSOFT-AZURE-RELAY ["desc"]
-
[E] CD-MICROSOFT-AZURE-SDK-JAVA ["desc"]
-
[E] CD-MICROSOFT-AZURE-SDK-JAVASCRIPT ["desc"]
-
[E] CD-MICROSOFT-AZURE-SDK-NET ["desc"]
-
[E] CD-MICROSOFT-AZURE-SDK-PYTHON ["desc"]
-
[E] CD-MICROSOFT-AZURE-SENTINEL ["desc"]
-
[E] CD-MICROSOFT-AZURE-SER-BUS-MSG ["desc"]
-
[E] CD-MICROSOFT-AZURE-SERVICE-FABRIC ["desc"]
-
[E] CD-MICROSOFT-AZURE-SQL-DB ["desc"]
-
[E] CD-MICROSOFT-AZURE-SQL-EDGE ["desc"]
-
[E] CD-MICROSOFT-AZURE-SQL-SERVER ["desc"]
-
[E] CD-MICROSOFT-AZURE-STR-ANALYTICS ["desc"]
-
[E] CD-MICROSOFT-AZURE-SYNAPSE-ANALYTICS ["desc"]
-
[E] CD-MICROSOFT-AZURE-TIME-SERIES-INSIGHTS ["desc"]
-
[E] CD-MICROSOFT-AZURE-VISUAL-STUDIO ["desc"]
-
[E] CD-MICROSOFT-AZURE-VNET ["desc"]
-
[E] CD-MICROSOFT-AZURE-VPN-GW ["desc"]
-
[E] CD-MICROSOFT-AZURE-WAF ["desc"]
-
[E] CD-MICROSOFT-AZURE-WINDOWS-VM ["desc"]
-
[E] CD-MICROSOFT-INFO-PROTECTION ["desc"]
-
[E] CD-MICROSOFT-VIRTUAL-WAN ["desc"]
-
[E] azure-sql ["desc"]
-
[E] azure-storage ["desc"]
-
[E] azure-virtual-machines ["desc"]
-
[E] microsoft-azure-active-directory ["desc"]
-
[E] microsoft-azure-ad-remote-workers ["desc"]
-
[E] microsoft-azure-application-gateway ["desc"]
-
[E] microsoft-azure-cosmos-db ["desc"]
-
[E] microsoft-azure-expressroute ["desc"]
-
[E] microsoft-azure-firewall ["desc"]
-
[E] microsoft-azure-firewall-manager ["desc"]
-
[E] microsoft-azure-front-door ["desc"]
-
[E] microsoft-azure-functions ["desc"]
-
[E] microsoft-azure-key-vault ["desc"]
-
[E] microsoft-azure-kubernetes-service ["desc"]
-
[E] microsoft-azure-load-balancer ["desc"]
-
[E] microsoft-azure-logic-apps ["desc"]
-
[E] microsoft-azure-monitor ["desc"]
-
[E] microsoft-azure-portal ["desc"]
-
[E] microsoft-azure-security-center ["name","desc"]
-
[E] microsoft-azure-traffic-manager ["desc"]
-
[E] microsoft-azure-web-apps ["desc"]
-
[N] CD-DNS
-
[N] CD-ISP
-
[N] CD-LOAD-BALANCER
-
[N] CD-ROUTER
-
[N] CD-VPN
-
[N] CD-FTP-SERVER
-
[E] redis-server ["desc"]
-
-
Controls
-
[D] AZURE-SECURITY-CENTER12
-
[D] AZURE-SECURITY-CENTER11
-
[E] AZURE-POSTGRESQL1 ["desc"]
-
[E] AZURE-SECURE-CONFIG ["desc"]
-
[E] AZURE-AD17 ["desc"]
-
[E] AZURE-SECURITY-CENTER5 ["name","desc","steps"]
-
[E] AZURE-SECURITY-CENTER6 ["desc"]
-
[D] AZURE-SECURITY-CENTER3
-
[E] AZURE-ADAPTIVE-NET-HARDENING ["desc"]
-
[E] AZURE-AD8 ["desc"]
-
[E] AZURE-KEY-VAULT11 ["desc","steps"]
-
[E] AZURE-IDS-IPS ["steps"]
-
[E] AZ-A07 ["desc"]
-
[E] C-AZURE-STORAGE1 ["desc"]
-
[E] AZURE-DDOS-PROTECTION ["desc"]
-
[E] AZ-S03 ["desc"]
-
[N] C-AZURE-DNS-01
-
[N] C-AZURE-COMMON1
-
[N] C-AZURE-COSMOS-DB7
-
[N] C-AZURE-KEY-VAULT15
-
[N] AZ-N10
-
[N] C-AZURE-KEY-VAULT14
-
[N] C-AZURE-MYSQL1
-
[N] C-AZURE-CUSTOMER-LOCKBOX-01
-
[N] C-AZURE-AD19
-
[N] C-AZURE-VPN-GW1
-
[N] C-AZURE-DEFENDER-01
-
[N] C-AZURE-DEFENDER-02
-
[N] C-AZURE-BACKUP3
-
[N] C-AZURE-BACKUP4
-
[N] C-ROUTER3
-
[N] C-ISP1
-
[N] C-ISP3
-
[N] C-ISP2
-
[N] C-VPN1
-
[N] C-LOAD-BALANCER2
-
[N] C-LOAD-BALANCER1
-
[N] C-DNS3
-
[N] C-DNS1
-
[N] C-DNS2
-
[N] C-ROUTER1
-
[N] C-VPN3
-
[N] C-ROUTER2
-
[N] C-VPN2
-
[E] C-DS0021 ["desc"]
-
[E] C-DS0022 ["desc"]
-
[E] C-DS0023 ["desc"]
-
[E] C-DS0024 ["desc"]
-
[E] C-DS0025 ["desc"]
-
[E] C-DS0026 ["desc"]
-
[E] C-DS0027 ["desc"]
-
[E] C-DS0028 ["desc"]
-
[E] C-DS0020 ["desc"]
-
[E] C-DS0018 ["desc"]
-
[E] C-DS0019 ["desc"]
-
[E] C-DS0032 ["desc"]
-
[E] C-DS0033 ["desc"]
-
[E] C-DS0034 ["desc"]
-
[E] C-DS0035 ["desc"]
-
[E] C-DS0036 ["desc"]
-
[E] C-DS0037 ["desc"]
-
[E] C-DS0038 ["desc"]
-
[E] C-DS0030 ["desc"]
-
[E] C-DS0031 ["desc"]
-
[E] C-DS0029 ["desc"]
-
[E] C-M1021 ["desc"]
-
[E] C-DS0001 ["desc"]
-
[E] C-DS0002 ["desc"]
-
[E] C-DS0003 ["desc"]
-
[E] C-DS0004 ["desc"]
-
[E] C-DS0005 ["desc"]
-
[E] C-DS0006 ["desc"]
-
[E] C-DS0010 ["desc"]
-
[E] C-DS0011 ["desc"]
-
[E] C-DS0012 ["desc"]
-
[E] C-DS0013 ["desc"]
-
[E] C-DS0014 ["desc"]
-
[E] C-DS0015 ["desc"]
-
[E] C-DS0016 ["desc"]
-
[E] C-DS0017 ["desc"]
-
[E] C-DS0007 ["desc"]
-
[E] C-DS0008 ["desc"]
-
[E] C-DS0009 ["desc"]
-
-
RiskPattern
-
[E] azure-security-center ["name","desc"]
-
[N] RP-AZURE-CUSTOMER-LOCKBOX
-
[N] RP-DNS
-
[N] RP-ISP
-
[N] RP-LOAD-BALANCER
-
[N] RP-ROUTER
-
[N] RP-VPN
-
[N] RP-FTP-SERVER
-
Comments
0 comments
Article is closed for comments.