PingIntelligence 5.1 (December 2021) - PingIntelligence for APIs - 5.1

PingIntelligence

bundle
pingintelligence-51
ft:publication_title
PingIntelligence
Product_Version_ce
PingIntelligence for APIs 5.1
category
APISecurity
AdvancedAPICybersecurity
Capability
Environment
OS
Product
apisecurity
capability
linux
pi-51
pingintelligence
private
ContentType_ce
Page created: 9 Dec 2022 |
Page updated: 9 Dec 2022

PingIntelligence for APIs 5.1 provides the following enhancements:

New in Dashboard

Improved
The PingIntelligence for APIs Dashboard is enhanced to provide an improved user experience for the following functionalities:
  • New PingOne Dashboard provides a streamlined user interface with support for drill down into API details, blocklisted clients, and clients flagged for Indicators of Attack (IoAs). The rearchitected Dashboard significantly accelerates the processing of API metadata to speed updates to administrators on API activity and abnormal events. See Dashboard.
  • An updated Attack management GUI delivers more detailed information to assist security administrators in analyzing Indicators of Attack (IoAs). The enhanced reporting includes additional insight into why a client’s behavior was flagged, suggested remediation steps, and transaction-level details from API requests and responses associated with the anomalous behavior. See Attack management.
  • Enhanced SIEM integration pushes the same detailed IoA information (e.g. why flagged, remediation steps, transaction data) available via the Attack Management GUI to a SIEM. The SIEM integration enables a customer to combine anomalous API activity data with events from other security tools.
  • Automated Publishing of Discovered APIs supports distributed discovery of APIs across multiple datacenters from a centralized or cloud-based Dashboard.

New in AI Engine

Improved
Improved Anomalous API Header and Query String Detection

Updated AI algorithms detect anomalous values and content in API headers or query strings. Examples include hackers manipulating content, executing malicious scripts, passing attack variables, accessing unauthorized content, and other abnormal behavior. PingIntelligence detects and optionally blocks these manipulations and malicious activity. For more information, see Types of Indicators of Attack.

New in ASE

New
Real-Time Enforcement of Missing Token

For inline or sideband deployments, ASE can be configured to detect and automatically block clients not presenting a token to APIs requiring access tokens.

New Kubernetes Deployment

New
Support for production PingIntelligence deployments in AWS EKS using a Ping-supplied Helm-Chart. See Kubernetes deployment.

Resolved Issue: ABS AI engine

FixedPI4API-4504
ABS AI engine has been updated to use a Log4j version with the fixes for the critical vulnerabilities.

Resolved Issue: Dashboard update

FixedPI4API-4522
Dashboard has been updated to use a Log4j version with the fixes for the critical vulnerabilities.