Our policy-to-execution platform, SD Elements, is rigorously updated by our in-house research team and SD Elements development team at Security Compass. We regularly release new versions of SD Elements, offering users updated content and functionalities to use within our platform. Our process of releasing new versions of SD Elements is done to ensure that our platform meets and anticipates users’ needs, based on their feedback and experience with our product. Below, we review the specifics of what has been improved in SD Elements throughout the last 3 releases.
Version 4.17, Released September 2018:
In our 3rd last release, we enhanced the management and monitoring capabilities of SD Elements. The new feature monitors the synchronization between SD Elements, Application Lifecycle Management (ALM) tools, and verification tools to ensure that the integrations are running smoothly.
–Docker Container Technology: our new content covers the security requirements that need to be met in the installation, configuration, and maintenance of Docker containers.
–We’ve improved the Cross-Origin Resource Sharing (CORS) content
Version 4.18, Released October 2018:
In this SD Elements release, we added a capability that allows risk policies to consider regulation-specific tasks. Now, in creating a risk policy, organizations can require that important tasks relevant to a specific regulation are complete. This feature could be used, for example, to help software projects comply with GDPR. You can also create a risk policy that requires certain tasks to be verified by a verification tool before the project will consider those tasks to be compliant with the project’s risk policy.
–Kubernetes Container Orchestration Platform: we offer complete coverage of secure configuration and administration for the Kubernetes platform
–we now offer content on using new features provided by the Content Security Policy (CSP) headers and guidelines on how to protect applications against MageCart-like attacks
Version 4.19, Released December 2018:
In our latest release of SD Elements, we’ve enhanced verification functions. Now, it’s easier to set up connections to verification tools so that automatic verification of requirements in tasks can be completed more easily. There is also a feature which allows you to automatically send tasks from SD Elements to ALMs, including JIRA, CA Agile Central, or IBM Rational Team Concert. We’ve added the ability for an administrator to easily map an ‘in progress’ status in the ALM to an ‘in progress’ status in SD Elements.
We’ve also added a CI/CD plugins page. This guides users on how to find and install SD Elements plugins for Jenkins, Xebialabs, and Microsoft Azure so that you can pass or fail builds based on their compliance with a given risk policy.
–Azure Functions: we now offer content for securing the use of Azure functions, such as authentication, authorization, and logging
–Google Cloud Platform: we now offer security guidelines for the configuration and administration of the Google Cloud Platform
To learn more about SD Elements, contact us here.