Here are descriptions of the more relevant changes in EVSS 14.2
changes
PIN protection
This is one important new feature we introduce: PIN protection adds a protection layer to your privacy and opens new ways of use for
. You can now set your 4 digits PIN so that accessing
application would need your
authorisationauthorization. As always we worked on improving performances and robustness of
.
This additional security measure does not compromise usability: PIN is not required to answer incoming call.
changes
New Privacy section in console
Privacy settings has been improved and grouped in a new subsection of the Main Menù called "Privacy Settings". It's our intention to provide Privacy settings easier to be found and used. In this new section we put "Data Retention Policies" subsection, which now includes System Events and Security Events, as well as Secure Message introduced in 14.0. We also created a subsection named "Data Masking" where Service Administrator can decide if to record logs about Call Detail Record and Secure Messages or completely disable such logging. A new option has been added which is Log Masking and it let you have service usage stats without recording and showing sensitive metadata.
Improved Security management
Present 14.2 version introduces improvements on Security management focused on Certificate Management that has been completely revised. Most sensitive information in Certificates is Private Key so our efforts were concentrated on creating a better protection for it, both during TLS KeyPair creation and
data backups. Since present version certificate's Private Key cannot be exported or displayed in Web Console and it cannot be exported via backup archives. Private Key is exportable only using a specific Shell Script (and thus after accessing the appliance via SSH connection) that produces password protected pk12 files. Service Operators/Administrator is be able to create new Private Keys and related CSR and add signed Certificates without directly accessing Private Keys themselves. Better Auditing system providing SIEM and integration with HP-ArcSight
...
AVAYA secure trunk support
Avaya Communication Manager 5.x has been certified for secure trunks with
: it is now possible to have a secure between mobile up to desk phones, using Avaya infrastructure.Trunk Failover
It is possible to configure multiple SIP trunks and let
automatically reroute outgoing calls to one or another, if one is not currently available.Single Sign on SAML 2.0
web console can managed users authentication using SAML 2.0 identity providers, instead of local authentication.Client's PIN in provisioning profile
's administrator can configured PIN options to be applied for users.