...
Present 14.1 version introduces improvements on Security management , both visible and under the hood. focused on Certificate Management that has been completely revised and partially rewritten. Most sensitive information in Certificates is Private Key so our efforts were concentrated on creating a better protection for it, both during TLS KeyPair creation and Certificate Management.
Certificate's Private Key is more protected now: it's never displayed in console interface and it cannot be included it's exportable by a conveniente Shell Script only via SSH Console connection via password protected pk12 file. Also Certificate's Private Key is no more included in backup archives. It's planned to build up from this release a resa esportabile via file pk12 protetto da password via console ssh
Backup chiave privata: chiave privata dei certificati non più mostrata in interfaccia e resa esportabile via file pk12 protetto da password via console ssh. Inoltre stiamo scrivendo la gestione dei CSR direttamente da console. Infine chiave privata non più esportata nei backup. Implementato da qlke parte il principio dei 4 occhi?an automated CSR generation for Certificate updates.
Better Auditing system providing also integration with Archsite
...
aggiunto framework auditing modulare di alto livello configurabile e in particolare è stata aggiunta la compatibilità con HP-ArchSite. (Sec Event Management) o SIEM -> check wikip.