Copyright
Copyright © 2019 BalaSys IT Ltd.. All rights reserved. This document is protected by copyright and is distributed under licenses restricting its use, copying, distribution, and decompilation. No part of this document may be reproduced in any form by any means without prior written authorization of BalaSys.
This documentation and the product it describes are considered protected by copyright according to the applicable laws.
This product includes software developed by the OpenSSL Project for use in the OpenSSL Toolkit (http://www.openssl.org/). This product includes cryptographic software written by Eric Young (eay@cryptsoft.com)
Linux™ is a registered trademark of Linus Torvalds.
Windows™ 10 is registered trademarks of Microsoft Corporation.
The BalaSys™ name and the BalaSys™ logo are registered trademarks of BalaSys IT Ltd.
The Zorp™ name and the Zorp™ logo are registered trademarks of BalaSys IT Ltd.
The Proxedo™ name and the Proxedo™ logo are registered trademarks of BalaSys IT Ltd.
AMD Ryzen™ and AMD EPYC™ are registered trademarks of Advanced Micro Devices, Inc.
Intel® Core™ and Intel® Xeon™ are trademarks of Intel Corporation or its subsidiaries in the U.S. and/or other countries.
All other product names mentioned herein are the trademarks of their respective owners.
DISCLAIMER
BalaSys is not responsible for any third-party websites mentioned in this document. BalaSys does not endorse and is not responsible or liable for any content, advertising, products, or other material on or available from such sites or resources. BalaSys will not be responsible or liable for any damage or loss caused or alleged to be caused by or in connection with use of or reliance on any such content, goods, or services that are available on or through any such sites or resources.
2020-10-19 .Copyright
Features
-
XML support in Security Flow definition
Proxedo API Security has been extended to support XML/SOAP-based API endpoints. It can apply deep packet inspection for traversing XML/SOAP API calls, enforce validation based on XSD and WSDL schemata. Business and security logging based on Insights has also been extended to support XML content.-
XML support in Security Flow control
XPath matchers and filters have been introduced to support XML content in security flow selection and control. -
XML, SOAP, WSDL, XSD support in Enforcer
Several enforcement plugins have been introduced to support the most widespread use-cases of XML-based API protection. These format and schema validators ensure that only compliant API calls and responses reach the protected environment and support custom security policies for handling non-compliant calls. A wide range of reactive measures can be configured from connection closure to custom error responses. -
XML support in Insight
SOAP envelope and message part as well as generic XPath selectors have been introduced to support XML content in business and security log generation for protected API calls.
-
-
URL based Security Flow selection
Proxedo API Security can now be configured to inspect different types of API endpoints (JSON, SOAP or XML) on the same Listener (IP address and port). -
Kubernetes support (tech preview)
Basic integration with Kubernetes has been implemented, k8s ConfigMaps and Secrets are now supported to supply configuration to PAS. Several limitations apply to this tech preview: scaling of PAS itself is not supported and only Nginx ingress controller may be used.
Improvements
-
Pas logs are available for pas user
The PAS service user has been added to the systemd-journal group, and now has access to all system logs. -
Configuration update without service interruption
All PAS components have been updated to support reloading their configuration when receiving a HUP signal.