Skip to main content

Check out Interactive Visual Stories to gain hands-on experience with the SSE product features. Click here.

Skyhigh Security

Skyhigh Security Cloud Release Notes 6.3.2 (May, 2023)

Skyhigh Data Protection

OCR and Classifications for Skyhigh CASB

Skyhigh CASB customers can now access all Classification based features. OCR enables the Skyhigh Security DLP engine to extract text from supported image files and is available for Skyhigh CASB customers. For details, see About OCR.

Redesigned Fingerprint Page

The redesigned Fingerprint page (found under Policies > DLP Policies > Fingerprints) provides the below User Interface (UI) changes:

  1. The Omnibar Search is enhanced to filter your search based on Fingerprint Name.
  2. Create Fingerprint menu displays separate options for Structured and Unstructured Fingerprint where you can create a legacy fingerprint to use with Skyhigh CASB and an enhanced fingerprint to use with Web Gateway.
  3. The Actions column in the Fingerprint table now displays options vertically as a dropdown. Click the Generate Index (three-dot) menu to view Show Command Line and Delete actions. For details, see About Fingerprints

clipboard_e99424072d62e87daf825ae8f8fadd277.png

Policy Validations Enhancements

In this release (6.3.2), while importing DLP Policies using Policy Templates, we have enhanced the validation process for:

  • Collaboration Rule.
  • Data Identifier Rule.
  • Classifications.
  • Bulk Activations with Invalid Classifications.
  • Fingerprints.

For details, see Import Policy Templates.
 

Skyhigh Secure Web Gateway (Cloud)

Backup and Restore Web Policies 

When configuring your web policy with Secure Web Gateway, new options for backing up and restoring are available. 

Using these options, you can:

Skyhigh Cloud Firewall

Cloud Firewall Policy Enhancements

You can now select Service and Service Groups as policy criteria that are managed in CASB Shadow IT. This enables you to apply application-based policies for more than 40000 applications under Skyhigh Cloud Registry. For details, Configure Firewall Policies.

  • Service — The service name. For example, Zoom, Facebook.
  • Service Group — The group of services. You can create a group of services and then set allow or block access for all the services in the group. For example, you can add several services, such as Amazon, Target, Magneto, and ekart to a group called e-commerce. 

NOTE: You must have the Skyhigh CASB Shadow IT license to use the Service and Service Group options. 

service.jpg

Skyhigh CASB

Unmatched Uploads Enhancements

In the previous release (6.3.1), the Unmatched Uploads page (found under Analytics > Unmatched Uploads) was redesigned to provide granular information about users accessing the data from unmapped or potentially suspicious destinations as well as the risk (or reputation) associated with these destinations. There are enhanced workflows that allow users to update the status of URLs if it is a trusted unmatched cloud service. In addition, users can request new cloud services to be added to the Registry. 

In the current release (6.3.2), you can find more enhancements to the Unmatched Uploads table:

  1. You can sort the data by Reputation and Status columns.
  2. You can add three new columns to the unmatched uploads table to view the information on IP, Country, and City. These columns can be selected from Settings > Actions > Edit Table Columns. For details, see About Unmatched Uploads Enhancements.
    Unmatched Uploads Table Enhancements.png

Custom Anomaly Enhancements (Limited Availability)

In the previous release (6.3.1), the Custom Anomaly (found under Incidents > Anomalies > Anomaly Settings) was introduced which allows users to create their own anomaly structure based on risk parameters identified in Sanctioned IT cloud service activities.

In the current release (6.3.2) you can create a custom anomaly rule based on user groups for tenants who have configured user data (Active Directory). You can also include all or selected user groups to evaluate a rule. For details, see Create a Custom Anomaly.
Custom Anomaly User Groups.png

Seclore DRM Support for External Users in SharePoint (Limited Availability)

Skyhigh CASB provides Seclore DRM protection over files containing sensitive data owned by external users in SharePoint sites. Skyhigh CASB leverages the internal collaborator’s information to encrypt these sensitive files in Seclore DRM. This feature allows security administrators to protect sensitive data uploaded by external users to SharePoint sites. For details, see Seclore DRM for External Users in SharePoint.

clipboard_e5f311cf65849c5afcebb2d7f4281584f.png 

Skyhigh CNAPP 

New Azure CIS v2.0 Policy Templates   

CIS Benchmarks are based on technical configuration settings used to maintain and increase enterprise security, especially when used in conjunction with other essential cyber hygiene tasks. In this release, 5 new Azure Policy templates have been added for the CIS v2.0 benchmark. For details, see Policy Templates for Azure.

Notepad - known issue.png Skyhigh Security Cloud Resolved and Known Issues
For more details, see Skyhigh Security Cloud Bug Fixes and Known Issues.
  • Was this article helpful?