Announcing Release 3.4

We’re excited to announce the release of 3.4, the latest set of additions and enhancements to the Noname API Security Platform.

Noname’s research & development team – the largest of its kind dedicated to API security – is constantly improving the Noname Platform with new releases made available to customers every few weeks.

Highlights from Release 3.4

Release 3.4 brings numerous improvements, including:

1. Even deeper analysis of APIs and traffic, including:

• More detail on F5 APIs displayed in the Network Graph
• Deeper spec analysis to detect specs in traffic

2. Expanding the industry’s biggest integration catalog with updates and enhancements to :

• Akamai EdgeWorker
• Avi Networks AnalyticsProfile
• AWS Lamda
• Azure Log Workspace Analytics
• IBM DataPower
• Jira self-hosted instances
• Kong
• Oracle VTAP

3. UI enhancements to make Noname even easier to use, including:

• Comment counts on issues in tabular views
• An expanded “Inventory” section on the Reports page

4. Security enhancements, including:

• More password expiration options for non-SAML users
• Simplified user management for administrators

5. Updates to the Noname Management API, so you can continue to manage and fully integrate Noname into your existing security processes.

Driving more business with secure APIs

Noname customers enjoy complete API security across the entire lifecycle of their APIs. These latest advancements deliver:

• Cost savings through faster remediation
  • Get to root causes faster by performing deeper network analysis of F5 infrastructure
  • Faster notifications with seamless workflow integrations with Jira
  • Easier identification of “sticky” issues that require additional expertise
  • Deeper integrations with common infrastructure components
• Reduced risk of compromised passwords or non-compliance with internal policies or regulatory requirements
• Faster, cheaper development with better inventories, reducing redundant development and rework
• Increased revenue from consistently delivering secure products at the pace customers demand

In Case You Missed It

Customers can access the full release notes here in the Documentation Center.

Did you miss some of our recent updates? Here’s recap of some of the exciting features we shipped in the last few releases:

Lots of enhanced and expanded integrations, including:

• Apigee Microgateway
• AWS Elastic Load Balancer
• Azure DevOps
• Azure log analytics
• CircleCI
• Citrix ADC (Netscaler)
• Cloudflare
• Direct-to-email options
• GitLab
• Humio
• Imperva WAF
• Kubernetes
• Layer7 API Gateway
• MuleSoft
• NGINX Open Source
• Oracle OCI API Gateway
• PagerDuty
• Software AG webMethods
• Splunk workflows

Even more deployment updates, including:

• Additional configuration options for admin profiles for on-premises and remote engine deployments
• Docker updates for on-premises deployment options
• Kubernetes using Helm
• Red Hat Enterprise Linux 8 (RHEL)

Posture Management

• API Metrics Graph, including data such as request per second and errors per second and traffic volume visualizations
• Analyze more kinds of spec files, including RAML, WSDL, and WADL formats
• Preselected filters from the Changes page linked directly from API details
• More metadata from Apigee API Proxies in the API Inventory
• New datatype tags for more detailed classification
• View more authentication parameter fields
• Easier views of issue history

Runtime Protection

• Expanded search capabilities to look across request and response data for issues
• Indefinite blocking options under Workflows
• More control over which data in Evidence is sent via workflows to other systems
• A new Reports page with critical information API inventories, vulnerabilities, attacks, and more.
• Description and note fields for attacker IP addresses
• Additional filter options for tabular views, including relative date ranges

Active Testing

• Additional business-logic tests (over 150 now)
• Refined CI/CD integrations

What does it all mean?

With every release, we ensure that you have the best tools in the world to protect your APIs and critical assets from attack while delivering secure apps and applications faster. That is, complete API security.

With Noname, you have industry-leading flexibility. You can deploy Noname in any environment, with any hosting model, and connect with any mission-critical system in your current infrastructure. And you can do it all while maintaining full compliance with regulatory requirements and internal policies.

Not yet a customer? Schedule some time with our team to learn more about complete API security, and how secure APIs will drive your business.

What’s next?

Release 3.5 is only weeks away. Want a hint about what’s next?

Among the many advancements we’ll release, we’ll be adding some incredible capabilities that will help you see your API attack surface from the outside-in, just like a potential attacker would. Just tell us one domain and we’ll find the rest (and it is amazing what you’ll find when you know where, and how, to look).

Ready to learn more? Contact your Customer Success Manager for a roadmap review today.