On this page:


Summary: This page describes the new features and bugs that have been fixed in the CAST Security Dashboard Package 1.12.0.

Content Matrix

VersionSummary of content
1.12.0
  • Application Investigation view improvements
  • Transaction Investigation view improvements
  • Parameter details available for Distribution metrics
  • New predefined Industry Compliance reports
  • New Miscellaneous Report for Top Cyclomatic Complexity changes
  • Action Plan filtering improvements
  • Cache reload messages

New features

CAST AIP Datamart

Introducing AIP Datamart (Beta) - a new way to expose, explore, and integrate AIP data for management reporting, with the following notable features:

See https://github.com/CAST-Extend/com.castsoftware.uc.aip.datamart for more information.

The current version is a BETA. We intend to include more features in it. We strongly encourage you to try this version at your end and provide us with your valuable feedback.

Updates - Security Dashboard

Application Investigation view changes for Impacted Transactions

A new section has been added to the Application Investigation view that lists all impacted transactions for a given object (i.e. all the transactions that the selected object is participating in):

Click to enlarge

The section displays:

Transaction Investigation view redesigned

The Transaction Investigation view has been redesigned as follows:

Click to enlarge

Parameter details available for Distribution metrics

For Distribution metrics such as Sizing, Coupling, SQL Complexity, Cyclomatic Comoplexity etc. it is now possible to see detailed information about each Parameter that contributes to the Distribution metric. For a given Distribution in each snapshot, the contributing Parameters are listed, together with the type of technology involved (Object Type Involved) and the number of objects (Parameter Value) classed in that parameter. 

Predefined Security reports

The predefined Security reports available in the Report Generation feature have been updated as follows. All reports not listed have not changed.

All the "Industry compliance reports" are now under "Security reports".

New in 1.12.0

The following reports are new in 1.12.0:

NIST-SP800-53R4 Compliance Report

PCI-DSS-V3.1 ComplianceReport

STIG V4R8 Standards Compliance Report

STIG V4R8 Standards Detailed Report

Renamed in 1.12.0

The following reports have been renamed:

Previous nameName in 1.12.0
CISQ Top 22 Summary Report

CISQ Security Compliance Report

CWE Top 25 Summary Report

CWE Compliance Report

OWASP 2017 Summary Report

OWASP 2017 Compliance Report

OWASP 2013 Summary ReportOWASP 2013 Compliance Report

New Miscellaneous Report for Top Cyclomatic Complexity changes

A new predefined Miscellaneous Report (available in the Report Generation feature) has been added to provide information about the objects that have the highest Cyclomatic Complexity changes in comparison to the previous snapshot. The report is not available when only one snapshot exists.

Click to enlarge

You can click the icon highlighted in the right hand column to view to view specific information about the object in the Application Investigation view:

Action Plan filtering improvements

It is now possible to use a filter on most columns in the Action Plan:

In addition the behaviour of the search box has been changed - you can now search on the Object Name Location field - i.e. you can search for specific violations (based on the object name location field):

Server Cache reloading

While the server reloads from cache there will be a message in the login page, as shown in the below screen, stating "SERVER CACHE IS REFRESHING. PLEASE WAIT..."

If the user is already logged in, a pop-up message will appear, as shown in the below screen, and block the user activity on dashboard until the server is getting refreshed.