MISP
/
misp-website
mirror of https://github.com/MISP/misp-website
2
0
Fork 0
Code Issues Releases Wiki Activity

Update 2018-01-16-MISP.2.4.86.released.md

pull/3/head
Andras Iklody 2018-01-16 13:58:26 +01:00 committed by GitHub
parent b9fe9f5684
commit 7d54c99c20
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 7 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
_posts/2018-01-16-MISP.2.4.86.released.md
View File

@ -4,23 +4,22 @@ layout: post
featured: /assets/images/misp-small.png
---
A new version of MISP [2.4.86](https://github.com/MISP/MISP/tree/v2.4.86) has been released including improvement in the sharing groups and their API, improved granular of modules visibility on instance-level and many bug fixes.
A new version of MISP [2.4.86](https://github.com/MISP/MISP/tree/v2.4.86) has been released including improvements to the sharing groups and their respective APIs, granular access control of MISP-modules at an instance-level along with the usual set of bug fixes.
There are different usages of MISP especially in large information sharing and exchange communities such as ISACs (e.g. [X-ISAC](https://www.x-isac.org/) or similar organisations. Two main new features were introduced to better support such use:
There are different use-cases of MISP especially when it comes to large information sharing and exchange communities such as those of ISACs (e.g. [X-ISAC](https://www.x-isac.org/) or similar organisations. Two main new features were introduced to improve the support of such scenarios:
- An optional feature to limit the visibility of organisations has been added where only site admins and sharing groups can see the full organisation lists. This is a disabled option by default but can be enabled if this is required in your use-case. Keep in mind sharing groups managers can still see the full list of organisations (it's by design as required to expand and create sharing groups).
- An additional setting in the modules (expansion, import, export) allow to limit the accessibility of a module to a specific organisation. This is quite useful when specific expansion services are limited to a single organisations such as services restricted due API keys restriction or access to specific sensitive services (e.g. ticketing systems, SIEMs lookup,...)
- An optional feature to limit the visibility of organisations has been added where only site admins and sharing group editors can see the full organisation lists. This is an option that is disabled by default but can be enabled on-demand, if it is required in your use-case. Keep in mind sharing group editors can still see the full list of organisations (it's by design as it is an inherent requirement to expand and create sharing groups).
- An additional setting in the modules (expansion, import, export) allows limiting the accessibility to specific modules to a single organisation. This is quite useful when specific expansion services are limited to a single organisations such as services restricted due to API key restrictions or access to specific sensitive services (e.g. ticketing systems, SIEMs lookup,...)
Sharing groups are now manageable via the API allowing creation and management of sharing groups to other applications.
Sharing groups are now manageable via the API opening up the possibility of creating and managing sharing groups via other applications.
A significant performance improvement (a gain of 50% is quite common) when importing large batch of attributes into MISP via the UI or the API. Another performance gain
is the attribute index and search by a factor of 10 due to some silly MySQL indexing behaviors.
A significant performance improvement (a gain of 50% is quite common) has been incorporated in the latest release when importing large batches of attributes into MISP via the UI or the API. Performance gains have also been made for the attribute index and attribute search, improving lookup times by a factor of 10, due to some silly MySQL indexing behaviors.
Many bug fixes and improvement were introduced in this version.
The full change log is available [here](https://www.misp.software/Changelog.txt). [PyMISP change log](https://www.misp.software/PyMISP-Changelog.txt) is also available.
In addition, [MISP dashboard](https://github.com/MISP/misp-dashboard) has been significantly improved and can be installed together in one or more MISP instances.
In addition, [MISP dashboard](https://github.com/MISP/misp-dashboard) has been significantly improved and can be installed in junction with one or several MISP instances.
PyMISP has been refactored and improved. The PyMISP documentation has been updated [PDF](https://media.readthedocs.org/pdf/pymisp/latest/pymisp.pdf).