New security controls

New security controls

Role-based personalization

Role-based personalization can extend the administrative user experience and the application visibility controls in the user interface. The customer benefits are many. A few examples include:

• personalization for UI in the Splunk applications
• personalization for UI access to Splunk saved resources (like dashboards, reports, saved searches)
• granular access controls to Splunk resources across all UI
• security role integration with customer LDAP systems save labor cost
• compliance and auditing of the organizations Splunk security models is easier and consistent with existing security controls

SSL compression

The Splunk data transited across the network through Splunk forwarders is now compressed. Standard compression rates vary by type of data, but common compression numbers for static data types suggest that over 70% data compression is a strong possibility. Your mileage may vary.

SSLv3 support

The SSL v3 capability can be set as a default behavior in the Splunk environment.

Added cipher suite support

The added security controls include ciphers suites support. These ciphers include asymmetric key algorithms for signing and verifying; the RSA and DSA algorithms. The symmetric key algorithms for encrypt and decrypt operations include 3DES and AES in several modes with user selectable key lengths. For hashing, Splunk supports the approved SHA-1 algorithm. For message integrity Splunk supports HMAC-SHA-1 with varied HMAC blocksizes sizes in support up to 512.

Benefits

Any security conscious customer can be assured Splunk meets strict security guidelines for protocols and ciphers suites. In addition, Splunk extends the security controls to allow for enhanced network throughput via SSL compression and extends the access control model to allow for role based personalization of Splunk UI objects.

• Was this topic useful?
• Post a comment