SSL Visibility Appliance 3.8.2f GA has been released. This release is specifically for FIPS customers. Once logged in with your BlueTouch Online credentials, you can download the software patch and Release Notes at the Blue Coat Download Central (https://bluecoat.flexnetoperations.com/control/blct/home).
This release for the SV1800, SV2800, and SV3800 is in process for FIPS 140-2 Level 2 validation. It introduces SNMP v3 support as well. Three important issues were resolved, including the Ghost Remote Code Execution vulnerability (CVE-2015-0235).
New Features & Enhancements in SSL Visibility Appliance 3.8.2f
FIPS 140-2 SSLV 3.8.2f enforces the requirements of FIPS 140-2 Level 2 on a SSL Visibility Appliance, and ensures the use of FIPS 140-2 approved algorithms and FIPS behavior. Further FIPS requirements:
User-imported RSA client keys and WebUI RSA keys are limited to 2048-bit and 3072-bit sizes. The new default RSA key size for generating client certificates and keys is 2048-bit.
Upgrades from SSLV 3.8.2f may only be performed using a .nsu process.
TACACS authentication is disabled.
See the Operating the SSL Visibility Appliance in a FIPS Deployment v3.8.2f guide for further information.
SNMP v3 SSLV 3.8.2f supports SNMP v3 reporting on the SSL Visibility Appliance management interface. The SSL Visibility Appliance supports the standard SNMP MIB2 tables. SNMPv3SNMPv3 is required for FIPS 140-2. SNMP v1/v2c access is disabled for SSLV 3.8.2f. SSLV 3.8.2f introduces the SNMP Access window, found in the (Platform) menu. All SNMP features (formerly located on the Management Network window) have been moved to this window. Additionally, SNMPv3 is available. Use the SNMP Access window to configure SNMP connections. No CLD commands are available.