The SSL Visibility v3.9.3.1-34 maintenance release has been released on BlueTouch Online for Blue Coat and OEM customers. SSL Visibility v3.9.3.1 provides important vulnerability fixes.  SSL Visibility v3.9.3.1 also provides support for TLS 1.2 for HSM connections, configurable operation when an application port is down in an Active-Inline Fail-To-Network segment, and better security for user session management.

Once logged in with their BTO credentials, entitled Blue Coat customers can download the corresponding image and Release Notes from the SSL Visibility Downloads page.
SSL Visibility v3.9.3.1 provides several important vulnerability fixes, including updates that address Blue Coat Security Advisories SA104 and SA105. Refer to the SSL Visibility 3.9.2.1 Release Notes for specific details on all the defect and vulnerability fixes.

SSL Visibility Appliance software 3.9.3.1 introduces the following enhancements.
  • In SSLV 3.9.3.1, the Failure Action for a segment also applies to application port failures for segments configured in Active-Inline Fail-to-Network (AI-FTN) mode. For segments configured in AI-FTN mode, with the Failure Action set to Fail-to-Wire, traffic will be allowed to pass on all network ports in a segment when an application port in that segment goes down. This Failure Action is configurable if it is not desirable to let the traffic pass.
  • SSL Visibility 3.9.3.1 terminates an active user session if the user is deleted or the user's roles are changed. A user session is not terminated if the user changes his/her own roles.
  • SSL Visibility 3.9.3.1 adds TLS 1.2 support for connections to supported HSM versions that use TLS 1.2.
  • SSL Visibility 3.9.3.1 provides bracketed alphabetic severity indicators at the beginning of exported system log entries.
See the SSL Visibility 3.9.3.1 Release Notes for details about all the enhancements in this release.

SSL Visibility 3.9.3.1 supports the new SV3800B-20 appliance.

After upgrading to SSL Visibility 3.9.3.1 from a 3.8.x or 3.7.x release on an SV1800, SV2800, or SV3800 appliance, you must update the BIOS. See the SSL Visibility 3.9.3.1 Release Notes for information.

Version 1.6.4 of the off-box Python SSL Sessions tool is available. This version of the SSL Sessions tool operates with SSL Visibility 3.9.2.1 and later session log files by default, and corrects an issue exporting CSV output from the Windows GUI. Use the SSL Sessions tool to parse SSL session log information within an exported session log generated by a Blue Coat SSL Visibility Appliance. The tool and tool documentation (sslsessions.pdf) are available on BlueTouchOnline (https://bto.bluecoat.com/) in Downloads. A Getting Started Guide is available on BTO Documentation.
 
Customers are advised to upgrade any system running SSL Visibility 3.7.x or later at their earliest convenience. Any customers running SSL Visibility 3.6.x must first upgrade to 3.7.x or above in order to upgrade to SSL Visibility 3.9.3.1.
Please refer to the SSL Visibility 3.9.3.1 Release Notes for detailed information about this maintenance release.
Please refer to the SSL Visibility 3.9.3.1 Release Notes for detailed information on Known Issues and Fixed Issues in this release.
Imported Document ID: 000029481

Thanks for your feedback. Let us know if you have additional comments below. (requires login)

    © 1995-2019 Broadcom. All Rights Reserved. The term “Broadcom” refers to Broadcom Inc. and/or its subsidiaries.