Release notes - Guardium Data Security Center 3.6.1

IBM Guardium Data Security Center protects your data from current and emerging risks, including AI threats and cryptographic attacks, through unified security controls. The offering helps you manage the full data security lifecycle, from discovery to remediation, across all your data environments. It allows you to break down organizational silos and empowers security teams to collaborate across the organization through integrated workflows, a common view of data assets, centralized compliance policies and an open ecosystem.

The modules of IBM Guardium Data Security Center include:

IBM Guardium Data Compliance
Data Compliance Programmatically simplify data regulation needs, enhance visibility, and streamline monitoring.
IBM Guardium Data Detection and Response
DDR Safeguard your data with ready-to-use integrations that enable your SOC to locate signals in the noise.
IBM Guardium Quantum Safe
Quantum Safe Monitor your enterprise’s cryptography use, uncover cryptographic vulnerabilities, and prioritize remediation to secure your data from both conventional and quantum-enabled risks.

Contents

Download Guardium Data Security Center 3.6.1

Guardium Data Security Center 3.6.1 can be downloaded as an archive file (ibm-guardium-data-security-center-2.6.1.tgz) from: https://github.com/IBM/cloud-pak/tree/master/repo/case/ibm-guardium-data-security-center

You can install only the products for which your site is entitled.

For further instructions, read the README.md file located after unzipping the latest tar file.

The Quick Start Guide for this offering is available at Passport Advantage (https://www.ibm.com/software/passportadvantage) (search for Part Number “M0H7GML”).

Install Guardium Data Security Center 3.6.1

Important: When upgrading to version 3.6.0 or patching to 3.6.1 - or during a fresh installation of either of these two versions - a missing MongoDB image results in upgrade and installation failure. See Missing MongoDB image results in upgrade and installation failure to learn how to work around this problem.

Before installing Guardium Data Security Center, review the system requirements.

This offering is deployed as a new installation of Guardium Data Security Center – or as an in-place upgrade. Please follow these instructions:

Important: See Preparing to patch or upgrade Guardium Data Security Center to learn how to upgrade Guardium Data Security Center for OpenShift Container Platform (OCP) and OpenShift Data Foundation (ODF) Version 4.14 support.

Guardium Data Security Center 3.6.x release notes

Bug and security fixes in Guardium Data Security Center 3.6.1

Table 1. Bug fixes
Issue key Description
INS-49809 Error when loading the GDP health overview card in a dashboard:
Error getting GDP health: Request failed with status code 500: error 
decoding key staps.0.inspection_engines.0.version: cannot decode 32-bit integer 
into a string type
INS-49750 When using mustgather for gathering troubleshooting information, the log file contained email addresses (personal information).
INS-49682 After upgrading Guardium Data Security Center, the mustgather command timed out.
INS-49680 After adding a user in the User management page, the user was added but did not appear in the list of users.
INS-49598 The data mart processor log included Expected tokens may include: \"<ext_tab_element_list>\". errors.
After changing the name format of the CSV file, attempts to retry data ingestion failed.
INS-49431 When adding a connection, the View connections documentation link failed to load the documentation.
INS-49381 The Risk SQL query was exposed in the log files.
INS-49361 Log files contained personal database information (IP address, database user name, and database name).
INS-49352 Log files contained email addresses (personal information).
INS-48818 After creating a ticketing response action, the InsightsLink for actiontaken-create in the activity log was a broken link.
INS-48771 Reports log files exposed the Kafka username and password. In addition, the ssl.truststore.password password was exposed in the log files.
INS-47185 Interrupting a report by stopping it or changing its parameters did not stop the report query execution in the database back end.

Security fixes

Table 2. Security fixes
Issue key Vulnerability ID
INS-49783 CVE-2024-7246

Known limitations and workarounds for Guardium Data Security Center 3.6.1

Table 3. Known limitations and workarounds for Guardium Data Security Center 3.6.1
Issue key Description
INS-50871 After performing several actions on the Exception Details report (including query execution stop and changes to sorting and run length of time), an error message displays:
Report error Cannot retrieve report data. Refresh the page or retry later.

Workaround: Refresh the browser page to reload the report.

Resources

Product page: https://www.ibm.com/products/guardium-data-security-center

IBM Guardium Data Security Center documentation: Guardium Data Security Center overview

Guardium Data Security Center v3.6.x system requirements and prerequisites

IBM Security Learning Academy: https://www.securitylearningacademy.com