Arc v2.2.0

The release notes for Arc version v2.2.0.

New features

A list of new features that have been introduced in this release.

  • Arc-873: The user interface (UI) now reflects changes to Windows network interface naming.
  • Arc-973: Added support for Arc Embedded on Mitsubishi Electric systems that cannot access the update service. Knowledge is now included natively in the installation bundle.
  • Arc-1035: Structured Threat Information Expression (STIX) rules now apply to internet protocol (IP) addresses, domains, and uniform resource locator (URL)s.
  • Arc-1050: The configuration page layout has been redesigned to clarify the separation between Endpoint and Network sensor features, simplify access to Threat Prevention settings, and provide more detailed explanations.
  • Arc-1064: Bloom filters now handle pre-checks that avoid unnecessary upstream requests, resulting in significantly improved STIX check performance.
  • Arc-1077: Removed demo-only SIGMA rules. Full SIGMA support is now available within Threat Intelligence.
  • Arc-1093: Updated OpenSLL and Yara dependencies
  • Arc-1104: Arc can now enforce certificate validation even when not connected to Vantage.
  • Arc-1110:
    • Discovery: The asset fields that the server message block (SMB) Discovery strategy populates are now tagged with the Discovery data source
    • Smart Polling
      • Introduced a Smart Polling strategy for Shelly mDNS
      • Addressed an issue that caused the Modbus strategy to fail to close the session, resulting in device data being dropped
      • The simple network management protocol (SNMP) strategy now has support for CISCO switches in stacked configuration, extracting information from the entire stack rather than just part of it
      • The SNMP strategy now extracts sysObjectID as a property
      • The SNMP strategy now has a reduced network footprint
      • The SMB strategy now adds the source Discovery to the information extracted
    • Discovery and Smart Polling: Introduced Discovery and Smart Polling strategies for Eaton EasySoft

Resolved issues

A list of all the issues that have been resolved in this release.

  • Arc-1081: Fixed an issue where merging upstream configurations led to increased resource usage.
  • Arc-1123: Addressed an issue with the SIGMA keyword not.