Skip to main content
Back to Main Menu
Rob Truesdell

Product Updates - May 18, 2023

IP Intel

Geolocate, Proxy, VPN, and Domain sub-services are GA

Through the partnership with Digital Element, these IP Intel sub-services are all now Generally Available (GA) and ready for use in production. Use these services to identify characteristics of the originating IP or device in application sessions to help improve the security of your application or improve the user experience. Learn more about these services from the IP Intel page.

Vault

Expanded encryption algorithm support

There are now more options for encryption, decryption, and signing when using the Vault service.

The new algorithms are listed below:

  • New symmetric key encryption algorithm(s)

    • AES256 in Galois Counter Mode (GCM)
  • New elliptic curve asymmetric signing algorithm(s)

    • EC_SIGN_P256_SHA256
    • EC_SIGN_P384_SHA384
    • EC_SIGN_SECP256K1_SHA256
  • New RSA asymmetric signing algorithm(s)

    • RSA-PSS-2048-SHA256
    • RSA-PSS-3072-SHA256
    • RSA-PSS-4096-SHA256
    • RSA-PPS-4096-SHA512
  • New asymmetric encryption algorithm(s)

    • RSA 4096

      • RSA-OAEP-4096-SHA512
      • RSA-OAEP-4096-SHA256
      • RSA-OAEP-4096-SHA1
    • RSA 3072

      • RSA-OAEP-3072-SHA512
      • RSA-OAEP-3072-SHA256
      • RSA-OAEP-3072-SHA1
    • RSA 2048

    • RSA-OAEP-2048-SHA512

    • RSA-OAEP-2048-SHA256

    • RSA-OAEP-2048-SHA1

User Experience in Console

New onboarding flow

For first-time organizations being created, the first screen that you interact with gets you executing one of the APIs within a few clicks. This flow makes it easy for users to understand the Pangea usage model: enable a service, then run the API. The onboarding screen can always be accessed through the left-hand navigation. You can see the onboarding flow in this video.

Dashboard rework

The dashboard has been reorganized and simplified to make navigation easier.

AuthN

Auto-submit when last digit of OTP

When using a One-Time Password/passcode (OTP) for Multi-Factor Authentication (MFA), the end-user experience has been updated to submit the entered code automatically after the last digit is entered. This update gives a small, but noticeable difference in user experience during an MFA flow.

Secure Audit Log

Signing verification in the Secure Audit Log viewer

Signing verification in the Secure Audit Log viewer

You will now see a signature verification status in the audit log viewer if log signing was enabled. Log signing uses the Vault service to generate a signing key or use a user-imported signing key. The public key is supplied with each signed event so that it can be retrieved and used to verify the integrity and authenticity of the event upon event retrieval.