Secure by Default
Security is something that can have severe implications if something goes wrong. With this release we are making a significant step forward as we have adopted a Secure by Default and Secure By Design approach for our platform. Under the hood, this means we have replaced our security backbone as a starting point. All future releases of TrendMiner will add additional improvements to ensure that any installation of TrendMiner is secure by default, enforcing security best practices without needing additional configuration.
What does this mean for our users?
If you are using TrendMiner for user management, you will notice stricter password policies and expiration rules. These are based on best practices and ensure your users passwords are more secure.
Extended support for integrating with your existing identity providers, such as supporting a combination of local user management with multiple IdPs via SAML (e.g., Azure AD, Okta), and/or multiple LDAP providers, as well as support for using SAML groups in defining data access rules which unlocks the option to pre-configure access permissions for new users.
We will enable SSL/TLS by default (you access TrendMiner in your web browser using a secure “https://" URL), so any data transmitted to and from TrendMiner will be encrypted using up-to-date and secure encryption methods.