18th October 2019


Senso Portal


New Features


- [MAJOR] Added time and IP-based login restrictions. These can be set on a per user and per role basis. 


- [MAJOR] (BETA) Added Asset Management to gather and report on client hardware, security and performance information. Due to the costs involved in running the services behind this feature, there is an additional cost but we would be happy for you to have access to the feature for 7 days.


- Added ability to group Windows devices by private IP address


Improvements


User Interface:


- Improved sorting algorithm for the groups tree to correctly order alphanumeric group names


- Thumbnail, Policies and Access tabs in the main console will now only be displayed based on the user's permissions


Bug fixes


- Fixed issue preventing MyConcern reports from being submitted successfully


Security and Performance


- [MAJOR] Various security and performance improvements have been made including segregating the back-end servers into groups of servers and modifying the load balancing system appropriately.  You will be re-directed to a different URL after logging in but can continue to access the usual address for logon purposes.  These more powerful servers are more resilient and secure and we strive to continue to ensure security and performance is a top priority for us.


- [MAJOR] Due to recent changes by Google to hinder the use of a core technology we use (WebRTC), our routing servers are under extreme load - traffic which was previously routed locally in your networks is now routing through our web servers.  This currently affects Remote Control, Screen Broadcasting and Module feedback/responses.  We have therefore created more powerful servers specifically for this purpose and are phasing customers onto these new servers for the sole purpose of improving Real-time remote viewing of screens/broadcasting and Module feedback.  Changing the Chrome://flags for [Anonymize local IPs exposed by WebRTC] (mDNS) to Disabled then restarting your browser will once again route traffic locally and improve your experience.




30th September 2019


Senso Client (2019.9.30.0)


Improvements


- Improved client connection security by enforcing TLS1.2

- Improved connection reliability

- Improved P2P connection mechanism with better offline detection

- Improved module execution speed


Bug fixes


- Fixed issue where clients would appear offline when they were actually online. This was due to the connection heartbeat failing because of invalid security tokens.


Senso Portal


New Features


- [MAJOR] Complete redesign of the core connection mechanism to improve scalability and performance.

- [MAJOR] Added MyConcern Integration for violations

- [MAJOR] Added support for delegated access so that a user may access multiple organizations from a single account.

- [MAJOR] Added support for Google Authenticator when using Senso accounts 


- Removed support for less secure cipher suites and enforced TLS 1.2

- Added Archive Log Viewer

- Added Print Violation Image button


Improvements


User Interface:


- The module toolbar has been condensed onto a single row and will now follow the page as a user scrolls

- Maintained role table pagination index when editing roles


Single Sign-on: 


-Users now specify a domain in the Google login URL (portal.senso.cloud/Account/GLogin?domain=domain.com) to prevent users from having to type full email address


Groups:


- Limited peer connection attempts to filtered devices to improve performance

- Added explanation for group priority to avoid confusion


Policies:


- Updated client group policies when changing group priority

- Enabled "Copy Policy Schedules" by default when copying policies to avoid immediately applying a copied policy


Admin:


- Prevented users from assigning modules to others which are not allowed by their own role(s)


Logging:


- Included the violating phrase in email alerts

- Allowed users to load more than 1000 results for queries


Bug fixes


User Interface:


- Fixed issue where the module UI becomes blank if multiple modules are opened

- Fixed issue where data could be written to the wrong tab when a module is run

- Block Resources: Fixed issue where buttons would spill over when browser was resized.


Admin: 


- Fixed issue where removing a user would fail if the email address contained special characters

- Fixed issue where adding a new user would fail if the administrator had no visible roles

- Device Cleanup: Fixed issue where cleanup would fail if duplicates exist and both cleanup options are selected


Logging: 


- Fixed issue where the "View History" link was not appearing on violations without screenshots

- Block Resources: Fixed issue where the "Delete All" option wouldn't work if the items had the "Screenshot" action



22nd July 2019


Senso Client


Bugfixes


- Fixed issue where the lower priority policies were not executed if a higher priority policy was disabled

- Fixed issue where if a policy was disabled or deleted, another policy using the same module would be executed regardless of if the policy was enabled or in schedule.




24th May 2019


Senso Client - Critical update


Bugfixes


- Fixed issue where the username of the remote client would not update in the portal after a logon

- Fixed issue with outdated certificate would stop application logging/blocking from working with certain antivirus products

- Fixed issue with injection throwing bad image format error

- Fixed issue where disabling a policy would run an unloaded module

- Fixed issue where some offline logs or violations were not sync'd to cloud when back online

- Fixed issue with some RDS setups which used too much cpu when Web Filtering was enabled, keyphrase detection and application logs could still be used

- Fixed issue where some modules with feedback would have to be executed twice before receiving feedback



Changes


- Replaced a number of Server Request functions with API Calls for less important function, removing unnecessary load on cloud servers

- Updated various dependencies with latest versions

- Logging module released with fundamental changes:

    - RDS performance tweaking

    - New methods for Inter Process Communication

    - Increased performance of several parallel task loops for keyword, url, whitelist and allow list detections

    - Updated Web Filter drivers with latest version containing performance tweaks with SSL interception

    - Added retry policy to violation image upload

    - Changed how the IWF Keywords are detected when the keyphrase is phrase that needs to match with other IWF words, this should result in less false positives

    - Optimized the Url logging functions to reduce junk logs

- Code refactoring on senso boot functions

- Updated peer to peer code versions to latest

- Updated code to work with upcoming release of Chrome - without this client, the June 4th release of Chrome will no longer work with senso



Added


- New methods to deliver core modules upon senso boot, meaning we can make the client engine more modular than error before

- Added Azure AD Integration - you can now group by Azure AD Groups just as you would with on-prem AD

- Added improvisations to assist in ensuring a client that is online is shown as online and vice versa

- Logging Module:

    - Added URL Whitelist

    - Added Include Application list for SSL Filtering - populate with application name or partial path to only include these in SSL Filtering

    - Added Green Arrow to show where a violation keyphrase is. Note, some applications restrict this.

    - Added ability to not raise a violation for certain window captions, perfect for excluding applications such as CPOMS which will regularly raise false positives on teacher pc's

    - Added last 30 characters written by the violating user upon keyphrase detection

- Injection module updated with new certificates

- Various changes in other modules



Senso Portal


Major Changes


- Signing out of the Senso Portal will now cause all sessions for that user to become invalid. This has been done to prevent replay attacks and strengthen our authentication process.


Bug fixes


- Console Users: Fixed issue with being unable to manage users whose email contains special characters

- Logging: Fixed issue with bulk editing logs spanning multiple dates

- Block Resources: Fixed issue with the "Delete All" option failing to work for blocks with the Screenshot action


New

- Data Sync: Added setup steps for the Senso Client Azure AD sync 


Known Issues


No major issues known in this release


----------------------------------------------------------------------



4 March 2019


Senso Portal


Bug fixes


- Fixed issue where using multiple LIKE and NOT LIKE filters would cause unexpected results

- Fixed issue where multiple tabs may be created for a module if clicked multiple times while still loading

- Fixed issue with Senso Live Chat module removing typed messages when responses are received before sending

- Fixed issue with child nodes not being checked when viewing existing restricted groups in edit device

- Fixed issue where P2P links would not retry connection attempts if the first attempt failed

- Fixed issue where policies would not be sent when user is switched on client

- Fixed issue with filtering logging tables when columns were hidden

- Fixed issue where removing the Senso Client from the same machine running the Senso Portal would cause groups to fail to load

- Fixed issue where a detection library could be created but not tracked correctly in the database

- Fixed issue with Send File upload on Firefox

- Fixed element ID conflicts in the DOM when running multiple modules

- Fixed issue where console users would sometimes be unable to close a module UI

- Fixed bug where user switch notifications would fail to be processed when received over P2P, leaving the old username displayed

- Fixed issue with Broadcast Screen only displaying a single device in the selection dropdown when used whilst remote controlling a device



General changes


- Increased Block Resource library names from 50 to 1000 characters max

- Ordered users alphabetically in assign role

- Added support for usernames up to 255 characters in length

- Improved performance of policy ACL checks

- Updated Google SSO to work with new methods that aren't reliant on Google+ 



Added


- [MAJOR] Added whitelist to Block Resources

- [MAJOR] Added ability for users to create advanced detection libraries for use across multiple groups

- [MAJOR] Added bulk user creation by CSV

- [MAJOR] Added fullscreen remote view/control

- [MAJOR] Added policy scheduling

- [MAJOR] Added ability to limit visibility of users and roles on a per site basis

- [MAJOR] Added ability to copy policies to other groups


- Synced Google Classroom groups will now be deleted within 24 hours of being removed from Google Classroom 

- Added support for Google Classroom when using the per device licensing option for Chromebooks

- Added option to show module shortcuts as icons in the module toolbar

- Added option to select what to add as filters (device name, remote host name or username) when using add to group

- Added option to select what to remove as filters when using remove from group

- Added user display name to thumbnails

- Assign role now shows which users currently have that role assigned 

- Added delete all option to Block Resources

- Added info column to violation logs to display extended information

- Added "Connecting..." indicator when waiting for a screen while using remote control

- Added option to cleanup devices that have not connected within x days



Senso Client


Bug fixes


- Fixed issue where client would crash out of the policy execution system, no longer executing modules when in this state. This would make the client appear unresponsive, even though online.

- Fixed issue where 3rd party .net products would corrupt the sensoclient.exe.config file, stopping the client from running completely

- Fixed issue with Group Priorities where a module would not reset if a higher priority module was executed

- Fixed error logging was not logging

- Fixed various issues with the Remote Control Module


Changes


- Entire Policy Execution system has been reworked for better performance and to accommodate the scheduling

- Updated Real Time Communication system to latest version, affecting remote control/broadcast

- Updated Microsoft Websocket system to latest version to support an imminent change to the Redis load balancing system

- Enhanced and re-worked the Peer to Peer linking methods

- Enhanced the Peer Reconnect methods should a peer to peer link fail


Added


- Scheduling of policies

- Additional API's for more enhanced modules

- Better initialisation detection to reduce wasteful cloud server requests



Known Issues


- An update to our Logging Module is needed to fully utilise the Website Whitelist and Allow-Only

- We are currently working on an Azure AD link so currently you cannot add Group Filters for AAD Groups

- At random times throughout the week, all Connections to the senso.cloud Servers are severed.  This results in several minutes of down-time before all the connections reconnect.  Microsoft are aware of the issue and attempting to find a resolution.  In the meantime, we are building another replica environment on more powerful servers with slightly different technology and plan on moving everyone over