Rational AppScan Source Edition 8.5 now available

Downloadable files


Abstract

This document describes how to download and install IBM Rational AppScan Source Edition Version 8.5.

Download Description

What's New in Rational AppScan Source Edition Version 8.5:

  • The Rational AppScan Enterprise Server has replaced Rational AppScan Source Edition for Core: All Rational AppScan Source Edition products and components must now communicate with a Rational AppScan Enterprise Server. The server provides centralized Jazz-based authentication management capabilities and a mechanism for sharing assessments via the Rational AppScan Source Edition Database. The server includes an Enterprise Console, to which you can publish assessments. The Enterprise Console also offers a variety of tools for working with your assessments - such as reporting features, issue management, trend analysis, and dashboards.
  • Framework for Frameworks handling APIs: Set of Java APIs that allow you to add support for frameworks that are used in your applications. Support for .NET has been added.
  • Quality scanning: Quality scanning has been added to the Rational AppScan Source Edition for Developer Eclipse plug-in, the Rational AppScan Source Edition command line interface, and Rational AppScan Source Edition for Automation. With the Rational AppScan Source Edition for Developer Eclipse plug-in, you can scan Java source code using a variety of quality rules - and you can create quality rule configurations for Java and C/C++, and then use these configurations for scanning with the command line interface and Rational AppScan Source Edition for Automation.
  • Expanded Platform Support: Red Hat Enterprise Linux Version 6.0 (see the system requirements for details about platform support).
  • Enhanced support for creating validation routines.
  • User management updates.
  • Various bug fixes.


Important Notes:
  • Solaris (SPARC) Versions 9 and 10 are only supported for Rational AppScan Source Edition for Automation. No other Rational AppScan Source Edition products are supported on Solaris.
  • To upgrade from Rational AppScan Source Edition Versions 6.x, you must upgrade to Version 7.0 and then Version 8.x. See technote 1455145: Upgrading from Versions 6.x to Version 7.0 or 8.0 for information.

Rational AppScan Source Edition licensing:

Rational AppScan Source Edition provides a License Manager utility that is used for loading and updating license information on your client machine. This utility allows you to view your current license status - or you can use the utility to activate the product by importing a nodelocked license file or by using a floating license on a license server. Nodelocked licenses are tied to individual machines - while floating licenses can be checked out for use on different client machines.

The License Manager utility can be opened from the product installation wizard after installation is complete - or you can launch it from the Windows Start menu.


Rational AppScan Source Edition licenses are obtained from the IBM Rational License Key Center. For detailed information about obtaining licenses and license activation, see How to obtain and apply licenses for Rational AppScan Source Edition products and the Activating the software section of the Rational AppScan Source Edition Installation and Administration Guide.

Product Web site:

http://www.ibm.com/software/rational/products/appscan/source/

Product features:

http://www.ibm.com/software/rational/products/appscan/source/features/

User Guides:

Prerequisites

Download package



1. You must have active product entitlements for this download, and know your Site Number. (If you do not know your Site Number, contact eCustomer Care.)

2. Sign in to the http://www.ibm.com/software/howtobuy/passportadvantage/pao_customers.htm site using your IBM ID. If you do not have an IBM ID you will be able to create one. If you did not purchase under Passport Advantage terms, you will later be automatically redirected to the Software and Services site.

3. On the Self-nomination page, type in your Site Number, and indicate whether or not you are your company's Primary Contact for this site. (If you are not sure whether you are the primary contact, select "No".) Then click Submit.

At this point your company's primary contact is notified. When your request is approved you will receive email notification, and be able to continue.

4. After signing in again (if necessary), click Software Download and Media Access, then click Download Finder.

The downloads that are available to you are listed.

5. If you purchased under Passport Advantage terms, search - by name or part number - for these packages:

  • IBM Rational AppScan Source Edition for Automation V8.5 Multiplatform Multilingual eAssembly (Part Number CRG08ML), which includes:
    • IBM Rational AppScan Source Edition for Automation V8.5 Windows Multilingual (Part Number CI43IML)
    • IBM Rational AppScan Source Edition for Automation V8.5 Linux Multilingual (Part Number CI43JML)
    • IBM Rational AppScan Source Edition for Automation V8.5 Solaris Multilingual (Part Number CI43KML)
    • IBM Rational AppScan Source Edition for Automation V8.5 Quick Start Guide Multiplatform Multilingual (Part Number CI3ENML)
    • IBM Rational AppScan Enterprise Server V8.5 Windows Multilingual (Part Number CI455ML)
    • IBM Rational AppScan Enterprise Server V8.5 Linux Multilingual (Part Number CI456ML)

  • IBM Rational AppScan Source Edition for Security V8.5 Multiplatform Multilingual eAssembly (Part Number CRG09ML), which includes:
    • IBM Rational AppScan Source Edition for Security V8.5 Windows Multilingual (Part Number CI43LML)
    • IBM Rational AppScan Source Edition for Security V8.5 Linux Multilingual (Part Number CI43MML)
    • IBM Rational AppScan Source Edition for Security and Consulting V8.5 Quick Start Guide Multilingual (Part Number CI3EMML)
    • IBM Rational AppScan Enterprise Server V8.5 Windows Multilingual (Part Number CI455ML)
    • IBM Rational AppScan Enterprise Server V8.5 Linux Multilingual (Part Number CI456ML)

  • IBM Rational AppScan Source Edition for Developer V8.5 Multiplatform Multilingual eAssembly (Part Number CRG0AML), which includes:
    • IBM Rational AppScan Source Edition for Developer V8.5 Windows Multilingual (Part Number CI43NML)
    • IBM Rational AppScan Source Edition for Developer V8.5 Linux Multilingual (Part Number CI43PML)
    • IBM Rational AppScan Source Edition for Developer and Remediation V8.5 Quick Start Guide Multilingual (Part Number CI3EPML)
    • IBM Rational AppScan Enterprise Server V8.5 Windows Multilingual (Part Number CI455ML)
    • IBM Rational AppScan Enterprise Server V8.5 Linux Multilingual (Part Number CI456ML)

  • IBM Rational AppScan Source Edition for Remediation V 8.5 Multiplatform Multilingual eAssembly (Part Number CRG0BML), which includes:
    • IBM Rational AppScan Source Edition for Developer V8.5 Windows Multilingual (Part Number CI43NML)
    • IBM Rational AppScan Source Edition for Developer V8.5 Linux Multilingual (Part Number CI43PML)
    • IBM Rational AppScan Source Edition for Developer and Remediation V8.5 Quick Start Guide Multilingual (Part Number CI3EPML)
    • IBM Rational AppScan Enterprise Server V8.5 Windows Multilingual (Part Number CI455ML)
    • IBM Rational AppScan Enterprise Server V8.5 Linux Multilingual (Part Number CI456ML)

6. If you did not purchase under Passport Advantage terms, search Software and Services - by name or part number - for these packages:

  • IBM Rational AppScan Source Edition for Consulting V8.5 Multiplatform Multilingual eAssembly (FCT) Part Number CRGX5MLL), which includes:
    • IBM Rational AppScan Source Edition for Security V8.5 Windows Multilingual (Part Number CI43LML)
    • IBM Rational AppScan Source Edition for Security V8.5 Linux Multilingual (Part Number CI43MML)
    • IBM Rational AppScan Source Edition for Security and Consulting V8.5 Quick Start Guide Multilingual (Part Number CI3EMML)
    • IBM Rational AppScan Enterprise Server V8.5 Windows Multilingual (Part Number CI455ML)
    • IBM Rational AppScan Enterprise Server V8.5 Linux Multilingual (Part Number CI456ML)

7. Download the required components of the package. (It may be convenient to download all components together, for quick access later on.)


Problems solved


APAR

Title

PM29384

The pre-compiled class scanning feature in AppScan Source for Security does not always recongize or scan Java class files

PM40571

Report profiles contain incorrect category properties

PM43591

Shared filter modifications do not persist

PM49939

SRC: Published assessments do not use defined variables

PM36059

"String Analysis failed with exit code -532,459,699" error when String Analysis active for .NET applications

PM42907

SRC: Security Analyst does not interpret classpath entries as Eclipse does

PM43161

Login timeout setting does not exist for Data Access API (SDK)

PM44365

Error saving assessment: "<assessment_ name>.ozasmt' cannot be saved, HRESULT: -2147418113"

PM44386

Third-party DLL's cause projects to be skipped during .NET scans or cause entire scans to fail

PM39921

.NET language processer skips intermediate IR causing incorrect types due to modifiers

PM48302

AppScan Source truncates and overlaps Method and File colums in generated PDF Report

PM43064

Project properties are all read-only when Visual Studio project file is read-only on file system

PM45718

Unable to use AppScan Source for Developer for Microsoft Visual Studio without running Visual Studio as an administrator user

PM44671

SRC: The "Scan File" option should not be available for .NET source files

PM35973

Total line of code and file counts in console output are inconsistent and misleading

PM48864

multi-byte characters are corrupted in Console panel when read in again from assessment ozasmt file

PM36533

Ounce/ANT re-writes PAF file each time it is written to causing only the last PPF file to be referenced

PM37498

SRC: "Scan aborted: Unable to export to: ...\java_compile_config.xml"

PM40072

Published assessments to ASE fails in ASE

PM46821

The custom scanners allow invalid XML characters, such as 0x1A, into the Context attribute in the <Finding> element.

PM48599

Invalid class file in the scope causing "uncaught exception" during Framework Analysis

PM50218

Segmentation fault on cliloader can occur on Linux platforms when scanning a java/jsp application that uses java annotations

PM42817

'Creating Markers for file <file name>' has encountered a problem. Markers Creation Failed

PM40959

SRC: Unable to install Automation Server with the Repair Wizard

PM45813

Eclipse IDE preferences menu does not have an option to configure the AppScan Source login timeout setting

PM46716

AppScan Source Edition's LDAP integration fails where LDAP requires the "uid=" string

PM46101

AppScan source trace/stack view doesn't auto-refresh

PM44988

"ounceExclude" Ounce/ANT parameter does not exclude directories or files

PM37879

AppScan Source sees "long" data type as 4 bytes on 64 bit RHEL

PM41448

SRC: The "Exclude" button should not be available for findings being viewed in a bundle

PM47504

SRC: "Project not selected to build for this solution configuration"

PM47942

Missing XSS findings in Javascript file

PK99889

Validation Routine markup does not honor StringBuffer.append()

PM37835

Scan fails if project or source directories contain non-iso-8859-1 (Western European) characters.

PM40353

AppScan source: inconsistent trace view between Security and Remediation

PM47733

"Error has occurred during login" when connecting to Team Foundation Server 2010

PM39284

Microsoft Visual Studio solution files (sln) should not be allowed to be imported if Microsoft Visual Studio is not installed

PM38496

Inability to disable markers creation causing delays in opening source files in the Source View

Download RELEASE DATE LANGUAGE SIZE(Bytes) Download Options
Passport Advantage 15 Nov 2011 English 651884578 HTTP

Technical support


Licensing Information

Consult How to obtain and apply licenses for AppScan Source products.


User assistance

Known issues can also be found in the AppScan Source product documentation. See Where to find documentation for AppScan Source.




Helpful Hints For Obtaining Technical Assistance

Before you contact IBM Security Software Support, gather the background information that you need to describe the problem. When creating the ticket, provide this information:

  • What operation did you performed - and what error messages have you received?
  • The background information needed to understand the issue.
  • Version of AppScan Source. Make sure that you are opening the ticket for AppScan Source (there are several AppScan products supported by different teams).
  • Impact of the issue on your organization, schedule, and deadlines.
  • Upload logs, screen captures, and background information for the ticket.


Problems (APARS) fixed
PM29384, PM40571, PM43591, PM49939, PM36059, PM42907, PM43161, PM44365, PM44386, PM39921, PM48302, PM43064, PM45718, PM44671, PM35973, PM48864, PM36533, PM37498, PM40072, PM46821, PM48599, PM50218, PM42817, PM40959, PM45813, PM46716, PM46101, PM44988, PM37879, PM41448, PM47504, PM47942, PK99889, PM37835, PM40353, PM47733, PM39284, PM38496

Rate this page:

(0 users)Average rating

Add comments

Document information


More support for:

IBM Security AppScan Source
Installation

Software version:

8.5

Operating system(s):

Linux, Solaris, Windows

Reference #:

4031255

Modified date:

2014-05-02

Translate my page

Machine Translation

Content navigation