UXP 1.24 – smarter, safer and easier than ever

Meelis Burget

Technical Product Manager, Data Exchange Technologies

UXP 1.24 banner

“Cybernetica’s mission with UXP is clear: reduce complexity, while enabling governments to scale interoperability securely.”

Meelis Burget

Technical Product Manager

Over the past year, we’ve had the privilege of seeing UXP and its family of products in action around the world, from the Trembita system in Ukraine to deployments in Benin, and through conversations with clients in Brazil, Malaysia and beyond. Everywhere we go, the message has been consistent: make secure data exchange easier to manage and more resilient for the future.

With UXP 1.24, we’re delivering exactly what has been asked for most. This release brings redesigned user management, built-in rate limiting, smarter monitoring and smoother upgrades. We are empowering governments to run interoperability systems with less complexity and greater confidence.

Let’s take a closer look.

Simpler, safer user management

Until now, managing users in UXP Security Server meant command-line tools and Linux expertise just like in X-Road. This was time-consuming and often frustrating. Users couldn’t see their roles or change their own passwords, and every request required an administrator’s attention.

With UXP 1.24, user management is moving finally to the web UI:

  • Intuitive user interface lets administrators view and manage users visually.
  • Self-service gives users visibility into their roles and the ability to change passwords without waiting for help.
  • New Key Manager role gives more granular access rights, ensuring only authorised personnel manage signing keys.
  • Stronger security with enforced password policies, mandatory first-time password changes and temporary lockouts after failed attempts to defend against brute-force attacks.
  • Backwards compatibility with old Linux user accounts still exists.

Even the Transaction Auditor role now works directly in the security server web UI. The UXP Verifier has been integrated and refreshed with clearer visuals and new features like certificate download from signatures which eliminates the need for a separate tool.

Screenshot of User Management module

Protecting services with built-in rate limiting

In the past, a single overloaded consumer could slow down or even block critical services. Even if provider had contractual usage limits in place, we had no simple way to enforce them.

Now, rate limiting makes it easy to protect service availability:

  • Set thresholds for how many requests a service accepts within a defined time window.
  • Adapt flexibly to the needs of individual services, consumers or consumer groups.
  • Prevent overload during traffic spikes like tax season or school application season.
  • Enforce service level agreements with consumers.

The result: steady performance and uninterrupted availability. Capabilities that go beyond what X-Road offers today.

Screenshot of rate limiting feature

Automated cleanup and smarter monitoring

Running a UXP Security Server at scale meant dealing with growing message log files – and the risk of running out of disk space. Metadata from every message exchange piled up indefinitely, even if it wasn’t needed.

From UXP 1.24, server owner can automatically clean up old records. Set a retention period for metadata and the system handles the rest. While X-Road offers message log configuration, UXP chooses automation. No last-minute cleanups.

Similarly, UXP monitoring has been made smarter and more resilient:

  • Improved clustering support keeps monitoring up, even if one node fails.
  • New proactive alerts notify admin before issues occur.
  • Enhanced message statistics gives a clearer view of the real benefits of interoperability.
  • Support for Ubuntu 24.04 and Zabbix 7.0 makes e-governments more future-proof.

Improved documentation, smoother upgrading

With UXP 1.24, we have made documents clearer and upgrades smoother than ever:

  • New, clear upgrade guide walks admin through every scenario and step.
  • Migrating, backing up and restoring user accounts is documented and scripts provided.
  • Key Manager and Transaction Auditor roles have now their own guides.

Since backwards compatibility for old user accounts will eventually be phased out, now is the perfect time to upgrade all security servers and be prepared for future releases.

Next version in the making

Cybernetica’s mission with UXP is clear: reduce complexity, while enabling governments to scale interoperability securely. Looking forward, we are preparing capabilities like delegated Security Server ownership and centralised user management across organisations.

We have a clear roadmap going forward and we are keen to continue listening to our users. The next UXP version is already in development and our clients can expect more fresh benefits soon.

Are you OK with optional cookies? We use statistical and marketing cookies to offer you a better browsing experience and optimise our marketing costs. We value your privacy, so optional cookies aren't activated unless you accept. Learn more about Privacy Notice.

Ära lange õngitsusskeemide ohvriks! Beware of phishing attempts on behalf of Cybernetica.

Read more