Updates and Patch Management

Regular updates and patch management are essential components of maintaining the security posture of your Antigen Plus installation. Updates address security vulnerabilities, fix bugs, and introduce new features that enhance both functionality and security. This section describes how updates are delivered, how to verify their authenticity, how to identify software versions, and the update release schedule.

How Updates Are Delivered

Antigen Plus updates are distributed through the official Antigen Plus documentation website at docs.antigenplus.com. Updates are packaged as Windows Installer (.msi) files and are signed with Authenticode to ensure their authenticity and integrity.

Update Distribution:

  • Updates are available for download from the Download page on docs.antigenplus.com
  • Each update is distributed as a signed Windows Installer (.msi) file
  • The installer runs silently, so you may not see installation progress
  • After installation, look in your Start menu to find Antigen Plus

Reviewing Updates Before Installation:

Before downloading and installing an update, you can review what’s included in each release by checking the Release notes. The release notes provide detailed information about:

  • New features
  • Improvements
  • Bug fixes
  • Database migrations (if any)

This information helps you understand what changes will be applied to your installation and whether any special procedures are required.

Upgrade Procedures:

For detailed information about upgrading from different versions of Antigen Plus, including database migration requirements, see the Upgrades section of this documentation.

Update Verification Procedures

All Antigen Plus installers are signed with Authenticode, a Microsoft code signing technology that provides cryptographic verification of the installer’s authenticity and integrity. This ensures that the installer has not been tampered with and originates from the legitimate Antigen Plus publisher.

Authenticode Code Signing:

Authenticode signatures use public key cryptography to create a digital signature that is embedded in the installer file. When you download and attempt to run an Antigen Plus installer:

  1. Windows automatically verifies the Authenticode signature
  2. Windows checks that the signature is valid and has not been revoked
  3. Windows confirms that the installer was signed by the legitimate publisher
  4. Windows displays publisher information in the security dialog

Verification Process:

When you download an Antigen Plus installer and attempt to run it, Windows will:

  • Display a security dialog showing the publisher name (Rowny Systems, Inc. or Antigen Plus)
  • Indicate whether the signature is valid
  • Warn you if the signature is invalid, missing, or has been revoked

Never install Antigen Plus from an installer that does not show a valid Authenticode signature from the legitimate publisher. An unsigned or tampered installer may contain malware or unauthorized modifications that could compromise your system security.

Manual Verification:

You can manually verify the Authenticode signature of a downloaded installer by:

  1. Right-clicking on the .msi file
  2. Selecting Properties
  3. Opening the Digital Signatures tab
  4. Verifying that the signature is valid and shows the correct publisher

If the Digital Signatures tab is missing or shows an invalid signature, do not install the file. Contact Antigen Plus support for assistance.

Version Identification

Antigen Plus version information is available in multiple locations, allowing you to verify which version is installed on your system and compare it with available updates. The version number follows the format X.Y.Z.W (e.g., 8.5.56.0), where:

  • X.Y represents the major version (e.g., 8.5)
  • Z represents the minor version or build number
  • W represents the revision number

Version Information Locations:

1. Installer Filename:

The version number is embedded in the installer filename. For example: AntigenPlus 8.5.56.0.msi indicates version 8.5.56.0.

2. Windows Installer Package Properties:

You can view version information in the Windows Installer package properties:

  1. Right-click on the downloaded .msi file
  2. Select Properties
  3. Open the Details tab
  4. The version number is displayed in the Version field

3. Application Main Window:

When Antigen Plus is launched, the version number appears at the top of the main application window in the title bar.

4. About Box:

The version number is also displayed in the software’s About box:

  1. Open Antigen Plus
  2. Access the Help menu and select “About”
  3. The About dialog displays the full version number

Using Release Notes to Identify Changes:

The Release notes can help you identify what changes are included in newer versions. You can use the release notes to:

  • Compare your installed version with available updates
  • Understand what security fixes, features, or improvements are included in newer versions
  • Determine if database migrations are required for specific version upgrades

Update Schedule

Antigen Plus updates do not follow a regular, predictable schedule. Updates are released as needed to address:

  • Security vulnerabilities - Critical security patches are released promptly when vulnerabilities are discovered
  • Bug fixes - Corrections for software defects that affect functionality or stability
  • New features - Enhancements and new capabilities based on user feedback and clinical needs
  • Database migrations - Updates that require database schema changes

Staying Informed About Updates:

Because updates are released on an as-needed basis rather than on a fixed schedule, we recommend:

  • Periodically checking the Download page for new versions
  • Reviewing the Release notes to understand what’s included in each release

Update Planning:

When planning updates for your installation:

  1. Review the Release notes for the target version to understand what changes are included
  2. Check the Upgrades section to determine if database migrations are required
  3. Plan the update during a maintenance window if database migrations are necessary
  4. Ensure all workstations accessing the same database are updated simultaneously if database migrations are required

Important: Once your database has been migrated to a newer version, older versions of Antigen Plus will no longer be able to connect to the database. You should plan your upgrade so that all workstations accessing the same database will be upgraded at the same time.

Infrastructure and Platform Updates

While Antigen Plus provides updates for the application software, your organization is responsible for maintaining the underlying infrastructure and platform components. These responsibilities differ based on your deployment model, as outlined in the Shared Responsibility Model section of this cybersecurity guide.

Windows Operating System Updates

Your organization is responsible for keeping Windows operating systems updated on all systems running Antigen Plus:

Workstation Updates:

  • All workstations running Antigen Plus must be kept current with Windows security patches and updates
  • Apply security patches regularly using Windows Update or your organization’s patch management system
  • Ensure that critical security updates are applied promptly to address vulnerabilities
  • This responsibility applies to all deployment models (both Azure SQL Database and on-premise SQL Server deployments)

Server Updates (On-Premise Deployments Only):

  • If you are using an on-premise SQL Server database, you are responsible for keeping the Windows Server operating system updated with security patches
  • Windows Server security updates should be applied according to your organization’s patch management procedures
  • Plan server updates during maintenance windows to minimize disruption to Antigen Plus operations

SQL Server Updates

Your responsibility for SQL Server updates depends on your deployment model:

On-Premise SQL Server Deployments:

  • You are responsible for SQL Server installation, configuration, and patching
  • Keep SQL Server updated with the latest security patches and cumulative updates
  • Plan SQL Server updates during maintenance windows, especially if they require service restarts
  • Test SQL Server updates in a non-production environment when possible

Azure SQL Database Deployments:

  • Microsoft Azure is responsible for database platform security and patching
  • Azure SQL Database is automatically updated and patched by Microsoft as part of the managed service
  • You do not need to manage SQL Server updates when using Azure SQL Database
  • Azure handles all database platform maintenance, including security patches, without requiring customer intervention

For more information about the distribution of security responsibilities, see the Shared Responsibility Model section in the cybersecurity overview.

Coordination Considerations

When planning infrastructure and platform updates:

  1. Maintenance Windows: Schedule infrastructure updates during maintenance windows to minimize disruption to blood banking operations

  2. Testing: Test infrastructure updates in a non-production environment when feasible, particularly for SQL Server updates that may affect database connectivity or performance

  3. Documentation: Maintain records of infrastructure updates applied to assist with troubleshooting and compliance requirements