Customer release notes for SafeNet ProtectApp v8.8 for JCE, .NET, and ICAPI are now available for download. These releases include the following enhancements:
SafeNet ProtectApp v8.8 JCE
Encryption/Decryption with an EC Key:
- User can now perform encryption-decryption with the EC keys and ECIES algorithms in the local and remote modes
Creating an AES Key Using HKDF Algorithm:
- Support for creating an AES key (from another AES key) using HMAC-based Extract-and-Expand Key Derivation Function (HKDF).
Wrapping with an AES Key
- Support for wrapping an AES key (key-size of 128, 196, and 256) with an AES key (key-size of 128, 196, and 256).
Session-Pool Caching
- Support for caching user session-pool is added in SafeNet Cloud Storage Encryption Gateway for Amazon Simple Storage Service (Amazon S3), so that no new session is created for the particular user until the user-session is cached.
SafeNet ProtectApp v8.8 .NET
Encryption and Decryption Support Using EC keys in Remote and Local modes.
- User can now perform encryption-decryption with the EC keys and ECIES algorithms in the local and remote modes
Support of HMAC Key Derivation Function.
- An AES symmetric key can be derived from another symmetric key, also called a Master Key based on the HKDF (HMAC based key derivation function).
Derive AES key
- Create a derived AES key from the master symmetric key in SafeNet KeySecure.
Export Wrapped AES Key from SafeNet KeySecure
- The ExportAESWrappedKey exports key bytes of an AES key in wrapped form. Users can also wrap specific versions or all versions of a versioned key using AES Key wrapping.
Support of SSL in Syslog
- Server authentication – Involves client-side server authentication by verifying signed server certificate with CA
- Client authentication – Involves server-side authentication by verifying signed client certificate with CA
Enhancements in FPE for Cardinality 26 and 62 in Local Mode
- All the outside cardinality characters will be preserved. IV will be ignored if input data length does not require IV
SafeNet ProtectApp v8.8 ICAPI
Encryption and Decryption Support Using EC Keys in Remote and Local modes.
- User can now perform encryption-decryption with the EC keys and ECIES algorithms in the local and remote modes
AES Key Wrapping
- Users can exports key bytes of an AES key in wrapped form. These keybytes are wrapped with other AES keys. Users can also wrap specific versions or all versions of a versioned key using AES key wrapping
Support of SSL in Syslog
- Server authentication: Involves client-side server authentication by verifying signed server certificate with CA
- Client authentication: Involves server-side authentication by verifying signed client certificate with CA
Support of HMAC Key Derivation Function
- An AES symmetric key can be derived from another symmetric key, also called as Master Key based on the HKDF (HMAC based key derivation function)
Enhancements in FPE for Cardinality 26 and 62 in Local Mode
- All the outside cardinality characters will be preserved. IV will be ignored if input data length does not require IV
Please review the Advisory Notes and the Resolved and Known Issues sections of the release notes for any limitations and/or restrictions.
*Note: Registered users may access the documents via the Gemalto Support Portal. Should you need assistance logging in, please contact the SafeNet Support team at 800-545-6608 (US customers) or +1 410-931-7520 (International customers).
