Register FAQ Memberlist Search Linoma Software Forum Index

Linoma Software Forum Index -> Crypto Complete -> Version 1.51 (2/25/2008)
This forum is locked: you cannot post, reply to, or edit topics.  This topic is locked: you cannot edit posts or make replies. View previous topic :: View next topic 
Version 1.51 (2/25/2008)
PostPosted: 02/25/08 02:19:39 PM Reply with quote
Support
Site Admin
 
Joined: 12 Mar 2004
Posts: 377
Location: Omaha, NE


******************************************************************************
If you already have CRYPTO COMPLETE installed on your System i (iSeries) and
want to see your current installed version, run the command:

DSPDTAARA CRYPTO/VERSION

******************************************************************************

VERSIONS IN DESCENDING ORDER:

Version 1.51 (2/25/2008)

FIX: Changed the volume parameter (VOL) from type NAME to type
CHARACTER on the ENC*** and DEC*** commands. This change allows
numeric values to be entered for the volume parameter.

FIX: Changed the volume parameter (VOL) to allow volumes other than
*NONE on the ENCFIL and DECFIL commands.

FIX: If a single library is specified with ENDOPT(*UNLOAD) on the
ENCLIB command, then unload the tape after the save.

FIX: If a single save file is specified with ENDOPT(*UNLOAD) on the
ENCSAVF command, then unload the tape after the save.

FIX: Do not prematurely unload the tape when ENDOPT(*UNLOAD) is
specified on the DECLIB, DECOBJ and DECSAVF commands. Wait
until all restores are completed.

FIX: Remove single quotes from messages CRE0328 and CRE0377 to allow
auditing message to be sent to the journal when adding/removing
SQL Triggers.

ENHANCE: When activating a field in the Encryption Registry, do not fail
on the creation of the external logical file when the external
physical file library is not in the library list.

ENHANCE: Add audit entry in the journal when attempting to encrypt data
with a key that is not allowed for encryption purposes.

ENHANCE: Add audit entry in the journal when attempting to decrypt data
with a key that is not allowed for decryption purposes.

ENHANCE: Add edit checks when using the ADDFLDENC (Add Field Encryption)
or ACTFLDENC (Activate Field Encryption) commands:
- Check that the file has one member.
- Check to make sure that the field length is large enough
to hold the external index number (based on the number of
records in the file).

Version 1.50 (1/30/2008)

FIX: Correctly calculate the hash value when updating an external
record which does not store the last retrieved user/time.

FIX: When activating or deactivating a field in the Encryption
Registry, do not create duplicate audit log messages (for message
ids CRA0037 and CRA0040) in the journal CRJN001.

FIX: If the library name is left blank on the WRKSYMKEY (Work with
Symmetric Keys) command, then use *LIBL for the library name.

FIX: When adding a field in the Encryption Registry with the ADDFLDENC
command, properly edit-check the trigger names specified.

FIX: When deactivating a field in the Encryption Registry with the
DCTACTFLD command; if an external file cannot be deleted, then
change the status of the field entry from *PROCESS to *ERROR
and deallocate the customer's data base file.

ENHANCE: When activating a field in the Encryption Registry, use the option
of *NOLIST when creating the external file to not generate the
compile listing.

ENHANCE: When activating or deactivating a field in the Encryption
Registry, also store the database field name and library/file
name for the audit messages (message ids CRA0037 and CRA0040)
that are generated in the journal CRJN001.

ENHANCE: Provide a more descriptive error message when a Symmetric Key in
a Key Store cannot be decrypted with a Master Encryption Key.
The new message will appear as "Master Key &1 does not match the
Master Key on the Key Store."

ENHANCE: When activating a field in the Encryption Registry which uses an
external file, increase the initial size of the external file from
10,000,000 records to *NOMAX.

ENHANCE: Created a new command called RMVFLDTRG (Remove Field Triggers)
which will remove any triggers that were created by Crypto Complete
on the database file for the specified Field Identifier. This
command is useful to temporarily remove the triggers when a
programmer needs to perform maintenance on the database file, such
as adding a new field to the database file.

ENHANCE: Created a new command called ADDFLDTRG (Add Field Triggers) which
will recreate the triggers on the database file (which were
removed by the RMVFLDTRG command) for the specified Field
Identifier.

ENHANCE: Created a new command called CPYFLDENC (Copy Field Encryption
Entry) which will copy an entry from one Field Encryption
Registry (CRVL002 object) to another. This command is useful if a
customer has multiple Field Encryption Registries (to support
multiple environments) and needs to replicate the entries between
them.

ENHANCE: Created a new command called TRNFLDKEY (Translate Field Key) which
will translate (reencrypt) any values which were encrypted under
older Keys up to the most current Key for the specified Field
Identifier. The TRNFLDKEY command can only be used for fields
which use an external file to store the encrypted values.

ENHANCE: Created new SQL functions called F_ENCAES2 and F_DECAES2 which can
be used to encrypt and decrypt strings of data using the AES
algorithm and a key label. These functions can be called from
within SQL statements.

ENHANCE: Created new stored procedures P_ENCAES2 and P_DECAES2 which can
be used to encrypt and decrypt strings of data using the AES
algorithm and a key label. These stored procedures can be called
using the SQL CALL statement.

ENHANCE: Created a new ILE procedure called GetActiveFldId in service
program CRSP505. This ILE procedure will return the name of the
active Field Identifier (within the Encryption Registry) for the
specified database file name, library and field name.

ENHANCE: Created a new program API called CRRP621 which will return
the name of the active Field Identifier (within the Encryption
Registry) for the specified database file name, library and
field name.

ENHANCE: Created a new ILE procedure called GetEncFldKeyInf in service
program CRSP505. This ILE procedure will return the current
encryption/decryption Key Labels and Key Store names for the
specified Field Identifier.

ENHANCE: Created a new program API called CRRP622 which will return
the current encryption/decryption Key Labels and Key Store
names for the specified Field Identifier.

ENHANCE: When adding a field into the Encryption Registry with the ADDFLDENC
command, allow the user to optionally specify a logical file name
to be created over the external physical file. This new logical
file will be keyed by the Field Identifier (XXFLDID) and the
encrypted value (XXVALUE). This is useful if a programmer needs
to retrieve (chain out to) a record from an external file using
an encrypted value.

ENHANCE: When adding a field in the Encryption Registry with the ADDFLDENC
command, allow the user to optionally specify a mask value to
apply to the field value when it is decrypted with the new ILE
procedures of DecFld2 & GetEncFld2 and new program APIs of
CRRP623 & CRRP624. For instance, a specified mask value of
'************9999' would only show the last 4 digits of a credit
card number.

ENHANCE: Created a new command called CHGFLDMSK (Change Field Mask) which
will allow a user to change the mask value for an existing
Field Identifier in the Encryption Registry.

ENHANCE: Created a new ILE procedure called DecFld2 in service program
CRSP505. This ILE procedure will apply a mask to the decrypted
field value which is stored in the customer's database file.

ENHANCE: Created a new program API called CRRP623 which will apply a
mask to the decrypted field value which is stored in the
customer's database file.

ENHANCE: Created a new ILE procedure called GetEncFld2 in service program
CRSP505. This ILE procedure will apply a mask to the decrypted
field value which is retrieved from an external file.

ENHANCE: Created a new program API called CRRP624 which will apply a
mask to the decrypted field value which is retrieved from an
external file.

ENHANCE: Created a new command called ENCFIL (Encrypt File) which can be
used to encrypt stream files, physical files and save files using
the AES algorithm. The user can specify either a password or a
key for the encryption process.

ENHANCE: Created a new command called DECFIL (Decrypt File) which can be
used to decrypt stream files, physical files and tape files using
the AES algorithm. The user can specify either a password or a
key for the decryption process.

ENHANCE: Created a new command called ENCOBJ (Encrypt Object) which can be
used to encrypt one or more objects using the AES algorithm. The
encrypted objects can be targeted to the IFS or a tape device
for encrypted backups. The user can specify either a password or
a key for the encryption process.

ENHANCE: Created a new command called DECOBJ (Decrypt Object) which can be
used to decrypt one or more objects using the AES algorithm.
Either the IFS or a tape device can be the source of the encrypted
data. The user can specify a password or a key for the decryption
process.

ENHANCE: Created a new command called ENCLIB (Encrypt Library) which can be
used to encrypt one or more libraries using the AES algorithm. The
encrypted libraries can be targeted to the IFS or a tape device
for encrypted backups. The user can specify either a password or
a key for the encryption process.

ENHANCE: Created a new command called DECLIB (Decrypt Library) which can be
used to decrypt one or more libraries using the AES algorithm.
Either the IFS or a tape device can be the source of the encrypted
data. The user can specify a password or a key for the decryption
process.

ENHANCE: Created a new command called ENCSAVF (Encrypt Save-File) which can
be used to encrypt one or more Save Files using the AES algorithm.
The encrypted Save Files can be targeted to the IFS or a tape
device for encrypted backups. The user can specify either a
password or a key for the encryption process.

ENHANCE: Created a new command called DECSAVF (Decrypt Save-File) which can
be used to decrypt one or more Save Files using the AES algorithm.
Either the IFS or a tape device can be the source of the encrypted
data. The user can specify a password or a key for the decryption
process.

ENHANCE: Created a new menu called CRYPTO5 for the new file and object
encryption commands of ENCFIL, DECFIL, ENCOBJ, DECOBJ, ENCLIB,
DECLIB, ENCSAVF and DECSAVF. This new menu is accessible from
the main Crypto Complete menu.

ENHANCE: Created a new menu called CRYPTO6 for the RPG source examples.
The new menu is accessible from the main Crypto Complete menu.

ENHANCE: Created a new menu called CRYPTO7 for the Field Encryption Key
commands of WRKFLDKEY, CHGFLDKEY and TRNFLDKEY. This new menu
is accessible from the Field Encryption Menu of CRYPTO4.

ENHANCE: Created a new menu called CRYPTO8 for the Field Encryption Trigger
commands of RMVFLDTRG and ADDFLDTRG. This new menu
is accessible from the Field Encryption Menu of CRYPTO4.

ENHANCE: Documented how to use the %DEC built-in-function to convert
an alphanumeric index number to decimal. Added to Programmers
Guide and source examples.

Version 1.21 (10/29/2007)

FIX: In CRRP616, allow decrypting a field value when triggers are
specified for the field in the encryption registry.
View user's profile Send private message Send e-mail Visit poster's website
Version 1.51 (2/25/2008)
  Linoma Software Forum Index -> Crypto Complete
You can post new topics in this forum
You can reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
All times are GMT - 6 Hours  
Page 1 of 1  

  
  
 This forum is locked: you cannot post, reply to, or edit topics.  This topic is locked: you cannot edit posts or make replies.  



Powered by phpBB 2.0.6 © 2001-2003 phpBB Group Style created by Vjacheslav Trushkin