DirectProject Reference Implementation

4.0Greg Meyer@Greg_Meyer93Director, Distinguished Engineer, Cerner Corp

0 To NOW

2011 2012 20132010

June Bakeoff

Feb RI 1.0 Release

OctoberCode-A-Thon

CollabNet

FallCert Discovery

Implementation Guide

Oct2.0

Notification Delivery

SpringScalable TrustBlueButton+

July3.0

Policy Enablement

4.0 Major Features

2014 2015

Jan Config update to REST

Spring RDBM Audit

SummerPKCS 11 Support

Winter 20154.0 RI Release

What’s New

• Updated Config Service• Complete reimplementation of Config service API to RESTful

resources.• Pluggable authentication model to service API

• Default RI profile uses a custom BasicAuth configuration.• Certificate private keys are now encrypted by default.

• Supports pluggable secret key access to decypt private keys.• New RDBMS Audit Store

• Replaces log file based auditing and writes audit events to a configurable RDBMS.

• Supports pluggable auditor implementation via James configuration file.

What’s New

• PKCS11 Support• Supports secret storage in PCKS11 modules.

• Tested with SafeNet eTokenPro for USB modules and SafeNet Luna 1700 & 7000 for network appliances.

• Adds FIPS 140-2 key protection support (tested up to level 3).• Future iteration will support cryptographic functions on HSMs, but

most likely not make 4.0 release• Last Mile Encrytpion

• Default James 3 config will force SSL for client apps over SMTP, IMAP, and POP3.• Not support in James 2.x due to limited SSL support.

• Numerous Bug Fixes Including:• Issues found in MU2 NIST testing• XDR/XDM concurrency issues.

Goal To Release in Q1 of 2015

Release