directproject reference implementation 4.0 greg meyer @greg_meyer93 director, distinguished...
TRANSCRIPT
DirectProject Reference Implementation
4.0Greg Meyer@Greg_Meyer93Director, Distinguished Engineer, Cerner Corp
0 To NOW
2011 2012 20132010
June Bakeoff
Feb RI 1.0 Release
OctoberCode-A-Thon
CollabNet
FallCert Discovery
Implementation Guide
Oct2.0
Notification Delivery
SpringScalable TrustBlueButton+
July3.0
Policy Enablement
4.0 Major Features
2014 2015
Jan Config update to REST
Spring RDBM Audit
SummerPKCS 11 Support
Winter 20154.0 RI Release
What’s New
• Updated Config Service• Complete reimplementation of Config service API to RESTful
resources.• Pluggable authentication model to service API
• Default RI profile uses a custom BasicAuth configuration.• Certificate private keys are now encrypted by default.
• Supports pluggable secret key access to decypt private keys.• New RDBMS Audit Store
• Replaces log file based auditing and writes audit events to a configurable RDBMS.
• Supports pluggable auditor implementation via James configuration file.
What’s New
• PKCS11 Support• Supports secret storage in PCKS11 modules.
• Tested with SafeNet eTokenPro for USB modules and SafeNet Luna 1700 & 7000 for network appliances.
• Adds FIPS 140-2 key protection support (tested up to level 3).• Future iteration will support cryptographic functions on HSMs, but
most likely not make 4.0 release• Last Mile Encrytpion
• Default James 3 config will force SSL for client apps over SMTP, IMAP, and POP3.• Not support in James 2.x due to limited SSL support.
• Numerous Bug Fixes Including:• Issues found in MU2 NIST testing• XDR/XDM concurrency issues.
Goal To Release in Q1 of 2015
Release