DirectProject Reference Implementation 4.0 Greg Meyer @Greg_Meyer93 Director, Distinguished...
-
Upload
ethel-byrd -
Category
Documents
-
view
216 -
download
0
Transcript of DirectProject Reference Implementation 4.0 Greg Meyer @Greg_Meyer93 Director, Distinguished...
![Page 1: DirectProject Reference Implementation 4.0 Greg Meyer @Greg_Meyer93 Director, Distinguished Engineer, Cerner Corp.](https://reader030.fdocuments.us/reader030/viewer/2022032415/56649efc5503460f94c10581/html5/thumbnails/1.jpg)
DirectProject Reference Implementation
4.0Greg Meyer@Greg_Meyer93Director, Distinguished Engineer, Cerner Corp
![Page 2: DirectProject Reference Implementation 4.0 Greg Meyer @Greg_Meyer93 Director, Distinguished Engineer, Cerner Corp.](https://reader030.fdocuments.us/reader030/viewer/2022032415/56649efc5503460f94c10581/html5/thumbnails/2.jpg)
0 To NOW
2011 2012 20132010
June Bakeoff
Feb RI 1.0 Release
OctoberCode-A-Thon
CollabNet
FallCert Discovery
Implementation Guide
Oct2.0
Notification Delivery
SpringScalable TrustBlueButton+
July3.0
Policy Enablement
![Page 3: DirectProject Reference Implementation 4.0 Greg Meyer @Greg_Meyer93 Director, Distinguished Engineer, Cerner Corp.](https://reader030.fdocuments.us/reader030/viewer/2022032415/56649efc5503460f94c10581/html5/thumbnails/3.jpg)
4.0 Major Features
2014 2015
Jan Config update to REST
Spring RDBM Audit
SummerPKCS 11 Support
Winter 20154.0 RI Release
![Page 4: DirectProject Reference Implementation 4.0 Greg Meyer @Greg_Meyer93 Director, Distinguished Engineer, Cerner Corp.](https://reader030.fdocuments.us/reader030/viewer/2022032415/56649efc5503460f94c10581/html5/thumbnails/4.jpg)
What’s New
• Updated Config Service• Complete reimplementation of Config service API to RESTful
resources.• Pluggable authentication model to service API
• Default RI profile uses a custom BasicAuth configuration.• Certificate private keys are now encrypted by default.
• Supports pluggable secret key access to decypt private keys.• New RDBMS Audit Store
• Replaces log file based auditing and writes audit events to a configurable RDBMS.
• Supports pluggable auditor implementation via James configuration file.
![Page 5: DirectProject Reference Implementation 4.0 Greg Meyer @Greg_Meyer93 Director, Distinguished Engineer, Cerner Corp.](https://reader030.fdocuments.us/reader030/viewer/2022032415/56649efc5503460f94c10581/html5/thumbnails/5.jpg)
What’s New
• PKCS11 Support• Supports secret storage in PCKS11 modules.
• Tested with SafeNet eTokenPro for USB modules and SafeNet Luna 1700 & 7000 for network appliances.
• Adds FIPS 140-2 key protection support (tested up to level 3).• Future iteration will support cryptographic functions on HSMs, but
most likely not make 4.0 release• Last Mile Encrytpion
• Default James 3 config will force SSL for client apps over SMTP, IMAP, and POP3.• Not support in James 2.x due to limited SSL support.
• Numerous Bug Fixes Including:• Issues found in MU2 NIST testing• XDR/XDM concurrency issues.
![Page 6: DirectProject Reference Implementation 4.0 Greg Meyer @Greg_Meyer93 Director, Distinguished Engineer, Cerner Corp.](https://reader030.fdocuments.us/reader030/viewer/2022032415/56649efc5503460f94c10581/html5/thumbnails/6.jpg)
Goal To Release in Q1 of 2015
Release