1 <!-- HTML header for doxygen 1.8.10--> 2 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> 3 <html xmlns="http://www.w3.org/1999/xhtml"> 4 <head> 5 <meta http-equiv="Content-Type" content="text/xhtml;charset=UTF-8"/> 6 <meta http-equiv="X-UA-Compatible" content="IE=9"/> 7 <meta name="generator" content="Doxygen 1.8.14"/> 8 <title>Intel® Enhanced Privacy ID SDK: What's New</title> 9 <link href="tabs.css" rel="stylesheet" type="text/css"/> 10 <script type="text/javascript" src="jquery.js"></script> 11 <script type="text/javascript" src="dynsections.js"></script> 12 <link href="navtree.css" rel="stylesheet" type="text/css"/> 13 <script type="text/javascript" src="resize.js"></script> 14 <script type="text/javascript" src="navtreedata.js"></script> 15 <script type="text/javascript" src="navtree.js"></script> 16 <script type="text/javascript"> 17 /* @license magnet:?xt=urn:btih:cf05388f2679ee054f2beb29a391d25f4e673ac3&dn=gpl-2.0.txt GPL-v2 */ 18 $(document).ready(initResizable); 19 /* @license-end */</script> 20 <link href="doxygen.css" rel="stylesheet" type="text/css" /> 21 <link href="epidstyle.css" rel="stylesheet" type="text/css"/> 22 </head> 23 <body> 24 <div id="top"><!-- do not remove this div, it is closed by doxygen! --> 25 <div id="titlearea"> 26 <table cellspacing="0" cellpadding="0"> 27 <tbody> 28 <tr style="height: 56px;"> 29 <td id="projectalign" style="padding-left: 0.5em;"> 30 <div id="projectname"><a 31 onclick="storeLink('index.html')" 32 id="projectlink" 33 class="index.html" 34 href="index.html">Intel® Enhanced Privacy ID SDK</a> 35  <span id="projectnumber">6.0.1</span> 36 </div> 37 </td> 38 </tr> 39 </tbody> 40 </table> 41 </div> 42 <!-- end header part --> 43 <!-- Generated by Doxygen 1.8.14 --> 44 </div><!-- top --> 45 <div id="side-nav" class="ui-resizable side-nav-resizable"> 46 <div id="nav-tree"> 47 <div id="nav-tree-contents"> 48 <div id="nav-sync" class="sync"></div> 49 </div> 50 </div> 51 <div id="splitbar" style="-moz-user-select:none;" 52 class="ui-resizable-handle"> 53 </div> 54 </div> 55 <script type="text/javascript"> 56 /* @license magnet:?xt=urn:btih:cf05388f2679ee054f2beb29a391d25f4e673ac3&dn=gpl-2.0.txt GPL-v2 */ 57 $(document).ready(function(){initNavTree('_change_log.html','');}); 58 /* @license-end */ 59 </script> 60 <div id="doc-content"> 61 <div class="header"> 62 <div class="headertitle"> 63 <div class="title">What's New </div> </div> 64 </div><!--header--> 65 <div class="contents"> 66 <div class="textblock"><h2>[6.0.1] - 2018-05-04</h2> 67 <h3>Changed</h3> 68 <ul> 69 <li>Updated Intel(R) IPP Cryptography library to version 2018 (Update 2.1).</li> 70 </ul> 71 <h3>Fixed</h3> 72 <ul> 73 <li>The member library now includes the tpm2 subcomponent when built using SCons, instead of requiring a separate member.tpm2 library.</li> 74 </ul> 75 <h3>Known Issues</h3> 76 <ul> 77 <li>Only the SHA-256 hash algorithm is supported when using the SDK with the IBM TPM simulator due to a defect in version 532 of the simulator.</li> 78 <li>Basenames are limited to 124 bytes in TPM mode.</li> 79 <li>Scons build will not work natively on ARM. You can still build using <code>make</code> or cross compile.</li> 80 </ul> 81 <h2>[6.0.0] - 2017-12-15</h2> 82 <h3>Added</h3> 83 <ul> 84 <li>The member can now be built with a substantially reduced code size using a compilation option.</li> 85 <li>New context lifetime management APIs have been added to member to give callers more control of memory allocation.</li> 86 <li>New member API <code>EpidClearRegisteredBasenames</code> has been added to clear registered basenames without recreating the member.</li> 87 </ul> 88 <h3>Changed</h3> 89 <ul> 90 <li><code>EpidRegisterBaseName</code> was renamed to <code>EpidRegisterBasename</code> because basename is a single word.</li> 91 <li>Command-line parsing library used by samples and tools has been replaced by Argtable3.</li> 92 </ul> 93 <h3>Deprecated</h3> 94 <ul> 95 <li><code>EpidMemberCreate</code> has been deprecated. This API has been superseded by <code>EpidMemberGetSize</code> and <code>EpidMemberInit</code>.</li> 96 <li><code>EpidMemberDelete</code> has been deprecated. This API has been superseded by <code>EpidMemberDeinit</code>.</li> 97 </ul> 98 <h3>Removed</h3> 99 <ul> 100 <li><code>size_optimized_release</code> build configuration has been removed. Use the compilation option to build member with reduced code size.</li> 101 </ul> 102 <h3>Known Issues</h3> 103 <ul> 104 <li>Only the SHA-256 hash algorithm is supported when using the SDK with the IBM TPM simulator due to a defect in version 532 of the simulator.</li> 105 <li>Basenames are limited to 124 bytes in TPM mode.</li> 106 <li>Scons build will not work natively on ARM. You can still build using <code>make</code> or cross compile.</li> 107 </ul> 108 <h2>[5.0.0] - 2017-09-15</h2> 109 <h3>Added</h3> 110 <ul> 111 <li>The member implementation now has the option to support signing using a TPM, using the ECDAA capabilities of TPM 2.0.</li> 112 </ul> 113 <h3>Changed</h3> 114 <ul> 115 <li>Member API updated to unify HW and SW use cases.<ul> 116 <li>Added<ul> 117 <li><code>ProvisionKey</code></li> 118 <li><code>ProvisionCompressed</code></li> 119 <li><code>ProvisionCredential</code></li> 120 <li><code>Startup</code></li> 121 </ul> 122 </li> 123 <li>Parameters changed<ul> 124 <li><code>MemberCreate</code></li> 125 <li><code>RequestJoin</code></li> 126 </ul> 127 </li> 128 <li>Removed or made private<ul> 129 <li><code>WritePrecomp</code></li> 130 <li><code>SignBasic</code></li> 131 <li><code>NrProve</code></li> 132 <li><code>AssemblePrivKey</code></li> 133 </ul> 134 </li> 135 </ul> 136 </li> 137 <li><code>EpidRequestJoin</code> was renamed to <code>EpidCreateJoinRequest</code> to make it clear that it is not directly communicating with the issuer.</li> 138 </ul> 139 <h3>Fixed</h3> 140 <ul> 141 <li><code>EpidCreateJoinRequest</code> creates valid join requests. This fixes a regression in <code>EpidRequestJoin</code> introduced in 4.0.0.</li> 142 </ul> 143 <h3>Known Issues</h3> 144 <ul> 145 <li>Only the SHA-256 hash algorithm is supported when using the SDK with the IBM TPM simulator due to a defect in version 532 of the simulator.</li> 146 <li>Basenames are limited to 124 bytes in TPM mode.</li> 147 </ul> 148 <h2>[4.0.0] - 2017-04-25</h2> 149 <h3>Added</h3> 150 <ul> 151 <li>The member implementation now provides an internal interface that gives guidance on partitioning member operations between highly sensitive ones that use f value of the private key, and less sensitive operations that can be performed in a host environment.</li> 152 <li>New member API <code>EpidAssemblePrivKey</code> was added to help assemble and validate the new member private key that is created when a member either joins a group (using the join protocol) or switches to a new group (as the result of a performance rekey).</li> 153 </ul> 154 <h3>Changed</h3> 155 <ul> 156 <li>Updated Intel(R) IPP Cryptography library to version 2017 (Update 2).</li> 157 <li>The mechanism to set the signature based revocation list (SigRL) used for signing was changed. <code>EpidMemberSetSigRl</code> must be used to set the SigRL. The SigRL is no longer a parameter to <code>EpidSign</code>. This better models typical use case where a device stores a revocation list and updates it independently of signing operations.</li> 158 </ul> 159 <h3>Removed</h3> 160 <ul> 161 <li>Removed <code>EpidWritePreSigs</code> API. Serialization of pre-computed signatures is a risky capability to provide, and simply expanding the internal pool via <code>EpidAddPreSigs</code> still provides most of the optimization benefits.</li> 162 <li>The <code>EpidIsPrivKeyInGroup</code> API is no longer exposed to clients. It is no longer needed because the new member API <code>EpidAssemblePrivKey</code> performs this check.</li> 163 </ul> 164 <h3>Fixed</h3> 165 <ul> 166 <li>When building with commercial version of the Intel(R) IPP Cryptography library, optimized functions are now properly invoked, making signing and verification operations ~2 times faster</li> 167 <li>SHA-512/256 hash algorithm is now supported.</li> 168 <li>README for compressed data now correctly documents the number of entries in revocation lists.</li> 169 <li>The <code>verifysig</code> sample now reports a more clear error message for mismatched SigRLs.</li> 170 <li>The default scons build will now build for a 32-bit target on a 32-bit platform.</li> 171 </ul> 172 <h3>Known Issues</h3> 173 <ul> 174 <li>Scons build will not work natively on ARM. You can still build using <code>make</code> or cross compile.</li> 175 </ul> 176 <h2>[3.0.0] - 2016-11-22</h2> 177 <h3>Added</h3> 178 <ul> 179 <li>Support for verification of Intel(R) EPID 1.1 members.</li> 180 <li>Make-based build system support.</li> 181 <li>Sample material includes compressed keys.</li> 182 <li>Enhanced documentation, including step-by-step walkthroughs of example applications.</li> 183 <li>Validated on additional IoT platforms.<ul> 184 <li>Ostro Linux</li> 185 <li>Snappy Ubuntu Core</li> 186 </ul> 187 </li> 188 </ul> 189 <h3>Changes</h3> 190 <ul> 191 <li>A new verifier API has been added to set the basename to be used for verification. Verifier APIs that used to accept basenames now use the basename set via <code>EpidVerifierSetBasename</code>.</li> 192 <li>The verifier pre-computation structure has been changed to include the group ID to allow detection of errors that result from providing a pre-computation blob from a different group to <code>EpidVerifierCreate</code>.</li> 193 </ul> 194 <h3>Fixes</h3> 195 <ul> 196 <li>The kEpidxxxRevoked enums have been renamed to be consistent with other result return values.</li> 197 </ul> 198 <h3>Known Issues</h3> 199 <ul> 200 <li>SHA-512/256 hash algorithm is not supported.</li> 201 </ul> 202 <h2>[2.0.0] - 2016-07-20</h2> 203 <h3>Added</h3> 204 <ul> 205 <li>Signed binary issuer material support.<ul> 206 <li>Binary issuer material validation APIs.</li> 207 <li>Updated sample issuer material.</li> 208 <li>Updated samples that parse signed binary issuer material.</li> 209 </ul> 210 </li> 211 <li>Compressed member private key support.</li> 212 <li>Validated on additional IoT platforms.<ul> 213 <li>Windows 10 IoT Core</li> 214 <li>WindRiver IDP</li> 215 </ul> 216 </li> 217 </ul> 218 <h3>Changed</h3> 219 <ul> 220 <li>The default hash algorithm has changed. It is now SHA-512.</li> 221 <li>Functions that returned <code>EpidNullPtrErr</code> now return <code>EpidBadArgErr</code> instead.</li> 222 </ul> 223 <h3>Fixed</h3> 224 <ul> 225 <li>Updated build flags to work around GCC 4.8.5 defect.</li> 226 </ul> 227 <h2>[1.0.0] - 2016-03-03</h2> 228 <h3>Added</h3> 229 <ul> 230 <li>Basic sign and verify functionality</li> 231 <li>Dynamic join support for member</li> 232 <li>Apache 2.0 License </li> 233 </ul> 234 </div></div><!-- contents --> 235 </div><!-- doc-content --> 236 <!-- HTML footer for doxygen 1.8.10--> 237 <!-- start footer part --> 238 <div id="nav-path" class="navpath"><!-- id is needed for treeview function! --> 239 <ul> 240 <li class="footer"> 241 © 2016-2017 Intel Corporation 242 </li> 243 </ul> 244 </div> 245 </body> 246 </html> 247
