1<!-- HTML header for doxygen 1.8.10--> 2<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> 3<html xmlns="http://www.w3.org/1999/xhtml"> 4<head> 5<meta http-equiv="Content-Type" content="text/xhtml;charset=UTF-8"/> 6<meta http-equiv="X-UA-Compatible" content="IE=9"/> 7<meta name="generator" content="Doxygen 1.8.14"/> 8<title>Intel® Enhanced Privacy ID SDK: What's New</title> 9<link href="tabs.css" rel="stylesheet" type="text/css"/> 10<script type="text/javascript" src="jquery.js"></script> 11<script type="text/javascript" src="dynsections.js"></script> 12<link href="navtree.css" rel="stylesheet" type="text/css"/> 13<script type="text/javascript" src="resize.js"></script> 14<script type="text/javascript" src="navtreedata.js"></script> 15<script type="text/javascript" src="navtree.js"></script> 16<script type="text/javascript"> 17/* @license magnet:?xt=urn:btih:cf05388f2679ee054f2beb29a391d25f4e673ac3&dn=gpl-2.0.txt GPL-v2 */ 18 $(document).ready(initResizable); 19/* @license-end */</script> 20<link href="doxygen.css" rel="stylesheet" type="text/css" /> 21<link href="epidstyle.css" rel="stylesheet" type="text/css"/> 22</head> 23<body> 24<div id="top"><!-- do not remove this div, it is closed by doxygen! --> 25<div id="titlearea"> 26<table cellspacing="0" cellpadding="0"> 27 <tbody> 28 <tr style="height: 56px;"> 29 <td id="projectalign" style="padding-left: 0.5em;"> 30 <div id="projectname"><a 31 onclick="storeLink('index.html')" 32 id="projectlink" 33 class="index.html" 34 href="index.html">Intel® Enhanced Privacy ID SDK</a> 35 <span id="projectnumber">6.0.1</span> 36</div> 37 </td> 38 </tr> 39 </tbody> 40</table> 41</div> 42<!-- end header part --> 43<!-- Generated by Doxygen 1.8.14 --> 44</div><!-- top --> 45<div id="side-nav" class="ui-resizable side-nav-resizable"> 46 <div id="nav-tree"> 47 <div id="nav-tree-contents"> 48 <div id="nav-sync" class="sync"></div> 49 </div> 50 </div> 51 <div id="splitbar" style="-moz-user-select:none;" 52 class="ui-resizable-handle"> 53 </div> 54</div> 55<script type="text/javascript"> 56/* @license magnet:?xt=urn:btih:cf05388f2679ee054f2beb29a391d25f4e673ac3&dn=gpl-2.0.txt GPL-v2 */ 57$(document).ready(function(){initNavTree('_change_log.html','');}); 58/* @license-end */ 59</script> 60<div id="doc-content"> 61<div class="header"> 62 <div class="headertitle"> 63<div class="title">What's New </div> </div> 64</div><!--header--> 65<div class="contents"> 66<div class="textblock"><h2>[6.0.1] - 2018-05-04</h2> 67<h3>Changed</h3> 68<ul> 69<li>Updated Intel(R) IPP Cryptography library to version 2018 (Update 2.1).</li> 70</ul> 71<h3>Fixed</h3> 72<ul> 73<li>The member library now includes the tpm2 subcomponent when built using SCons, instead of requiring a separate member.tpm2 library.</li> 74</ul> 75<h3>Known Issues</h3> 76<ul> 77<li>Only the SHA-256 hash algorithm is supported when using the SDK with the IBM TPM simulator due to a defect in version 532 of the simulator.</li> 78<li>Basenames are limited to 124 bytes in TPM mode.</li> 79<li>Scons build will not work natively on ARM. You can still build using <code>make</code> or cross compile.</li> 80</ul> 81<h2>[6.0.0] - 2017-12-15</h2> 82<h3>Added</h3> 83<ul> 84<li>The member can now be built with a substantially reduced code size using a compilation option.</li> 85<li>New context lifetime management APIs have been added to member to give callers more control of memory allocation.</li> 86<li>New member API <code>EpidClearRegisteredBasenames</code> has been added to clear registered basenames without recreating the member.</li> 87</ul> 88<h3>Changed</h3> 89<ul> 90<li><code>EpidRegisterBaseName</code> was renamed to <code>EpidRegisterBasename</code> because basename is a single word.</li> 91<li>Command-line parsing library used by samples and tools has been replaced by Argtable3.</li> 92</ul> 93<h3>Deprecated</h3> 94<ul> 95<li><code>EpidMemberCreate</code> has been deprecated. This API has been superseded by <code>EpidMemberGetSize</code> and <code>EpidMemberInit</code>.</li> 96<li><code>EpidMemberDelete</code> has been deprecated. This API has been superseded by <code>EpidMemberDeinit</code>.</li> 97</ul> 98<h3>Removed</h3> 99<ul> 100<li><code>size_optimized_release</code> build configuration has been removed. Use the compilation option to build member with reduced code size.</li> 101</ul> 102<h3>Known Issues</h3> 103<ul> 104<li>Only the SHA-256 hash algorithm is supported when using the SDK with the IBM TPM simulator due to a defect in version 532 of the simulator.</li> 105<li>Basenames are limited to 124 bytes in TPM mode.</li> 106<li>Scons build will not work natively on ARM. You can still build using <code>make</code> or cross compile.</li> 107</ul> 108<h2>[5.0.0] - 2017-09-15</h2> 109<h3>Added</h3> 110<ul> 111<li>The member implementation now has the option to support signing using a TPM, using the ECDAA capabilities of TPM 2.0.</li> 112</ul> 113<h3>Changed</h3> 114<ul> 115<li>Member API updated to unify HW and SW use cases.<ul> 116<li>Added<ul> 117<li><code>ProvisionKey</code></li> 118<li><code>ProvisionCompressed</code></li> 119<li><code>ProvisionCredential</code></li> 120<li><code>Startup</code></li> 121</ul> 122</li> 123<li>Parameters changed<ul> 124<li><code>MemberCreate</code></li> 125<li><code>RequestJoin</code></li> 126</ul> 127</li> 128<li>Removed or made private<ul> 129<li><code>WritePrecomp</code></li> 130<li><code>SignBasic</code></li> 131<li><code>NrProve</code></li> 132<li><code>AssemblePrivKey</code></li> 133</ul> 134</li> 135</ul> 136</li> 137<li><code>EpidRequestJoin</code> was renamed to <code>EpidCreateJoinRequest</code> to make it clear that it is not directly communicating with the issuer.</li> 138</ul> 139<h3>Fixed</h3> 140<ul> 141<li><code>EpidCreateJoinRequest</code> creates valid join requests. This fixes a regression in <code>EpidRequestJoin</code> introduced in 4.0.0.</li> 142</ul> 143<h3>Known Issues</h3> 144<ul> 145<li>Only the SHA-256 hash algorithm is supported when using the SDK with the IBM TPM simulator due to a defect in version 532 of the simulator.</li> 146<li>Basenames are limited to 124 bytes in TPM mode.</li> 147</ul> 148<h2>[4.0.0] - 2017-04-25</h2> 149<h3>Added</h3> 150<ul> 151<li>The member implementation now provides an internal interface that gives guidance on partitioning member operations between highly sensitive ones that use f value of the private key, and less sensitive operations that can be performed in a host environment.</li> 152<li>New member API <code>EpidAssemblePrivKey</code> was added to help assemble and validate the new member private key that is created when a member either joins a group (using the join protocol) or switches to a new group (as the result of a performance rekey).</li> 153</ul> 154<h3>Changed</h3> 155<ul> 156<li>Updated Intel(R) IPP Cryptography library to version 2017 (Update 2).</li> 157<li>The mechanism to set the signature based revocation list (SigRL) used for signing was changed. <code>EpidMemberSetSigRl</code> must be used to set the SigRL. The SigRL is no longer a parameter to <code>EpidSign</code>. This better models typical use case where a device stores a revocation list and updates it independently of signing operations.</li> 158</ul> 159<h3>Removed</h3> 160<ul> 161<li>Removed <code>EpidWritePreSigs</code> API. Serialization of pre-computed signatures is a risky capability to provide, and simply expanding the internal pool via <code>EpidAddPreSigs</code> still provides most of the optimization benefits.</li> 162<li>The <code>EpidIsPrivKeyInGroup</code> API is no longer exposed to clients. It is no longer needed because the new member API <code>EpidAssemblePrivKey</code> performs this check.</li> 163</ul> 164<h3>Fixed</h3> 165<ul> 166<li>When building with commercial version of the Intel(R) IPP Cryptography library, optimized functions are now properly invoked, making signing and verification operations ~2 times faster</li> 167<li>SHA-512/256 hash algorithm is now supported.</li> 168<li>README for compressed data now correctly documents the number of entries in revocation lists.</li> 169<li>The <code>verifysig</code> sample now reports a more clear error message for mismatched SigRLs.</li> 170<li>The default scons build will now build for a 32-bit target on a 32-bit platform.</li> 171</ul> 172<h3>Known Issues</h3> 173<ul> 174<li>Scons build will not work natively on ARM. You can still build using <code>make</code> or cross compile.</li> 175</ul> 176<h2>[3.0.0] - 2016-11-22</h2> 177<h3>Added</h3> 178<ul> 179<li>Support for verification of Intel(R) EPID 1.1 members.</li> 180<li>Make-based build system support.</li> 181<li>Sample material includes compressed keys.</li> 182<li>Enhanced documentation, including step-by-step walkthroughs of example applications.</li> 183<li>Validated on additional IoT platforms.<ul> 184<li>Ostro Linux</li> 185<li>Snappy Ubuntu Core</li> 186</ul> 187</li> 188</ul> 189<h3>Changes</h3> 190<ul> 191<li>A new verifier API has been added to set the basename to be used for verification. Verifier APIs that used to accept basenames now use the basename set via <code>EpidVerifierSetBasename</code>.</li> 192<li>The verifier pre-computation structure has been changed to include the group ID to allow detection of errors that result from providing a pre-computation blob from a different group to <code>EpidVerifierCreate</code>.</li> 193</ul> 194<h3>Fixes</h3> 195<ul> 196<li>The kEpidxxxRevoked enums have been renamed to be consistent with other result return values.</li> 197</ul> 198<h3>Known Issues</h3> 199<ul> 200<li>SHA-512/256 hash algorithm is not supported.</li> 201</ul> 202<h2>[2.0.0] - 2016-07-20</h2> 203<h3>Added</h3> 204<ul> 205<li>Signed binary issuer material support.<ul> 206<li>Binary issuer material validation APIs.</li> 207<li>Updated sample issuer material.</li> 208<li>Updated samples that parse signed binary issuer material.</li> 209</ul> 210</li> 211<li>Compressed member private key support.</li> 212<li>Validated on additional IoT platforms.<ul> 213<li>Windows 10 IoT Core</li> 214<li>WindRiver IDP</li> 215</ul> 216</li> 217</ul> 218<h3>Changed</h3> 219<ul> 220<li>The default hash algorithm has changed. It is now SHA-512.</li> 221<li>Functions that returned <code>EpidNullPtrErr</code> now return <code>EpidBadArgErr</code> instead.</li> 222</ul> 223<h3>Fixed</h3> 224<ul> 225<li>Updated build flags to work around GCC 4.8.5 defect.</li> 226</ul> 227<h2>[1.0.0] - 2016-03-03</h2> 228<h3>Added</h3> 229<ul> 230<li>Basic sign and verify functionality</li> 231<li>Dynamic join support for member</li> 232<li>Apache 2.0 License </li> 233</ul> 234</div></div><!-- contents --> 235</div><!-- doc-content --> 236<!-- HTML footer for doxygen 1.8.10--> 237<!-- start footer part --> 238<div id="nav-path" class="navpath"><!-- id is needed for treeview function! --> 239 <ul> 240 <li class="footer"> 241 © 2016-2017 Intel Corporation 242 </li> 243 </ul> 244</div> 245</body> 246</html> 247