Release Notes

4 Changes

RSA BSAFE Micro Edition Suite 4.4 Release Notes

This release of MES is designed to include the following changes:

• Updated operating environment support.

For more information, see Operating Environment Information.

• Fixes for specific issues.

For more information, see Enhancements and Resolved Issues.

• The two separate signature files, which were used for the FIPS 140-2 module

integrity check, are now embedded into the main FIPS 140-2 module shared

library file.

• Initialization Vector (IV) generation for symmetric key encryption is updated for

operations that use asymmetric keys. The minimum security strength is changed

using a call to

R_SSL_CTX_set_info().

• Default Diffie-Hellman (DH) key exchange, key generation, and key parameter

generation are updated to use approved methods outlined in SP 800-56A instead

of the IEEE P1363 specification.

The default key exchange and key generation implementations allow the use of

legacy parameters, which might not have the sub-prime value available.

• When creating asymmetric key objects,

– The new default algorithm is FIPS 186-3, formerly X9.31. X9.31 cannot be

used in FIPS mode, but is still available in the FIPS library.

– Minimum key size allowed for RSA FIPS 186-4 compliant key generation,

R_CR_RSA_KEY_GENERATION_FIPS186_3 and

R_CR_RSA_KEY_GENERATION, is 2048 bits.

• Hardening of the Chinese Remainder Theory (CRT) optimization for the RSA

signature algorithm to better withstand attack.

• RSA signature generation and verification using SHA-512/256 are updated to

correct the algorithm identifier. Signature verification accepts both the new

algorithm identifier and the previous incorrect identifier value.