For the latest version, please use Key Management System 3.9.2!

Release 3.6.0

Date: 2025-02-12

Bugfixes

  • MTG KMS-Server

    • If generating an Object with an already existing name, now NonUniqueNameAttribute will be returned as ResultReason instead of InvalidField

    • During the register operation of a certificate, the Activation or Deactivation Date was not handled correctly. The 'Not Before' and 'Not After' date from the certificate is now always used.

    • Compromise Date and Compromise Occurrence Date where set wrong with get Attributes.

Features and updates

All MTG Java Application Projects

List of all MTG Java Application Projects see [MTG_ERS_JAVA].

Supported Operating Systems [OS].

  • Spring boot version increased to 3.3.8 (includes tomcat 10.1.34).

  • Updated bouncycastle dependency version to 1.80.

  • MTG KMS-Server

    • Insert new Index managed_object_idx_search for Locate Operation.

    • Added new endpoint for updating a HsmProfile.

    • Improvement of error messages in the event of errors in the CMP configuration, especially with the signer keystore.

    • If the register operation is executed with a certificate, the Cryptographic Usage Mask Verify is set if the Key Usage digitalSignature is set.

    • Mapping table of certificate key usage to cryptographic usage mask inserted in MTG-KMS KMIP Objects & Operations document.

  • MTG Mini-CA

    • Enums for history tables via flyway updated.

MTG KMS-PKCS#11-Library

Support of OpenSSL versions, see [OpenSSL_compatibility].

Supported Operating Systems [OS_PKCS11].

  • none

MTG KMS-UI

  • Upgraded libraries.

  • Enabled the option of editing the name of HSM Profile in KMS Admin UI.

  • Added a tooltip to inform user that in case of renaming HSM-Profile, the name of the already generated KEK in the HSM would not be changed in KMS Admin UI.

Installation instructions

  • none