Welcome to the Machina Tools SDK for Java v2.9
Deterministic Encryption Support
The SDK has added support for deterministic encryption, allowing users to perform equality comparisons on encrypted data values.
Space-Efficient Encryption of Small Binary Data Values
BinaryCipher family of cipher implementations has been added to the SDK. These implementations allow for the protection of small binary data values like the existing
ChunkCipher implementations, but without the additional space needed to encode ciphertexts using the base64 algorithm.
The SDK library JAR now includes additional metadata to enable usage in GraalVM native binary applications.
Support for Machina Identity Assertion Functions
com.ionic.sdk.agent.Agent now includes additional APIs in support of Machina identity provider operations:
CreateIdentityAssertionallows a Machina-enabled device to generate an assertion, which can be used to prove that it has a valid enrollment in the given keyspace.
ValidateIdentityAssertionallows a non-Machina-enabled device to verify the assertion.
Additional implementations of the interface
KeyServices are available in the distributable source (including the test source).
KeyServicesMinimalis a partial implementation of
KeyServices, with default methods.
KeyServicesSingleKeywraps a single cryptography key, useful for deterministic encryption scenarios.
KeyServices, with a
KeyVaultBaseas a backing persistent store of key data.
TestKeyServiceswraps access to a single fixed key, with no network access. Useful in unit test scenarios.
Additional Documentation Included with Release Distributable
The SDK release distributable now includes the following documents, in markdown and html formats:
README, describing high-level SDK project functionality
LICENSE, providing the Machina license agreement for Ionic resources
CHANGELOG, with line items providing summary information about the issues included in each release
RELEASE_NOTES, detailing the features and fixes included in the release
- Additional detail describes the data model associated with the APIs
GetKeytransaction responses now include any
KeyObligationsspecified by the Machina service.
- Extraneous information about the data associated with a serialized
ProfilePersistoris now logged at an appropriate log level.
DeviceProfilePersistorPasswordnow documents the minimum password length requirement.