HP-UX Whitelisting Version A.01.02 Release Notes (766165-001,March 2014)

2 What’s new in Whitelisting A.01.02

Whitelisting A.01.02 consists of the following changes:

• In Whitelisting A.01.02, the restriction of creating and accessing a directory with depth more

than 50 is fixed. Users can now create and access directories of depth greater than 50.

• Till Whitelisting A.01.01, signature creation in the policy metadata or signature metadata

was created using the SHA1 algorithm. In Whitelisting A.01.02, all signatures of signature

metadata and policy metadata are signed using SHA2 as per the NIST recommendation that

federal agencies must stop using SHA-1 for generating digital signatures. However, binaries

signed and policies created with earlier versions of Whitelisting which used SHA1, will continue

to be valid. Support for RSA 512 keys is removed starting from WLI 01.02. However, the

existing policies created using RSA 512 keys with previous versions of WLI will continue to

be valid.