================================================= Net iD Enterprise, version 5.5.0 - Release Notes ================================================= New features ---------------------------------------------------------------------------------------- 5.5.0 (Released 2011-02-07) - Support for Gemalto .Net Smart Cards and Microsoft Minidrivers version 4 to 6. - Added Certificate Provider for customized certificate selection dialog. - Added command line tool for change/unlock pin. - Updated support for reading/writing iClassID cards. - Added reading of Mifare and iclassID for Watch/Connector. - Added support for dual uninstallation (32bit/64bit). Using dual installation package to uninstall will uninstall both packages. - Added language support for Credential/Certificate Provider. - Updated SSO push logon information. - Support for Safari 5 with Mac OS X. 5.4.1 (Released 2010-10-05) -Enhanced Tokend support for MacOSX regarding AD login -Enhanced Credential Provider with features like unblockPIN, card attempts left -Updated Net iD Local Webadministration 5.4.0 (Released 2010-07-01) -New feature: WLD (Workstation Lock Down smart card shell) -New feature: Credential Provider -Added possiblity to configure default certificate for CSP -Tokend support for MacOSX to handle smart card logon -Safari5 support for MacOSX -Web based Net iD Administration -New feature: MiFare -Updated Watch 5.3 (Released 2010-02-08) -Support for Microsoft VPN client (Windows 7) -Support for RFID read/write -New local administration portal for Windows/Linux/MacOSX -NetControl close for Firefox 3, Internet Explorer 8 -Added card token label to dynamic strings. May change default names to more user friendly names, i.e. "Instant IP2" > "Employee card". -New advanced dialog for certificate selection on Windows -Soft token support for Safari on MacOSX -Added Apple keychain as new soft token format -Added PIN expire policy -Added PIN history policy -New component - Net iD Wrapper GINA 5.2 (Released 2009-09-01) -Windows 7 support -Windows Server 2008 R2 support -New version of Net iD Transport supporting file based certificates stored on smart cards -New version of Net iD Connector supporting several thin client models -New version of Net iD Watch with a number of new features -New version of Net iD Minidriver supporting additional smart card models -Performance optimization and several other improvements, e.g. new encryption standards 5.1 (Released 2009-03-02) -Updated performance when using smart card logon 5.0 (Released 2008-12-16) -Default package will install all Net iD system files in %programfiles%\Net iD -Changed configuration extension: ini => cfg 4.9 -Net iD Crypt support for Windows Vista -Updated performance in Net iD. Enable faster logon with native and Java cards -Universal build for Mac OS X (PPC and Intel) 4.8 -Added support for 64-bit operating system (Linux, Mac OS X, Windows) -Added support for Windows Server 2008 4.7 -Added support for Mac OS X 10.5 -Added support for Ubuntu 7.10 4.6 -Changed copyright to SecMaker AB -New smart card support -Full Windows Vista support 4.5 -Added support for Setec SetCosXpresso -Siemens CardOS initialize support 4.4 -Updated for Windows Vista -Updated for Microsoft Windows Mobile 5/Windows CE 5.0 4.3 -Added following languages: Turkish -License information for all languages 4.2 -New language support -Error message when using smart card logon -Added support for new versions of Windows, Linux and Mac OS X 4.1 -Updated Eventlog component -Changed enumerate container behavior for CSP to avoid Internet Explorer bug -Updated config file -Changed "Svenska (SAMSET)" button names for sign/authenticate on Mac OS X and Windows -Update support for Netscape/Mozilla/FireFox -Updated Net iD plugin for webbadministration (import/export tokens) -Added new functionality for Signer plugin -Updated support in RDP Release Information ---------------------------------------------------------------------------------------- 5.5.0.27: - Disabled duplicate context for CSP. - Added Gemalto default test key for secure messaging. - Fixed read file problem GemSAFE v1/v2. - Fixed get pin attempts left for RPS card. - Fixed read ISO7816-15 PrKDF with private access. - Fixed .Net smart card signature pin enrollment for second key. - Added MiniDriver parameter DisablePinCache=0/1 and DisableFileCache=0/1 to avoid Microsoft caching problem. Both have default value 0 (cache active). - Updated SSO push logon information. - Fixed support CRYPT_NOHASHOID for CryptVerifySignature in CSP. - Fixed custom card name for CSP/MiniDriver. Add entry NamePrefix for respective component. - Fixed problem with secondary certificates for MiniDriver. - Fixed problem with secondary PIN for MiniDriver. - Fixed problem with enroll via MMC, will not delete "default" keys. - Fixed problem for minidriver with too long key id. - Fixed PIN pad problem with BCD coding (Nordea VISA card). - Added language support for Credential/Certificate Provider. Prefix title, subtitle, textabove or textbelow with language short name to get different strings depending on langauage. - Updated handling of multiple PINs for PKCS#15 profile. - Fixed detect card immediately after detect new reader. - Fixed Watch shutdown immediately if no event commands available. - Fixed win32/win64 dual service support. - Utf8 and unicode support rewritten for Linux/MacOSX. - Updated support for reading/writing IClassID cards. - Fixed configuration parameter [SingleSignOn]>Disable will also disable SSO2, only SSO earlier. - Fixed limitation in configuration file, will handle parsing of bad encoded data object. - Added command line tool for change/unlock pin. - Added support for dual uninstall. Will extract and run silent uninstall for all packages included in the installation package. - Added support Gemalto .NET smart card. - Added support loading zlib library for compression of certificate for interopability with Gemalto .NET smart card minidriver. Will always try to load library zlib.dll/libzlib.so/libzlib.dylib, but file to load may be configured using Compress>Library. - Added support for using hexadecimal values for PIN/PUK. Needed when PUK value is not a string, i.e. 2DES key. All values beginning with '0x' and containing only hexadecimal digits '0'-'9' or 'A'-'F' will be converted. - Added support for dual uninstallation. Using dual installation package to uninstall will uninstall both packages. - Added configuration parameter [CredentialProvider]>BMP(InsertCard) to specify image for insert card prompt. - Changed behavior, will always set root CA certificates as trusted for PKCS11 library. The result is root CA certificates may be trusted by Firefox. - Added reading of mifare and iclassid for Watch/Connector. - Added Certificate Provider for customized certificate selection dialog. - Added Change Credential Provider for customized Ctrl-Alt-Del change PIN dialog. 5.4.1.34: - Fixed uninstall local configuration for Linux/MacOSX. - Added possiblity for install pkcs11 in Firefox profiles for MacOSX/Linux. - Fixed certificate select dialog for MacOSX. - Fixed show pin attempts for SSO2. - Added ATR for Buypass card. - Added configuration parameter to limit the available certificates. Set allowed issuers with [License] > Issuers. All issuers allowed if nothing specified. - Added [Smart Card] > PinType = 4, for only digits allowed. Will be used by card profiles not storing pin information on card, i.e. Buypass. - Enhanced support for sending SSO username/password stored on card to different windows. Will handle edit boxes with any class name as long as test "edit" is part of name. Will also send "enter" to main window if OK button not found. - Updated Setec SetCOS 4.4.1 card, Instant EID IP2 profile, to erase key files before generating new key pairs. - CheckSoftExpire introduced, same behavior as CheckCardExpire, but for soft tokens instead of smart cards. - Possibility to limit the number of supported languages. - Property InvokeWait introduced for plugin, tells number of seconds plugin should wait for eventual refreshing before returning, i.e. certificate mover at WriteCertificate. - Enhanced performance for credential provider. 5.4.0.26: - Fixed support tracesplit/traceparse Linux/MacOSX - Only start dual installation on win64. Will allow single setup containing both win32 and win64. The installation will install win32 for win32 and both win32 and win64 for win64. - Fixed create/destroy SO pin objects for PKCS#11. - Fixed parallel execute of Watch commands. - Fixed background image for Watch. - Credential Provider may use Minidriver instead of CSP. Will be able to load bitmap based on certificate, but no unlock or pin attempts functionality. - Fixed PKCS#11 token flag for pin status with any pin reference, to solve problem with pin status for 2 CIA card. - Fixed minidriver problem with card only supporting T=1. - Fixed create private key for SetCOS 4.4. - Updated card handler locking. No lock required for asking card status without force update. - Added configuration parameter Install>ProductType. Will be appended to product name, i.e. "Net iD OEM"/"Net iD Enterprise". - Fixed problem with two readers with inserted cards on win64. - Fixed check card expire problem (new 5.4). - Fixed Build name with åäöÅÄÖ. - Fixed ResetToken/InitToken for RPS card. - Fixed ResetToken for local portal. - Fixed CSP release context without card access. - Fixed PKCS#11 close session without card access. - Changed behavior for displaying running type on Windows. Will now never show 64-bit Edition, but will always append 32-bit Edition for all dialogs when running on 64-bit machine. - Added file state check for MyEID signature operation. Will require card operational state. - Updated Tokend for MacOSX. - Updated MacOSX/Linux installation to remove configuration sections specific for Windows. - Updated local portal for Safari. - Updated Credential Provider filter, will not block standard smart card provider unless supported usage scenario. - Fixed Credential Provider issues with pin attempts left - Fixed Credential Provider issues with unknown cards. - Updated configuration parameter names for Credential Provider. - Fixed pkcs#11 visibility issue for PIN2 object created with PIN1. Now will object handles be valid for both PIN1 and PIN2 slots, but will only be returned for object search on correct slot. - Added possibility to configure [Smart Card Reader] > Denied. A list of reader names which are not acceptable. - Added support for Credential Provider: presenting PIN attempts left, unblock PIN with PUK and possible to configure presentation for all text fields. - Updated PIN dialog behavior for Plugin/CSP. Generating/importing key pairs or writing certificates for PIN2 will always show both PIN1 and PIN2 dialog (if needed). Both PINs are usually required for updating PIN2 objects. Will not affect when PIN are supplied to CSP/Plugin by caller. - Updated ChangePIN behavior. Will not be able to abort pin change when change required. - Update NetControl. Will show application window name instead of application process name for close question dialog. - Added initial Credential Provider support. Possible to configure different Tile images depending on subject and/or issuer from the certificate. - Added initial Apple Tokend support. - Added support for environment variables for installation directory. - Added possibility to configure CSP friendly name. - Fixed environment variables for Watch command. - Fixed check of key id when adding keys for PKCS#15 profile. - Added package section to configuration for installation of custom packages. - Added fingerprint for plugin EnumProperty CertificateEx. - Added possiblity to configure default certificate for CSP. - Fixed CSP release context without card access. - Fixed PKCS#11 close session without card access. - Fixed problem with dynamic create/destroy for PKCS#15 profile. - Fixed problem with environment variables for GINA. - Added configuration for enable card cache for Minidriver, default false (disabled). - Fixed CertMover problem when looking for current user. - Fixed Net iD Watch for combining 'match', 'message' and 'term' parameters. - Fixed problem searching for first DF when adding new entries for profile PKCS#15. - Fixed NetControl for Firefox with SSO. - Fixed CSP friendly name for certificate. - Fixed initial access problem for reading PIN2 certificates written with PIN1. - Added support for dynamic create/destroy for PKCS#15 profile. For cards without EF(UnusedSpace). - Updated default key usage behavior when generating new key pairs with plugin: PIN1 all (same) and PIN2 non-repudiation (changed). 5.3.0.28 - Net iD Watch may handle insert/remove events for unknown cards. - Net iD Watch may use environment variables for most commands. - Net iD taskbar can handle more custom links - Net iD plugin have full support for non-ascii characters, independed of strange web browser behavior. - Added workaround to handle Microsoft VPN client - New local admin portal for Windows/Linux/MacOSX - Added Net iD Wrapper GINA - Added NetControl close for Firefox 3, Internet Explorer 8 - Added card token label to dynamic strings. May change default names to more user friendly names, i.e. "Instant IP2" > "Tjänstekort". - Added special license agreement for Under Development/Release Candidate - Added license may be issued for specific CA certificates. - Added support for RFID read/write - Added new advanced dialog for certificate selection on Windows - Added support for more extensions for PKCS#10 certificate request - Added soft token support for Safari on MacOSX - Added Apple keychain as new soft token format - Added PIN expire policy - Added PIN history policy 5.2.2.32 - Fixed problem with update counter for SSO2 - Fixed verify pin for PKCS#15 cards with no directory in AODF - Fixed problem with SSO2 and win2003 - Fixed problem with pin case sensitive and utf8 encoded - Fixed write of BID certificates for BEID cards - Fixed UPINO write for BEID card - Added sorting for certificate objects: newest returned first - Fixed write certificate with plugin when wrong slot specified - Fixed enable/disable of multiple network devices - Fixed problem for Microsoft wireless access with soft tokens 5.2.0.26 - File operation Encrypt/Sign will only show valid certificates - Fixed problem with expired certificate for CSP - Fixed problem with validate for non-installed components - Fixed problem with Watch and lock workstation - Added Watch config set command (config/registry) - Added Connector fast match command - Fixed problem with key generation on card - Added plugin invoke ValidateInstallation. Will verify installation is not modified, i.e. components removed/added/updated or configuration updated - Added validate functiontionality for -loadconfig. Will add checksum for all components when called - Added Watch for linux - Fixed problem with key generation on card - Fixed problem with InitToken - Fixed MIME encoding for AdmUtil - Fixed AES encoding for PKCS#7 (compatible Vista) - Fixed SSO service install win64 - Fixed protected mode for update soft tokens - Fixed problem with Watch and lock workstation (card removed and generated lock event before logged in). - Changed behavior on Windows platform. For rsa key generation will pkcs11 library first try to use CryptoAPI, second OpenSSL and third internal. - Apply configuration for Transport will move local soft tokens to global - Added all cards for minidriver - Added OAEP support for CSP - Increased load perfomance for plugin - Changed to global only configuration for NetControl - Updated NetControl to handle minidriver - Updated Transport - Fixed VPN problem with soft tokens - Increased speed performace CSP - Added some SSO support for minidriver - Updated soft tokens to enable default password. - Updated Transport to both decrypt and verify files (DecryptData/VerifyData). - Added SSO as service - Updated Crypt to handle removable devices - Updated Crypt to handle any drive - Updated traceparse (relative path) - Updated traceparse (calculate execution time) - Updated traceparse (handle incomplete file) - Added config entry CallTrace for CSP/PKCS11. A new trace functionality, will only trace function entry and result, so less impact on speed performance. - Added Microsoft standard Save/Open dialogs for plugin - Added generic Run command for plugin - Added new component Transport 5.1.2.16 - Updated RegUtil to handle Template/SubjectAltName extensions - Fixed disable duplicate for CSP 5.1.0.16 - Updated RegUtil to handle Template/SubjectAltName extensions - Added close of specific window classes for Watch - Changed behavoir for Net iD Connector, will now accept certificates without smart card logon extended key usage. - Added support for start of SSO server - Moved all SSO config parameters to new section (SingleSignOn). - Added support for username/password SSO with credentials stored on card. - Added support for local pages for Net iD Web - Added support for custom shortcuts during install - Changed CSP behavior. CSPDestroyKey and CPDetroyHash will always return success, to handle applications not prepared for smart cards. - Updated GINA netcard functionality - Added post data functionality for core library - Fixed update of slot list for AdmUtil at Refresh (F5) - Fixed matching of key pair for generating new key pairs on smart cards - Fixed problem with SSO and soft tokens - Changed behavior for Pkcs11 already logged in. Will only return already logged in case correct PIN given. - Added AdmUtil change PIN for soft tokens (right click in list). - New version of Net iD Crypt, Net iD Watch - Added post data functionality for core library 5.0.0.31 - Added configuration parameter to disable setting of friendly name when register certificate for CryptoAPI - Added duplicate certificate handling in Pkcs11/CSP - Added certificate request attribute for plugin - Added publisher to uninstall info - Trace registry virtualization limited to 10 keys/entries - For duplicate certificates (same issuer/subject) will our select certificate dialog only show newest. - The newest certificate will be default for our select certificate dialog - Soft tokens will get a unique number - Moved some functionality from main library to CSP, to allow CSP to work without loading main library. - Removed admin access warning for Vista when running as administrator - Changed configuration extension: ini => cfg - Added support for SHA-256 for pkcs11/CSP/minidriver (CSP/minidriver require Vista or later) - 64-bit port GINA/SSO/Crypt - Added support for AES-128/192/256 for CSP/PKCS11 - Added support for RSA OAEP for CSP/PKCS11 (AES key wrapping) - Upgrade will copy new config and merge old config entries - Added support for CryptoAPI keypair generation for PKCS11 - Added support for OpenSSL keypair generation for PKCS11 - Added support for CryptoAPI random seed for PKCS11 - Added support for OpenSSL random seed for PKCS11 - Fixed start iidxadm.exe from Taskbar, when installed Program files folder - Fixed support for SSO with soft tokens - Added configuration parameter Install>Special - Fixed SSO encrypt/decrypt with data >1MB - Fixed SSO sign/verify with data >1MB - Added config parameter Smart Card Reader>KeepLoggedInLocked=0/1. When enabled will the behavior be the same as pin pad => no pin cache at all. - Added pin pad entry with feedback - Changed password charcter from "star" to "ball" for WinXP or later - GINA extra window for ctrl-alt-del - SSO may be disabled for applications - Added Net iD Web - iidxweb.exe - Trace print to always include all seconds - Added new config parameter: CSP > KeepSessionAlive=0/1 - Moved global configuration file to install directory - Added config parameter Pkcs11 > ReportWrite - Auto lock of PIN for unlock on Setec SetCOS - Default values always set in config file - Changed behavior, SSO will not auto logout at refresh/finalize - Release library for default certificate when unloading - Updated auto cleanup for CSP/PKCS11 - Trace print to always include all seconds - Added new config parameter: CSP > KeepSessionAlive=0/1 4.9.1.4 - PinPad support 4.9.0.29: - Faster stop of unneeded certificate mover - Fixed Net iD SSO for adding new devices for Crypt - Handle multiple finalize calls for plugin - Fixed Net iD SSO for FireFox - Fixed empty slots for FireFox - Fixed possible hang for certificate move (unable to delete MY store certificate). - Fixed update certmover when Crypt is installed when adding soft tokens - Fixed pkcs11 disable non-rep - Updated plugin for Crypt - Fixed potential SSO upgrade failure - Fixed card number presentation at InitToken - Updated Crypt to handle multiple certificates - Change pin when expired or not changed at all - Fixed read key components SetCOS 4.3.1 - Fixed error message confirm/new pin not equal for change/unlock pin - Support for Net iD Crypt on Windows Vista - Added new parameter for pkcs11: 'LogoutAtLastSession='. Specify applications that should be auto logged out at last session closed. - Fixed potential 30 second timeout for finalize of PKCS11 supervisor - Updated smart card key generation - GINA may report LOGON/LOGOFF/LOCK/UNLOCK to eventlog and/or database - Updated token info for empty cards - PKCS11 may report verify PIN failure to eventlog and/or database - Delete card profile on Siemens CardOS will reset startkey - Added message dialogs for plugin: information/error/exclamation/question - Changed internal signature check to Microsoft Authenticode, so all library files must be signed on Windows. - Added functionality to open PIN dialog in separate process, for system application without user interface. - New feature minidriver - Possible to use SSO with mini-driver, will require passthrew GINA. - Updated Siemens CardOS, will change startkey from default - Changed start menu icon for admin to logo, since may appear at quick start list. - Increased performance for plugin - Updated find key pair when key generation failed - Updated behavior C_GetTokenInfo will only return token not recognized for unknown cards, not empty cards. - Increased logon speed when using passthrew GINA - Added parse of trace to html format - Fixed potential bug for string compare 4.8.0.17: - Increased performance for plugin - Fix for SSL reconnect problem - Fixed eventual card removal problems for CSP (invalid session) - Updated several languages - Added possibility to set token serial number for InitToken - Updated InitToken for all cards - Finnish language added - Plugin start service will not start any new processes - Possible to verify algorithms during pkcs11 initialize - Special attributes are not written to soft token - Fixed random failure of pkcs12 import - Fixed e-gate generate key pair for PIN2 4.8.0.9 -Added support for Windows XP and Vista 64-bit versions -Added support for Mac OS X Intel, PPC both 32-bit and 64-bit -Added support for Linux 64-bit -Added support för Windows Server 2008 -Added expiration date in Net iD -Added check for CA expire -Changed default PCSC detect card behavior to polling -Admin Utily can handle multiple certificate commonName 4.7.0.14 -Fixed installation of registry file -Fixed installation bitmap rewrite -Added certificate begin/end for copy clipboard in AdmUtil -CertMover will add user certificate to local machine store if access granted -Added validity check for pkcs12 import, will require matching key for certificate -Added support to allow reset card from plugin -Language and error code sent for message link box -Added insert card request when generating new key set from CSP -Added new configuration parameter for verifying certificate signature before installed in CryptoAPI store. -AdmUtil will open/send protected mode trace file (if available) -Change of language threw plugin will take affect immediately -Added ldap download -Some CSP updates for autoenrollment and VPN -Disable AdmUtil settings not available for user 4.6.0.26 -Added support for ',' in PCSC reader names -Support for JCOP smart card -Dynamic strings, possible to update strings via global configuration file. -Added RSA 2048 bit support for SetCOS -AdmUtil may delete soft tokens with delete button -Fixed public data objects bug for AdmUtil -Added optional extra PIN policy for smart cards -Added another ATR for SchlumbergerSema Prism card -Added read support for GemSAFE v1 and GemSAFE v2 applet profile -Added full admin support for Vista -Added certificate begin/end for copy clipboard in AdmUtil -CertMover will add user certificate to local machine store if access granted -Advanced dialog may use transparent and different color for name/validity text (only Windows) -Ctrl-C for AdmUtil will copy active list to ClipBoard -Complete version number and eventual support link added to uninstall. Still no size estimate, since Microsoft require installation under program files to display this information. -Added possibility to install in program folder -All information and error dialogs will use hyper-link dialog box, so all dialog boxes will have our icon in upper-left corner. -Support error link added to Links section in configuration. -Added parameter for plugin: Invoke('IsRefreshing') -Added hyper-link for information dialog -Added callback for trace -Added possible cache of private objects -Added pin attempts left for a lot of cards -Return CKR_TOKEN_NOT_RECOGNIZED for unknown cards 4.5.0.9 -Support for key generation/initialize on Siemens CardOS 4.3 -Support for Setec SetCosXpresso smart cards -Deny/Accept list for certifiates to CryptoAPI -Default language now set to english -Added Gemxpresso card support -Fixed Pkcs7 encoding bug -Added possibility to disable NonRep certificate for pkcs11 applications -Updated default certificate behavior for CSP -Updated ECB mode for CSP -Fixed update counter error -Fixed no add of CA certificates when Windows locked 4.4.6.7 -Updated for Windows Vista -Updated for Microsoft Windows Mobile 5/Windows CE 5.0 -Updated for Microsoft autoenrollment -Fixed memory leak when config can´t be created -Fixed non-rep not added to CryptoAPI -Fixed problem with Windows Vista protected mode 4.3.0.4 -Added following languages: Turkish -License information for all languages -Resetcard added to plugin -Refresh at failed write certificate/create token 4.2.0.20: - Added Schlumberger e-gate - Fixed certificate label with attributes separated with set (+) - Fixed directory search with ĺäö - Added support for reading biometric passport - Ported new code to Linux and Mac OS X - Added configuration parameter for PKCS11 logout after SSL authentication - Setup will add service to autostart if not able to edit Windows registry - Plugin may be configured to start service - Updated french language - Updated norwegian language - Added explorer extension for My Computer - Added configuration parameter for PKCS11 logout after SSL authentication - Added possible to configure default sign/encrypted file extensions - Added right click in administration utility for containers - Added config parameter for delete keyset when generating new keyset (csp) - Fixed bug, only possible to add 5 pkcs12 blobs to one soft token - Fixed bug, RegUtil generated soft tokens instead of match smart card - Fixed bug, export soft tokens with "/" included in the name 4.1.0.13: - Fixed CSP smart card logon with bad pin code as error message 4.1.0.12: - Fixed bug: CertMover moved intermediate cert to MY store (instead of CA) - Fixed bug: CreateToken had problem when token label exceed 32 bytes - Added possibility to write same CA cert to several slots 4.1.0.11: - Fixed potential Certificate Mover crash when multiple refresh System Requirements ---------------------------------------------------------------------------------------- Operating Systems: Macintosh (32-bit and 64-bit versions) -Mac OS X 10.5 -Mac OS X 10.6 Microsoft Windows (32-bit and 64-bit versions) -Windows Server 2008 R2 Standard Edition -Windows Server 2008 R2 Enterprise Edition -Windows Server 2008 Standard Edition -Windows Server 2008 Enterprise Edition -Windows Server 2003 Standard Edition -Windows Server 2003 Enterprise Edition -Windows 7 Home Basic -Windows 7 Professional -Windows 7 Enterprise -Windows 7 Ultimate -Windows Vista Home Basic -Windows Vista Business -Windows Vista Enterprise -Windows Vista Ultimate -Windows XP Home Edition -Windows XP Home Edition -Windows XP Professional Linux (32-bit and 64-bit versions) -Ubuntu 10.0.4 -Ubuntu 10.10 Web browsers: -Microsoft Internet Explorer 7 -Microsoft Internet Explorer 8 -Firefox 3.5 -Firefox 3.6 -Safari 5 for MacOSX Smart cards, Smart card Profiles and EID-applets Support ---------------------------------------------------------------------------------------- Smart Cards: - Axalto Cryptoflex - Gemalto .NET Smart Card - Gemalto GemXpresso - IBM JCOP 21, 31, 41 - Setec SetCOS 3.4, 4.3, 4.4, 5.0 - Setec SetCosXpresso - Siemens CardOS 4.01, 4.20, 4.30 Profiles: - FINEID S4 - ISO 7816-15 - Microsoft Minidriver 4.0, 5.0, 6.0 - PKCS#15 - SS614330 (swedish EID card standard) EID-applets: - Aventra MyEID applet - Gemalto GemSAFE (Classic) v1, v2 and v3 applet - Gemalto EID2048 applet - HID ISO/7816-15 applet Smartcard readers ---------------------------------------------------------------------------------------- -Support for card readers as per PC/SC standard Standards ---------------------------------------------------------------------------------------- -MS Cryptographic Service Provider (CSP) for MS CryptoAPI -Standard PKCS #11, PKCS #12, PKCS #15 -Standard ISO7816-15 -Standardized digital signatures – PKCS #7 -Standard client identification as per SSL 3.0 Upgrade from earlier Net iD version ---------------------------------------------------------------------------------------- Supported versions to upgrade from: -Net iD version 5.4.x.x -Net iD version 5.3.x.x -Net iD version 5.2.x.x -Net iD version 5.1.0.x -Net iD version 5.0.0.x Other Resources and Links ---------------------------------------------------------------------------------------- Visit www.secmaker.com for more information. Feedback ---------------------------------------------------------------------------------------- Please forward your comments and problem reports to the following e-mail addresses. Problem discovered should be reported by sending an e-mail to netid@secmaker.com You can also give us feedback by sending an e-mail to feedback@secmaker.com SecMaker AB Smedjegatan 6 SE-131 54 Nacka, Stockholm SWEDEN +46 8 601 23 00