We are pleased to announce the release of the Curity Identity Server 6.5. Though a minor release, it includes several new exciting features.
The new release introduces the support for encrypted ID tokens, allowing for end-to-end encryption of identity data transferred to client applications. This works for both static and dynamic clients. Using this feature, deployments can achieve the highest levels of banking secrecy and reach Federation Assurance Level (FAL) 2 and 3 (as outlined in the NIST special publication 800-63-3 and the upcoming FIPS 201-3 standard).
A system has been implemented to allow log message parameters to be masked or unmasked at any level. By default, any
DEBUG message that contains sensitive information is now obscured.
Read the release notes for more details.
On Thursday, October 7, at 15:00 CEST we will host a short webinar to explore what’s new in 6.5. We will go through the release notes, highlighting new features, fixes and, enhancements.