AWS Encryption SDK 2.2.0 Release -- 2021-05-27

Features

• Improvements to the message decryption process

See GHSA-55xh-53m6-936r

AWS Encryption SDK 1.9.0 Release -- 2021-05-27

Features

• Improvements to the message decryption process

See GHSA-55xh-53m6-936r

AWS Encryption SDK 2.0.0 Release -- 2020-09-24

Features

• Updates to the AWS Encryption SDK.

BREAKING CHANGES

• AWS KMS KeyIDs must be specified explicitly or Discovery mode explicitly chosen.
  Key committing suites are now default. CommitmentPolicy requires commitment by default.

See: https://docs.aws.amazon.com/encryption-sdk/latest/developer-guide/migration.html

AWS Encryption SDK 1.7.0 Release -- 2020-09-24

Features

• Updates to the AWS Encryption SDK.

See migration guide: https://docs.aws.amazon.com/encryption-sdk/latest/developer-guide/migration.html

AWS Encryption SDK 1.6.2 Release -- 2020-05-26

Patches

• Validate final frame length does not exceed the frame size in the message header PR #166
• Validate entire ciphertext has been processed before returning PR #191

Maintenance

• Update AWS Java SDK version from 1.11.561 to 1.11.704. PR #186
• Upgrade Bouncy Castle from 1.61 to 1.65 PR #179

AWS Encryption SDK 1.6.1 Release -- 2019-10-29

Deprecation Warnings

• Deprecated AwsCrypto.encryptString() and AwsCrypto.decryptString().
  Replace your calls to these methods with calls to AwsCrypto.encryptData() and AwsCrypto.decryptData().
  Unlike the deprecated methods, these methods don't perform any Base64 encoding or decoding, so they are fully compatible with other language implementations of the AWS Encryption SDK.

  If you need Base64 encoding or decoding for your application, you can add it outside of the AWS Encryption SDK. PR #120

Patches

• Correctly validate version PR #116
• ParsedCiphertext now handles truncated input properly PR #119

Maintenance

• Add support for standard test vectors via testVectorZip system property. PR #127
• Remove all explicit cryptographic dependencies on BouncyCastle. The AWS Encryption SDK for Java still uses Bouncy Castle for other tasks. PRs
  #128, #129, #130, #131, and #132.

AWS Encryption SDK 1.6.0 Release -- 2019-05-31

Minor Changes

• Remove dependency on Apache Commons Codec 1.12.
• Use Base64 encoder from Bouncy Castle.
• Introduce and use utility methods for Base64 encoding/decoding so that
  switching the codec provider needs to be done only in one place next time.

AWS Encryption SDK 1.5.0 Release -- 2019-05-30

Minor Changes

• Add dependency on Apache Commons Codec 1.12.
• Use org.apache.commons.codec.binary.Base64 instead of java.util.Base64 so
  that the SDK can be used on systems that do not have java.util.Base64 but
  support Java 8 language features.

Maintenance

• Upgrade AWS Java SDK version from 1.11.169 to 1.11.561.
• Upgrade Mockito from 2.23.4 to 2.28.1.
• Upgrade Apache Commons Lang from 3.4 to 3.9.

AWS Encryption SDK 1.4.1 Release -- 2019-05-10

Patches

• Cast ByteBuffer to Buffer prior to using some methods so that it works properly in Java 8.

AWS Encryption SDK 1.4.0 Release -- 2019-05-10

Minor Changes

• Increased BouncyCastle dependency version to 1.61
• Removed explicit use of BouncyCastle from all cryptography except for EC key generation and RSA encryption/decryption

Maintenance

• Increased Mockito test dependency version to 2.23.4