we released a new version of the mendelson OFTP2 community edition, these are the release notes:
*User can hide the root and intermediate certificates in the certificate manager now - before this was only possible for the root certificates
*It is possible to add SAN (Subject alternative name) to the generated keys/certificates now - they are used for the CSR (pkcs#10) generation, too. Some companies request special SAN in the used certificates.
*Additional test keys ("key3", "key4") have been added to the keystore for future use as the current keys ("key1", "key2") will expire in 2019
*There have been a problem in creating the NERP signature as the content of the field NERP.NERPCREA has been ignored. Anyway this did not result in any incompatibility as the OFTP2 protocol does not define an action for a wrong NERP signature - it defines this as "application issue"
*There have been a problem in creating the EERP.EERPHSH (virtual file hash), the system has used always SHA-1 and ignored the selected cipher suite which is possible to select since 2015. Anyway this did not result in any incompatibility as the OFTP2 protocol does not define an action for a wrong EERP signature - it defines this as "application issue". If the inbound file hash use the wrong cipher set now this result in a warning in the log without affecting the transaction state.
*There was a problem importing pkcs#7 files (.p7b) that were PEM encoded
3rd party software updates:
*Update to BC 1.57 (crypto API, see https://www.bouncycastle.org/)
*Update to HSQLDB 2.4
Please download your copy at http://oftp2.mendelson-e-c.com
Thank you all for your feedback and your help
Your mendelson dev team