Machina Developers Releases SDK 1.7, New Integrations with BigID and Log4j

The Machina Developer Experience team this week pushed live a new release of Machina Developers, which includes Machina Tools 1.7, new integrations with BigID and Log4j, new advanced tutorials, and web site improvements.

Highlights of this new release include:

  • New Machina Tools SDK 1.7 with documentation updates for Java and Objective-C
  • Log4j2 and BigID integrations
  • A new advanced cipher tutorial
  • Refreshed API documentation
  • UI Improvements for Machina Developers

Machina Tools 1.7

Ionic released the latest and greatest version of the Machina Tools “Core” SDK. Here’s a rundown of new features you can expect to find:

  • Random-access to Encrypted Files
    • The SDK recently introduced a new version of the “generic” file format. With the 1.7 release of the C++ SDK, developers can now operate on files stored in this format using standard fstream class methods (seekg and seekp) including, for the first time, an ability to seek to arbitrary locations in the file before performing “read” or “write” operations. Support for the “seek” operation was also added to the ifstream and ofstream interfaces. The byte offsets used in the seek operation are relative to the “plaintext” version of the file.
  • External Signature Validation (BSIMM Support)
    • Supporting the Building Security In Maturity Model (BSIMM), developers can now verify their related library using the external signature of the hash file using an Ionic public key. You can find the downloads page at Machina Developers.
  • macOS improvements
    • Previous versions of the SDK required the macOS keychain persistor to regenerate each time a change was made (e.g., setting an active profile). Now, macOS allows for the use of the same key and only regenerates if specifically requested.
    • Integrate Access Control Lists (ACL) into the macOS keychain operations. An API has also been exposed to allow the application layer to use ACLs.
  • Logging Improvements
    • This release introduces new log retention controls around log size and age. The default configuration for the log retention period is one year. The default retention is based on size, up to 1TB. These configurations can be set by the islogconfig parameter. To change these default settings, please consult the Client SDK 1.7 reference documentation.

New Log4j2 and BigID Integrations

The Log4j integration uses Apache Tomcat extensions and encrypts sensitive information in the log file. An adaptation of the log4j2 class RollingFileAppender is used to encrypt sensitive information. To decrypt, an adaptation of GenericFilter is used.

Using an S3 Lambda function, the BigID integration shows how to encrypt and decrypt personally identifiable information (PII) from BigID scan results. The results are located in S3 cloud storage. Ionics Data Trust Services for Amazon S3 is used by the integration to encrypt and decrypt the scan results. Policy attributes are used to determine who can view the PII.

The integrations page now includes new sections Cloud Integrations and Logging Integrations. The Log4j2 integration appears under Logging Integrations while the BigID integration appears under the Cloud Integrations.

Documentation Updates

Highlights include:

New Cipher Tutorial

The Raw Crypto Cipher tutorial is the first advanced tutorial that demonstrates how to create keys and in separate operations, encrypt and decrypt them. Our basic Machina Ciphers tutorials integrate key management into a simple encryption process that uses a Machina-defined format to include the generated key ID along with either file or ASCII text formats. However, developers may either want to manage the key ID themselves or keep the ciphertext data in a binary format. This tutorial introduces you to encrypting and decrypting with your own key ID. Written in C++, the example uses an AES GCM cipher to encrypt and decrypt sensitive data.

UI Improvements for Machina Developers

We’ve improved the Machina Developers UI with more reactive frames. Menu tabs now collapse to a hamburger button when downsized, and we’ve lightened the color palette for side menus. This allows users to better navigate developer content from their mobile devices.

These are just the highlights. Feel free to explore all of the new features built into our SDKs, cloud integrations, data encryption tutorials and, of course, the Machina Developers portal.