SpyProof! Support

Changes between Release 1.3.1 and Release 1.4

• Added support for Windows Vista and CSP^id
• To resolve conflicts with certain third party applications, SpyProof! now creates a subordinate 'My Documents' folder within a newly created disk that has been designated by the user to act as their 'My Documents' folder
• Manually mounting an 'automount' disk now opens the drive in Windows Explorer
• When a volume containing a mounted SpyProof! disk is detached from the system, SpyProof! will display a warning and automatically unmount the disk
• Disks imported when SpyProof! is configured to use CAPI are no longer assigned a SecretAgent profile if an appropriate CAPI profile is found
• Disk Manager Profile Type item modified to reduce confusion
• CLI enhancements:
  • automatically chooses profiles when creating disks
  • added options to avoiding prompting when removing disks
  • added option to avoiding opening drive window when mounting
• bug fixes:
  • fixed display of certificates with UTF-8 encoded RDNs
  • users are now prohibited from creating a disk when the maximum number of disks are already mounted

Changes between Release 1.3 and Release 1.3.1

• Allows UNC paths to be used for disks
• Enforces security policies signed with SecretAgent 5.9 or higher
• Fixed bug causing disks made with release 1.1 and earlier to no longer mount under release 1.3

Changes between Release 1.2.3 and Release 1.3:

• Supports disks larger than 8GB
• Allows disk files to be transferred to another location
• Checks CRLs during CAPI certificate chain validation
• Uses SecretAgent's certificate chain validation if SecretAgent is installed and configured to use Certificate Explorer for validation
• Enforces compliance with PolicyAgent 5.9 security policies
• Adds command line support for Mount, Unmount, Import, Remove, and Create functionality
• Works with Windows XP SP2 fast user switching
• Lowers its Windows run level priority when creating disks
• Asks whether to rekey and backup disk files when removing recipients
• Opens its directory in an Explorer window when mounted manually
• Allows user to bypass slide bar and directly enter disk size in the Create Disk dialog
• Supports dual monitor configurations in Windows

Changes between Release 1.2.2 and Release 1.2.3:

• Fixed bug: creating a new disk with same name as an existing disk will no longer cause the existing .spk file to be overwritten.

Changes between Release 1.2.1 and Release 1.2.2:

• Improved unmount/automount intelligence when suspending Windows and when returning from a suspended Windows session.

Changes between Release 1.2 and Release 1.2.1:

• Increased performance when handling large amounts of data (better than 2x speed-up).
• Improved processing of expired/updated certificates.
• Improved handling of attempts to mount a disk already mounted by another user.

Changes between Release 1.1.1 and Release 1.2:

• Disks are now, by default, created in "Local Application Data" (instead of in the root directory of the specified drive), are formatted with an NTFS file system, and can be expanded.
• Free space encryption has been made optional to permit compression during backup (with negligible impact on security).
• Mounted disks are labeled 'SpyProof!' to facilitate their identification and are now readable by other processes (e.g., backup programs).
• Improved CAPI integration, including better handling of password prompts.
• Improved certificate selection: certificate fingerprints are displayed to help distinguish between certificates with identical DNs.
• The setup program has been changed to provide smoother silent installs.

Changes between Releases 1.1 and 1.1.1 update 1:

• The restriction to trusted root certificates mandated by a local security policy is now enforced during certificate chain validation
• A workaround for a key exchange bug in the Rainbow iKey as been incorporated into the program

New features in SpyProof! 1.1

• Additional users may be added to an existing disk at any time
• An improved Create Disk dialog allows you to assign Windows drive letters, set disk automount properties, and set a new disk as your My Documents folder
• The user access control list for an existing SpyProof! disk can now be inspected
• The rekeying of SpyProof! disks is now supported as is the recovery of disks damaged by power loss during the rekeying process. (Rekeying may be desired after removing some users from a disk's access control list.)
• An improved certificate validation process conforms to NIST and DoD PKI interoperability specifications and supports full chain validation of certificates in a CAPI store
• The hotkey used to unmount all disks can now be specified by the user

Improved integration with SecretAgent 5.7:

• Users can now be added to the access control list for a SpyProof! disk by retrieving their certificate from ActiveDirectory or from any remote LDAP repository or local CertEx database; static LDAP group queries are supported
• Permanent password caching ("single sign-on") is supported when SpyProof! is used with an appropriately configured SA 5.7 profile
• Security policies created by PolicyAgent 5.7 (including control over allowed ciphers, certificate trust policies, key recovery agents, etc.) are now supported

Changes between Releases 1.0 and 1.0.1:

• certificates may be retrieved from a CAPI store even when SecretAgent is installed; you can now use SecretAgent or CAPI profiles simultaneously when creating, mounting, and importing SpyProof! disks
• Windows logoff now dismounts all SpyProof! disks
• Automount disks are mounted when the system returns from suspended state
• The root directory of the Windows system disk is now the default location for disk files (instead of the user's 'My Documents' folder)
• SpyProof! disk files now have distinctive icons and descriptions to help identify them in Windows Explorer
• Base64-encoded, as well as binary, key recovery certificates are supported
• SETUP prevents users from installing SpyProof! on Win9X systems