******************************************************************
* eHealth Platform End-To-End Encryption Libraries RELEASE NOTES *
******************************************************************

2.2.0 FINAL release
  . added																			Support for sealing (sign/encrypt) with public keys (without CA issued certificates). Policy WEB_AUTHN.
  . improved																		DataSealer API: Old methods became deprecated. Different types of encryption credential can now be passed in EncryptionCredential object(s).
  . improved																		DataUnsealer API: when unsealing non-repudiation is no longer required by default on the inner signature.
  . improved																		OCSPChecker API: added methods to be able to pass the CA Chain of the end certificate to be checked. This eventually lets the OCSP response trust check be possible even if the CA Chain is missing in the OCSP Response (according to RFC2560 in this case the OCSP Response should be still trusted if the the key used to sign the response belongs to the CA who issued the end certificate being checked). 
  . improved																		CrlChecker API: added methods with a validation date argument. This date parameter indicates for which date the revocation check should be performed. Default is current date.    
  . improved																		The logging library has been migrated from log4j to slf4j in order to integrate with other logging frameworks.
  	
2.1.3 FINAL release
  . fixed																			Streaming issue for messages of specific sizes (32 * 1024 bytes or a multiplication of that).
  . fixed																			Added support for Signature Encryption Algorithm OID (1.2.840.113549.1.1.11) for eID signatures, as Bouncycastle started using that in version 1.55.
  . upgraded																		Optional Runtime Library Commons eID upgraded to version 0.8.0.	
  
2.1.2 FINAL release
  . upgraded																		Required Library Bouncycastle upgraded to version 1.54. See https://www.bouncycastle.org for release notes of Bouncycastle libraries.
  . upgraded																		Optional Runtime Library Commons eID upgraded to version 0.6.6. See https://github.com/e-Contract/commons-eid for info on releases.
  . removed																			Optional eHealth Library etee-crypto-eidextensions is no longer maintained. Issues with smartcardreaders should be addressed to https://github.com/e-Contract/commons-eid/issues. You are free to use another library for eID integration if needed. There is no direct link with the eHealth Crypto Library.
    
2.1.1 FINAL release
  . fixed																			SigningTime was never added to the UnsealedData.
  . improved																		SigningPolicy keysize now verifies for minimal length, before it needed to be an exact match. This adds compatibility to the library for signing with stronger keys.
  . added																			Support for eID signing without non-repudiation. Option to use Authentication certificate for both inner and outer signature to prevent the need to re-enter the pincode every time a message is sealed.
  . upgraded																		Optional Runtime Library Commons eID upgraded to version 0.6.4.	
  
2.1.0 FINAL release
  . upgraded																		Required Runtime Library Bouncycastle upgraded to version 1.52. See https://www.bouncycastle.org for release notes of Bouncycastle libraries.
  . improved																		Various updates to improve code quality (no impact on API)

2.0.1 FINAL release
  . fixed		be.fgov.ehealth.etee.crypto.cert.CertPathCheckerPKIX				Supports unsorted certificatelist, embedded in CMS message.	

2.0.0 FINAL release
  . upgraded																		Cryptolib is now compiled with Java 6.
  . upgraded																		Required Library Bouncycastle upgraded to version 1.46.
  . upgraded																		Required Library Log4j upgraded to version 1.2.16.
  . added																			Optional eHealth Library etee-crypto-eid added for support on eID signing.
  . added																			Optional eHealth Library etee-crypto-eidextensions added for support on eID signing.
  . added																			Optional Library commons-eid 0.5.1 added for support on eID signing.
  . updated		be.smals.ehealth.etee												Base package renamed to be.fgov.ehealth.etee.crypto
  . improved																		The visibility of the classes in the packages has been reduced to secure the internal implementation of the library and avoid impact of updates.
  . added																			Support for eID signing (new signature algorithm: SHA256WITHRSAANDMGF1).
  . removed																			Removed check to block eID Foreigner CA.
  . added																			Support for signing time of message (CMS outer signature now contains signed attribute 'SigningTime').
  . added																			Support for embedded OCSPs and CRLs (unsigned attribute 'id-aa-ets-revocationValues').
  . added																			Support for embedded Timestamps on outer signature (unsigned attribute 'id-aa-signatureTimeStampToken').
  . improved																		Validation of CMS signature certificates now happens with SigningTime of CMS.
  . improved																		eHealth policy verifications on keylength, keyUsage, Algorithms
  . improved																		Creation of services is now done with fluent interface Builders instead of Factories with properties.
  . added		be.fgov.ehealth.etee.crypto.cert.CertPathChecker					Support for certificate path validation improved with a new checker.
  . added		be.fgov.ehealth.etee.crypto.crl.CRLChecker							Support for CRL validation improved with a new checker.									
  . added		be.fgov.ehealth.etee.crypto.decrypt.DataSealChecker					Support for validating outer signature of CMS.
  . added 		be.fgov.ehealth.etee.crypto.encrypt.EncryptionTokenChecker			Support for ETK validation improved with a new checker.
  . added 		be.fgov.ehealth.etee.crypto.ocsp.OCSPChecker						Support for OCSP validation improved with a new checker.
  . added		be.fgov.ehealth.etee.crypto.policies								Support for configuration of constants, options and policies improved with a new package.
  . added		be.fgov.ehealth.etee.crypto.status									Status reporting improved with a new package.
  . added	    be.fgov.ehealth.etee.crypto.status.CryptoResult<T>					Merged result objects of checkers to one Result interface.
  . added		be.fgov.ehealth.etee.crypto.status.Notification*					Refactored Notifications into levels.
  . improved																		Support for proxy configuration now follows standard Java approach (http://docs.oracle.com/javase/6/docs/technotes/guides/net/proxies.html)
	   
1.6.1 FINAL release
  . updated																			Versions needed for the encryption.
 
1.6.0 FINAL release
  . improved																		Configuration of the OCSP revocation status checker. The checker is now configured with the Root CA certificate.
  . added		b.s.e.etee.crypto.examples.CheckCertificateRevocationStatus			Added example for the use of the OCSP Revocation Status Checker.
  
1.5.0 FINAL release
  . added																			Seal and unseal with symmetric keys (for the "unknow recipients solution of eHealth ETEE")
  . added		be.smals.ehealth.etee.crypto.encrypt.CMSEncrypter					Added methods to encrypt with a	SecretKey.
  . added 		be.smals.ehealth.etee.crypto.encrypt.DataSealer						Added methods to encrypt with a SecretKey.
  . added 		be.smals.ehealth.etee.crypto.decrypt.DataUnsealer					Added methods to decrypt with a SecretKey.
  . added 		be.smals.ehealth.etee.crypto.decrypt.DecryptionFailure				Added failures SECRET_KEY_CAN_NOT_DECRYPT_KEKRECIPIENTINFOS, ENVELOPEDDATA_CONTAINS_NO_KEYTRANSRECIPIENTINFOS, ENVELOPEDDATA_CONTAINS_NO_KEKRECIPIENTINFOS.
  . added 		be.smals.ehealth.etee.crypto.decrypt.EnvelopedDataDecrypter			Added decrypt() with SecretKey.	
  . improved	be.smals.ehealth.etee.crypto.decrypt.EnvelopedDataDecryptionResult	Improved toString().
  . added 																			SealForUnknow,UnsealByUnknown: added examples
  . added 		be.smals.ehealth.etee.crypto.encrypt.TripleWrapper					Added methods to encrypt with a SecretKey.
  . updated		be.smals.ehealth.etee.crypto.decrypt.TripleUnwrapper				Updated method to decrypt to enable decryption with a SecretKey.
    
1.4.0 FINAL release
  . added 		be.smals.ehealth.etee.ecrypto.utils.Hasher							Utility class for hashing.	