Thank you for your feedback.
Form temporarily unavailable. Please try again or contact docfeedback@servicenow.com to submit your comments.
Versions
  • London
  • Kingston
  • Jakarta
  • Istanbul
  • Helsinki
  • Geneva
  • Store
Close

Edge Encryption release notes

Edge Encryption release notes

ServiceNow® Edge Encryption application enhancements and updates in the Kingston release.

Kingston upgrade information

  • Java is no longer included in the Edge Encryption proxy server distribution. The host machine installing or running the Edge Encryption proxy server must maintain a supported version of Java:
    • Java 8 update 121 (8u121)
    • Java 8 update 141 (8u141) and later
    Note: Java 8 update 131 (8u131) is not supported.

    Before installing the Edge Encryption proxy server, check that the $JAVA_HOME variable is pointing to a supported version of Java for each user that runs the proxy server. For example, if installing the proxy server as a local administrator on Windows, check that the $JAVA_HOME variable is pointing to the correct version of Java system-wide. If installing on Linux, check that each user that will run the proxy server has this variable correctly defined. If a supported version of Java is not found, the proxy server will not run.

  • If using AES 256-bit encryption, copy the Java Cryptography Extension (JCE) jurisdiction policy files into the system Java home directory of each Edge Encryption proxy server host. Add these files to the <Java-home-directory>/jre/lib/security folder before performing a scheduled or manual upgrade. To install the 256-bit encryption policy files, see Optionally enable AES 256-bit encryption.

Activation information

Request the Edge Encryption (com.glide.edgeencryption) plugin and configure it according to the needs of your organization. This plugin is available as a separate subscription.

New in the Kingston release

Edge Encryption diagnostics, performance, and troubleshooting
View key Edge Encryption proxy server performance trends using the Edge Proxy graph set on the Performance homepage. Monitored trends include:
  • Maximum and average response times between the client, proxy server, and instance
  • CPU, disk space, and memory usage of the host machine
  • Maximum and average network latency between the proxy server and the instance

View errors thrown by the Edge Encryption proxy server in the last seven days using the Proxy Error Report. Follow links in the errors to see details and possible remediation steps.

Field and character encryption
You can create an encryption configuration for the following field types:
  • Journal
  • Journal Input
  • URL

Multi-byte characters within supported field types can be encrypted.

Restricted privilege access on a Linux machine
You can install the Edge Encryption proxy server on a privileged port (port 80 or 443) with restricted file access using the interactive installer. After installing the proxy server as root or sudo, restrict file system access by running the proxy server as an unprivileged user.
Additional support for data integration
  • Upload attachments to tables with attachment encryption configured using REST and SOAP. Requests must go through the proxy server. Encrypted attachments can be decrypted when downloaded using REST or SOAP through the proxy server.
  • Update or retrieve record data through the Edge Encryption proxy server using the JSONv2 web service APIs. Base system encryption rules support data retrieval and data modification APIs.
Blacklist requests from an IP address in your network
Because the Edge Encryption proxy server resides in your network, it may be subject to vulnerability or other scans by your network software. To prevent IP scanner or other requests from being forwarded to your ServiceNow instance, you can blacklist IP addresses, IP ranges, or network masks. Any connection to the proxy server from a blacklisted address is terminated and is not forwarded to your instance.

Changed in this release

  • Java distribution: Java is no longer included in the Edge Encryption proxy server distribution. The host machine installing or running the Edge Encryption proxy server must maintain a supported version of Java:
    • Java 8 update 121 (8u121)
    • Java 8 update 141 (8u141) and later
    Note: Java 8 update 131 (8u131) is not supported.