November 8th, 2011· Close bug [ 3372449 ] All numeric names cannot be used
· add search functionality for PKCS#11 libraries
· fix ASN.1 encoding of PKCS#10 request
· Close bug [ 3318203 ] Build failure with GNU gold linker
· Add x509v3 extensions to the list of selectable columns
· Close bug [ 3314262 ] Incorrect "Path length" template parameter handling
· Close bug [ 3314263 ] Unrevoking a certificate does not make it "Trusted"
· Feature Request [3286442] Make success/import messges optional
· improve Password entry
· Improve SPKAC import
· add french translation by Patrick Monnerat
· Export requests or certificates as openssl config file
· Support building with EC disabled
· Close bug [3091576] Private key export is always PKCS#8 encoded
· Feature Request [3058196] Autoload database
· Feature Request [3058195] Export directly to the clipboard
· Close bug [3062711] Additional OIDs
· Close bug [3062708] Invalid user configuration file path name
· Fix PKCS#11 library handling
August 31st, 2010· support loading more than one PKCS#11 library
· remove the need for engine_pkcs11
· now more than one PKCS#11 library can be loaded and used in parallel
· Add de/selection of columns and add a lot of new possible columns
· All Subject entries, the subject hash and whole name,
· Certificate fingerprints, dates, CA info, CRL number,
· corresponding key of certs and requests
· Improve CRL generation [3035294] CRLNumber, CRLReason
· improve creating templates from cert
· enhance parsing of CRL-DP, SAN, IAN and AuthInfoAcc
· add support for CertificatePolicies
· unknown extension are written as generic DER
· improve date handling. "notBefore" is not reset to now anymore
· when applying a time range
· Support dropping files onto the application
· russian translation by Pavel Belly
· support loading DER formatted PKCS#8 keys
· ease commandline use
· add DH param generation menu entry
· improve token handling and PIN changing dialogs
· improve key-value table input for "additional DN entries"
· PIN and PUK changing implemented
· apply partial template-contents
· applying the subject only or the extensions only is possible now
· add informational messageboxes
· whenever an item was successfully created or imported
· add support for random serial numbers
· improve messages, usability and german translation
· improve token support
· token initializing
· creating keys on a token
· store existing keys on a token
· delete keys and certs from a token
January 13th, 2010· fix string conversion from QString to ASN1
January 13th, 2010· improve documentation
· improve file-dialog handling
· Generate Template from certificate or PKCS#10 request
· Feature request [2213094] and [1108304]
· add hash algos "ripemd160" and "SHA384"
· add the "no well-defined date" from RFC 5280 as checkbox
· Feature request [1996192]
· Include "OCSPSigning" in misc/eku.txt
· Support for EC keys
· Updated Step-by-step documentation
· set proper file-extension .xdb on opening databases
September 17th, 2009· support modifying the CSR subject during signing
· update key images
· fix date settings in Certificate renewal dialog
· fix certificate request verification
· check for duplicate x509 v3 extensions
· Bug [ 1881482 ] and [ 1998815 ]
· make sha1 the default hash to avoid problems with other software
· Bug [ 1751397 ]
· add validation button to see all extensions before creating the cert
· change the hashing for the default password
· this makes it incompatible to older versions
· extend template format for nconf settings
· add nconf input field for arbitrary OpenSSL extensions
· and a "validate" button to check the settings before applying
· fix xca.desktop Bug [ 1837956 ]
· fix item-export error handling
· add PEM paste import feature
· extend PEM import to import all items from a PEM file
Find us on Google+
