With ServiceNow's deprecation of the GlideEncrypter API (used for Triple DES encryption) and its planned complete removal by Q4 2025, Perspectium will remove the dependency on GlideEncrypter in the Lithium release of the Perspectium ServiceNow application.
Perspectium currently uses Triple DES as one of its encryption method options for sharing records out of your instance and for encrypting secure properties such as your MBS credentials and encryption key when saving these properties into your ServiceNow's instance.
In Lithium, secure properties (your encryption key and MBS credentials) saved into your ServiceNow instance will now be saved into ServiceNow's password2 field type per their alternative approaches to deprecated GlideEncrypter APIs.
For sharing records out with Triple DES as the encryption method, based on a review with ServiceNow, a JavaScript library is used to encrypt with Triple DES and will be backwards compatible with the DataSync Agent and meshlets so you will not have to upgrade the Agent or meshlet.
There is also an alternative approach that encrypts the entire payload sent to MBS using AES-128 or AES-256 to remove all dependencies on Triple DES since it is no longer a recommended security option per NIST-800-131A. See here for more information on this new approach, which requires upgrading the Perspectium ServiceNow application as well as the DataSync Agent and meshlets.
The Lithium release will be made available shortly (release date TBD) to give people time to update before the GlideEncrypter API is removed in Q4 2025.
- You will need to upgrade your Perspectium application to Lithium before the GlideEncrypter API is completely removed in Q4 2025 since we will need to use the GlideEncrypter API to migrate your properties over. The GlideEncrypter API is needed in order to access your current encryption key and MBS credentials from ServiceNow's backend to save back into the system in the password2 field types. Otherwise, if you do not upgrade before then, you will have to manually re-enter your MBS credentials and default encryption keys in the Perspectium Properties page (information will be provided in Q4 2025 on how to enter it manually).
- To continuing supporting Triple DES as the encryption method, the performance will be considerably slower than using GlideEncrypter in the new version. Since Triple DES as a security encryption standard is no longer a recommended option per NIST-800-131A (and the reason ServiceNow is removing GlideEncrypter), this library is used to provide legacy Triple DES support. It is recommended you change to use a more secure encryption method like AES-128 or AES-256 for configuring your (bulk and dynamic) shares.
- If you were previously using the Perspectium Core application with your properties stored in the sys_properties table, you will need to re-enter your secure properties manually after upgrading. The sys_properties records cannot be accessed to move over.
NOTE: This is a non-standard approach and not enabled by default (you would have worked directly with the Perspectium team to enable this). Contact support@perspectium.com for more information.