With ServiceNow's deprecation of the GlideEncrypter API (used for Triple DES encryption) and its planned complete removal by Q4 2025, Perspectium will be releasing a new version of the Perspectium Core application for ServiceNow to remove the dependency on GlideEncrypter.
Perspectium currently uses Triple DES as one of its encryption method options for sharing records out of your instance and for encrypting secure properties such as your MBS credentials and encryption key when saving these properties into your ServiceNow's instance.
In this new version, secure properties (your encryption key and MBS credentials) saved into your ServiceNow instance will now be saved into ServiceNow's password2 field type per their alternative approaches to deprecated GlideEncrypter APIs.
For sharing records out with Triple DES as the encryption method, based on a review with ServiceNow, a JavaScript library is used to encrypt with Triple DES and will be backwards compatible with the DataSync Agent and meshlets so you will not have to upgrade the Agent or meshlet.
We will also be developing a different approach with encrypting the entire payloads sent to MBS to remove all dependencies on Triple DES since it is no longer a recommended security option per NIST-800-131A.
All changes will be made in a release shortly (release date TBD) to give people time to update before the GlideEncrypter API is removed in Q4 2025.
- You will need to upgrade your Perspectium application before the GlideEncrypter API is completely removed in Q4 2025 since we will need to use the GlideEncrypter API to migrate your properties over to using the new approach. The GlideEncrypter API is needed to access your current encryption key and MBS credentials from ServiceNow's backend to save back into the system in the password2 field types. Otherwise, if you do not upgrade before then, you will have to manually re-enter your MBS credentials and default encryption keys in the Perspectium Properties page.
- To continuing supporting Triple DES as the encryption method, the performance will be considerably slower than using GlideEncrypter in the new version. Since Triple DES as a security encryption standard is no longer a recommended option per NIST-800-131A (and the reason ServiceNow is removing GlideEncrypter), this library is used to provide legacy Triple DES support. It is recommended you change to use a more secure encryption method like AES-128 or AES-256 for configuring your (bulk and dynamic) shares.
- If you were previously using the Perspectium Core application with your properties stored in the sys_properties table, you will need to re-enter your secure properties manually after upgrading. The sys_properties records cannot be accessed to move over.
NOTE: This is a non-standard approach and not enabled by default (you would have worked directly with the Perspectium team to enable this). Contact support@perspectium.com for more information.