To deliver the best possible experience for our customers, we continually enhance the quality and security of our products. This latest release introduces new features, including LDAP/AD integration, and further strengthens our security standards by making the hybrid-PQC algorithm the default for TLS key exchange.

Highlights of frXOS-2.9.0

In the following we explain the three most important additions of this new release. The full release notes are listed at the end of this article.

LDAP/AD support for WebDAV Authentication

Managing large networks with numerous users and client devices can be a complex task for companies and organizations. Typically, tools like Microsoft’s Active Directory (AD) or other directory servers (using LDAP) are employed to simplify this process.

With this update, you can integrate your directory server with the fragmentiX Appliance. This enables you to leverage your existing user database for WebDAV authentication, eliminating the need to create users on the fragmentiX Appliance and reducing administrative overhead. Access to network drives can be controlled at the group level, requiring only that you configure user groups on the fragmentiX Appliance and link them to corresponding groups on your directory server.

In addition to this new capability, the existing user and group management on the fragmentiX Appliance remains available for managing S3 access to network drives and adding users not present in the LDAP/AD server. This new feature is optional, and local user and group management continues to be supported.

Hybrid PQC algorithm (X25519MLKEM768) for TLS handshake

With fragmentiX Secret Sharing technology, your data at rest is protected against attacks, even those posed by future quantum computers. In contrast, the data transfer between your devices, the fragmentiX Appliance, and cloud storage providers is secured by HTTPS, using classical asymmetric cryptography, which is susceptible to attacks with quantum computers.

Recently, post-quantum cryptography (PQC) algorithms have been standardized by NIST, and their integration into HTTPS/TLS has begun, with the goal of making data on transit quantum-safe. This development is in line with recommendations from the European Commission, as outlined in their coordinated implementation roadmap for transitioning to post-quantum cryptography.

We’ve supported state-of-the-art hybrid-PQC algorithms, which combine classical elliptic-curve and post-quantum cryptography to provide long-term security, for some time. With this update, we’re prioritizing them for all connections (both front-end and back-end). This means that using a fragmentiX Appliance you are ready to keep your data quantum-safe from start to finish.

However, it’s worth noting that, to our current knowledge, none of the S3 providers support this algorithm yet. Similarly, most client software is also not yet up-to-date with their algorithms.
To take advantage of the hybrid-PQC algorithms, we recommend connecting to a fragmentiX network drive via WebDAV using an up-to-date web browser.

New storage LOCATION templates: Leviia and PlusServer

In today’s digital landscape, the geographical location of servers hosting your valuable data is of increasing importance.
That’s why we’re adding Leviia in France and PlusServer in Germany to our list of approved S3 storage providers.
These additions enable you to store all/more of your data fragments, under the legal jurisdiction of EU27 countries.

We’ve thoroughly tested both providers against our S3 API requirements and confirmed their compatibility with our system.
To ensure seamless integration, we’ve also added configuration templates to our GUI.

To learn more about the storage options approved by fragmentiX, read our Spotlight blog post .

Full Release Notes frXOS-2.9.0

• Release date: 2025-07-11

Security Updates

• Hybrid Elliptic-Curve/PQC algorithm (X25519MLKEM768) for TLS handshake is now prioritized
• Operating system security updates
• Further hardening of WebDAV server
• Further hardening of configuration UI
• Show SHA256 in addition to SHA1 fingerprint of TLS certificate

General improvements

• LDAP/AD support for WebDAV Authentication
• New storage LOCATION templates: Leviia and PlusServer
• Logging refactor: introducing audit, report and debug logging
• New Option to dis-/enable Network drives
• Compatibility with Synology Hyper Backup

Bugfixes

• Object locking for empty folders
• Fixed file overwrite with WebDAV browser access

Update your appliance now

Staying up-to-date is crucial to maximizing the performance and security of your devices!
If you’re a fragmentiX Appliance owner, we recommend installing the latest update as soon as possible!

If you encounter any issues, don’t hesitate to reach out to our support team.

Not a fragmentiX Appliance user yet?
Explore our products to learn more about how you can benefit from our solutions.