Your suggested change has been received. Thank you.

close
Thales Logo

All

  • All
  • CipherTrust Manager
  • CipherTrust Application Data Protection (CADP)
  • CipherTrust Application Key Management (CAKM)
  • CipherTrust Batch Data Transformation (BDT)
  • CipherTrust Cloud Key Management (CCKM)
  • CipherTrust Data Discovery and Classification (DDC)
  • CipherTrust Data Protection Gateway (DPG)
  • CipherTrust Database Protection (CDP)
  • CipherTrust Intelligent Protection (CIP)
  • CipherTrust Integrations
  • CipherTrust Migrations
  • CipherTrust RESTful Data Protection (CRDP)
  • CipherTrust Transparent Encryption (CTE)
  • CipherTrust Transparent Encryption Userspace (CTE-U)
  • CipherTrust Secrets Management (CSM)
  • CipherTrust Vaulted Tokenization (CT-V)
  • CipherTrust Vaultless Tokenization (CT-VL)
  • CTE-Linux
  • CTE-Windows
  • CTE-AIX
  • CTE-K8s
  • CTE-U
  • Crypto Command Center
  • Data Protection on Demand
  • Luna Cloud HSM
  • Luna Network HSM
  • Luna PCIe HSM
  • Luna USB HSM
  • OneWelcome Identity Platform
  • ProtectApp LUKS
  • ProtectServer 2 HSM
  • ProtectServer 3 HSM
  • SafeNet Trusted Access (STA)
  • SafeNet MobilePASS+
  • SafeNet MobilePASS+ for Android
  • SafeNet MobilePASS+ for Chrome
  • SafeNet MobilePASS+ for macOS
  • SafeNet MobilePASS+ for iOS
  • SafeNet MobilePASS+ for WatchOS
  • SafeNet MobilePASS+ for Windows
  • SafeNet Synchronization Agent
  • SafeNet Logging Agent
  • SafeNet Agent for FreeRADIUS
  • SafeNet Agent for NPS
  • SafeNet Agent for Windows Logon
  • SafeNet Authentication Service Private Cloud Edition (SAS PCE)
  • SafeNet Remote Logging Agent
  • SafeNet Keycloak Agent
  • SafeNet IDPrime Virtual (IDPV)
  • SafeNet FIDO Key Manager
  • SafeNet FIDO Key Manager for Android
  • SafeNet FIDO Key Manager for iOS
  • SafeNet FIDO Key Manager for Windows
back

Release Notes

search

Please Note:

printsuggest an edit

Release Notes

copy link to clipboardProduct Description

CipherTrust Application Data Protection for .NET Core provides APIs for performing cryptographic and key management operations using CipherTrust Manager.

copy link to clipboardRelease Description

This release includes bug fix.

copy link to clipboardAdvisory Notes

  • It is recommended not to use the Host property; as this property will be deprecated in future release.

  • Use the new log levels named NONE, ERROR, WARN (default), INFO, and DEBUG. If old log levels are used, they will be automatically set to WARN state.

copy link to clipboardPermissions

To run the CADP for .NET Core, it is important that users have the necessary read and write permissions for log files.

If users do not have appropriate permissions, the CADP for .NET Core will return an error.

copy link to clipboard.NET Standard

CADP for .NET Core version 8.14.1 is supported on .NET Standard 2.1.

copy link to clipboardMulti-threaded Application with Large Number of Threads and Sessions

When spawning a high number of threads with each thread opening a new session, and all threads getting spawned with a delay in milliseconds, the code takes few seconds to process SSL client certificates. On the other hand if the threads can share the session the delay in SSL Client Certificate processing can be avoided.

copy link to clipboardFeatures and Enhancements

  • Handled the Microsoft Security Advisory CVE-2024-30105.

  • Improvised the security for persistent cache.

    (Key(s) present in the persistent cache file will be deleted. Persistent cache file will be updated with the same keys fetched from the CipherTrust Manager while performing crypto operations.)

copy link to clipboardDeprecated Support

  • The Host property is no longer required and will be deprecated in future release.

  • The old log levels (LOW, MEDIUM, HIGH) are deprecated.

  • ProtectApp .NETCore 8.9 and earlier versions are now end of development.

copy link to clipboardResolved and Known Issues

This section lists the issues fixed in this release. Also, the section lists the issues known to exist in the product at the time of release. The following table defines the severity of the issues listed in this section.

SeverityClassificationDefinition
CCriticalNo reasonable workaround exists.
HHighReasonable workaround exists.
MMediumMedium level priority problems.
LLowLowest level priority problems.

copy link to clipboardResolved Issues

This section lists the issues fixed in this release.

IssueSeveritySynopsisSynopsis
CADP-21498HProblem: CADP for .NET Core application crashes if the Syslog server IP is configured and the Syslog properties (such as Syslog_Framing_Type, Syslog_Format) are either set to blank or invalid values are specified.

copy link to clipboardKnown Issues

This section lists the issues known to exist in the product at the time of release.

IssueSeveritySynopsis
CADP-17523CProblem: FF3-1/Card10 remote mode, the crypto operations don't work outside cardinality data provided in the input.
Workaround: Use FF3-1/Card10 in local mode.
PAN-3064LProblem: The HMAC ComputeHash API throws an error when data is more than 4096 bytes in remote mode.
Workaround: Use the GenerateMac API.
CADP-11503MProblem: The Special characters '&' and '<' are not supported in the Passphrase property.
Workaround: Encrypt the Passphrase using PassphraseUtility and set the Passphrase Encrypted property to yes.
CADP-14766MProblem: Decryption of remote encrypted bytes fails on local mode for AES/GCM versioned keys.
CADP-15995MProblem: Special Character '&', '<' , and '>' are not supported in AAD data in AES/GCM.
CADP-24383HProblem: In case of Versioned key, while using the AES/GCM algorithm, the auth tag generated for local mode and remote mode are different. Data encrypted through local mode can be decrypted through local mode only.
Workaround: To resolve this issue, data encrypted through any other connector can be decrypted through CADP for .NET Core remote mode only.
CADP-3914MProblem: User Group Permission - Remote Mode should not check the group permissions.

copy link to clipboardCompatibility Information

copy link to clipboardSupported Target Frameworks

  • .NET 6.0

  • .NET 8.0

copy link to clipboardSupported Platforms

CADP for .NET Core is tested on the following platforms:

  • Windows Server 2019 Datacenter

  • Red Hat Enterprise Linux 8.0 (Ootpa)

  • macOS 13.3

  • Ubuntu 20.04

copy link to clipboardKey Manager

CipherTrust Manager 2.2 and higher versions.

copy link to clipboardDeliverables

This release includes the following components:

  • NuGet Package (CipherTrust.CADP.NETCore)

  • Product documentation is available on Thalesdocs

  • CADP for .NET Core samples are available on GitHub

We have attempted to make these documents complete, accurate, and useful, but we cannot guarantee them to be perfect. When we discover errors or omissions, or they are brought to our attention, we endeavor to correct them in succeeding releases of the product.

copy link to clipboardLimitations

  • For SSL connection, if multiple NAE servers are specified in the properties file, the Common Name/SAN must be same for all the server certificates. The Host property in the properties file only supports single value.

  • For Persistent Cache to work properly, the total number of key versions on the CipherTrust Manager should be less than 10.

On this page