Your suggested change has been received. Thank you.

close
Thales Logo

All

  • All
back

Release Notes

search
print

Release Notes

copy link to clipboardProduct Description

CAKM for Oracle TDE provides key management and data encryption capabilities, in conjunction with the CipherTrust Manager, to Oracle Transparent Data Encryption (TDE).

copy link to clipboardRelease Description

This release includes new features and enhancements.

copy link to clipboardFeatures and Enhancements

  • OpenSSL Upgrade: The OpenSSL version used by CAKM for Oracle TDE is upgraded to 3.0.8.

  • Supported TLS: Added support of TLSv1.3.

copy link to clipboardSupported Product Versions

copy link to clipboardSupported Platforms

  • Windows Server 2019, 64-bit

  • RHEL 7.x, 64-bit (validated with RHEL 7.9)

  • RHEL 8.x, 64-bit (validated with RHEL 8.7)

  • Oracle Linux 7.x, 64-bit (validated with OEL 7.9)

  • Oracle Linux 8.x, 64-bit (validated Dataguard and GoldenGate on OEL 8.x)

copy link to clipboardSupported Oracle Database

  • Oracle Database 19c (validated with 19.9.0.0.0)

  • Oracle Database 21c (validated with 21.3.0.0.0; only for RHEL 8.7)

copy link to clipboardSupported CipherTrust Manager

  • CipherTrust Manager 2.5.2 and higher

Note

  • Support for LDAP Users with CipherTrust Manager version 2.8 and above

  • Support for V$Encryption Key with CipherTrust Manager version 2.10 and above

  • Migration from VKM to CAKM for Oracle TDE is supported from CipherTrust Manager 2.5.2 and higher.

copy link to clipboardKnown Issues

This section lists the issues known to exist in the product at the time of release. The following table defines the severity of the issues listed in this section.

SeverityClassificationDefinition
CCriticalNo reasonable workaround exists.
HHighReasonable workaround exists.
MMediumMedium level priority problems.
LLowLowest level priority problems.

copy link to clipboardKnown Issues

IssueSeveritySynopsis
CADP-20454HProblem: Unable to upgrade CAKM for Oracle TDE from version 8.10 to higher versions using both GUI and silent installation for Windows platform only

copy link to clipboardUpgrade Paths

CAKM for Oracle TDE can be upgraded from:

  • SafeNet PKCS#11 library to CAKM for Oracle TDE

    FromTo
    SafeNet PKCS#11 libraryCAKM for Oracle TDE 8.10.0 or higher

    Note

    Upgrade is validated from SafeNet PKCS#11 Library 8.3.0 and higher.

  • VKM to CAKM for Oracle TDE

    FromTo
    VKM 6.3.0 or higherCAKM for Oracle TDE provider 8.10.0 or higher
    DSM 6.4.4 or higherCipherTrust Manager 2.5.2 and higher

copy link to clipboardLimitations

  • To avail the V$Encryption functionality, it is recommended to create one user only in one domain on the CipherTrust Manager with Key Users privileges. If there are more than one user with key privileges in the same domain, only the first user will be able to view the V$Encryption.

  • V$encryption is only supported if the CipherTrust Manager is reachable.

  • V$encryption view will only show recently created/updated 500 keys:

    • if the number of master keys are greater than 500 per domain on the CipherTrust Manager version 2.12 and above.

    • if the number of master keys are greater than 500 across the CipherTrust Manager versions 2.10 and 2.11.1.

On this page