Release Notes
Product Description
CipherTrust Vaultless Tokenization (CT-VL) is a platform-independent appliance (virtual machine or bare-metal) that offers REST-API services to protect sensitive data.
Release Description
This release includes OS migration from CentOS to Ubuntu, security and bug fixes.
Note
Support for DSM as a key manager has been deprecated this release onward.
CLI Command Changes
| Command | CT-VL 2.6.x to 2.8.3 | CT-VL 2.9.0 |
|---|---|---|
network set --defroute | Supported | Not supported (use network set -- dns and network set --gateway) |
icapi setup | A message prompt to restart vts service is displayed | There is no message, the vts service will restart silently. |
vts service --restart | Status is displayed | Status is not displayed |
system df --direct | Supported | Not supported |
system terminal --terminate ALL | Supported | Not supported |
network dns | Supported | Not supported (use network set --dns) |
Resolved Issues
| Reference | Description |
|---|---|
| CADP-22387 | Mismatch in the number of log entries and data displayed on the CT-VL dashboard. |
Known Issues
| Reference | Description |
|---|---|
| CADP-21893 | For the restore process, UI session timeout after 10 minutes, therefore it is recommended to use CLI. Workaround: To monitor the data restore progress, use the following command: vts logfile --tail clish.log |
| CADP-16484 | CKMS encryption could momentarily fail to respond (HTTP 502 Error) if it encounters numerous invalid encryption requests. |
| TOK-3117, CS1526685, CS1528902, CS1530674 | Excessive PostgreSQL WAL archive files could occur causing disk space issues. Upgrading to v2.6 or higher will not fix the issue. The real fix is to recreate the cluster with a base image of v2.6 or higher. |
| CADP-21939, CS1570441 | CT-VL backup that used a DSM cannot be restored into a CT-VL 2.9.0 VM. |
| CADP-22912 | CT-VL not respecting the Admin group permissions for encryption/decryption. |
| CADP-22321, CS1576683 | Error 502 will appear for sign/verify operation with HMAC key if key size is 512. |
Limitations
Upgrade to CT-VL 2.9.0 is not supported. Refer to Migrating from CT-VL Lower Versions to 2.9.0 for details.
