Your suggested change has been received. Thank you.

close

Suggest A Change

https://thales.na.market.dpondemand.io/docs/dpod/services/kmo….

Thales Logo

All

  • All
back

Release Notes

search

We're moving!

A new home for CipherTrust documentation will be introduced on December 02, 2025! Visit https://docs-cybersec.thalesgroup.com for a preview.

Please Note:

Release Notes

Product Description

CipherTrust Data Protection Gateway (DPG) allows enterprises to protect any sensitive data which is incoming or outgoing from a cloud-native application via REST API. DPG is designed from the ground up to seamlessly fit with existing cloud-ready applications. It is deployed as a sidecar and performs cryptographic operations transparently on behalf of the application. The application never has to know about encryption. Best of all, no code changes are necessary. DPG enables enterprises to centralized configure their cryptographic policies in a reusable, human-readable way and to deploy data protection that fits seamlessly within their native cloud deployment.

Release Description

DPG is delivered as a standard Docker image and, as such, can be deployed in any Kubernetes environments or as a standalone Docker Container. The release contains new feature and bug fixes.

Feature

Added support for audit logging to record information about who has accessed the DPG application and what operations they have performed within a given period of time. For CipherTrust Manager releases prior to 2.10, audit logging is available with limited support. To use the complete functionality, upgrade your CipherTrust Manager to latest version.

Refer to the DPG document for the complete list of features.

Compatibility Information

CipherTrust Manager 2.11.1 LTS and higher.

Resolved Issue

The following issues are fixed in this release.

IssueSeveritySynopsis
CADP-10184HDuring reveal operation, if default reveal format is selected as masked value, DPG becomes unresponsive.
CADP-11341HIf a user selects algorithm as FF3, tweak algorithm as NONE, and passes 16-byte hex encoded tweak data, DPG throws the Generic local cryptography error.
CADP-11492HFixed OpenSSL vulnerabilities.
CADP-11733MPredefined character sets (Alphanumeric, All printable ascii, and All digits) don't work with FF1v2 and FF3 algorithms.
CADP-8931MDPG 1.1.0 is not backward compatible with CipherTrust Manager 2.8.

On this page