Release Note for CTE v7.4 for Windows

Release v7.4.0.99 of CipherTrust Transparent Encryption (CTE) for Windows adds new features, fixes known defects and addresses known vulnerabilities.

New Features and Enhancements

The major improvements to CTE for Windows in this release are:

• Ransomware Protection Support

  CTE Agent now monitors volumes and detects Ransomware. It protects all of your data from a Ransomware attack.

  See Ransomware Protection Support for more information.

  Ransomware Protection Support is compatible with CipherTrust Manager v2.12 and subsequent versions.

• LDT Access Only Nodes

  CipherTrust Transparent Encryption now supports clients accessing LDT CIFS shares for read/write operations without requiring them to become part of an LDT Communication Group, or participate in data transformation.

  See LDT Access Only Node for more information.

• Integration with Microsoft OneDrive with CTE

  You can now encrypt Microsoft OneDrive files with CTE for standard policies on a Windows server.

  See Encrypt Microsoft OneDrive files with CTE for more information.

• LDT to support dynamically added resource sets

  CipherTrust Transparent Encryption v7.4.0, and subsequent versions, allows users to modify the Key Rules while an LDT policy is active and enforced on a client. Users can add new rules and modify the existing rules.

  See Modifying Key Rules for more information.

• DUO MFA Support

  You can now use Cisco DUO for Multifactor Authentication for CTE GuardPoint.

  See Using Cisco DUO for Multifactor Authentication for CTE GuardPoints for more information.

• Support for sAMAccountName

  You can now use a sAMAccountName name in User sets.

  See Choosing a Login Name Type for more information.

• Report exact number files encrypted in the GuardPoint

  A new command has been added, voradmin ldt summary <guard path> to report the exact number files encrypted in the GuardPoint.

  See CTE-LDT Command-Line Administration for more information.

• AES-NI

  The host on which you want to install CTE must support AES-NI hardware encryption. If it does not, any attempt to install or upgrade CTE to release 7.0.0, or any subsequent version, will fail.

Resolved Issues

• AGT-42578: QOS logs do not clear automatically

  The Linux LDT QOS logs now automatically rotate as the logs grow in size. Previously, the log kept growing and caused system performance issues. Now, when the log reaches 1 MG in size, LDT rotates the log. LDT saves a maximum of five logs. After 5 files are created, it deletes the oldest log.

• AGT-45502 [CS1470664]: Agent installation crashes a Windows Server 2019

  Tanium, a third-party security product, attempted to access a CTE metadata filenode and was denied access. This caused an interoperability issue between Tanium and the CTE drivers and resulted in a system failure. This issue has been fixed.

• AGT-45542 [CS1473172]: Failed to transform the data from ProtectFile to CTE when running Data Transformation

  During Data Transformation, the read and write operations must be aligned with the disk sector. {dxf} was handling disks with a 512 byte sector size. It was failing for disks that had a 4096 byte sector size. This issue has been fixed.

• AGT-46299: Server Freezing due to CTE

  This was due to a synchronization issue. CTE threads were waiting for certain locks to be released. They were not released because another APC level task interrupted the CTE thread progress. This has been fixed.