Your suggested change has been received. Thank you.

close

Suggest A Change

https://thales.na.market.dpondemand.io/docs/dpod/services/kmo….

Thales Logo

All

  • All
back

Release Notes

search

Please Note:

Release Notes

Product VersionGA Date
1.5.0November 4, 2025

Product Description

CipherTrust Data Protection Gateway (DPG) allows enterprises to protect any sensitive data which is incoming or outgoing from a cloud-native application via REST API. DPG is designed from the ground up to seamlessly fit with existing cloud-ready applications. It is deployed as a sidecar and performs cryptographic operations transparently on behalf of the application. The application never has to know about encryption. Best of all, no code changes are necessary. DPG enables enterprises to centralized configure their cryptographic policies in a reusable, human-readable way and to deploy data protection that fits seamlessly within their native cloud deployment.

Release Description

DPG is delivered as a standard Docker image and, as such, can be deployed in any Kubernetes environments or as a standalone Docker Container. The release contains new features.

New Features

The following table lists the features introduced in this release and their compatible CipherTrust Manager versions:

Feature DescriptionCompatible CM version
Added support for AES/GCM algorithm in protection policy.2.22 and higher versions
Added support to handle small input value in format preserving algorithms.2.22 and higher versions
Added provision to use randomly generated nonce in cryptographic operations.2.22 and higher versions
Added support of AES/CTR algorithm in protection policy.2.23 and higher versions
Added an option to generate irreversible tokens; these tokens can't be converted back to their original value.2.23 and higher versions
DPG can now listen to healthz/liveness probes and metrics on HTTP port (8080). Follow the below links for details:
Monitoring DPG health
Performance Metrics		2.11 LTS and higher versions

Compatibility Information

DPG is compatible with CipherTrust Manager 2.11.1 LTS and higher. However, the compatibility of some features with CipherTrust Manager may vary. Refer to Features for more details.

Resolved Issue

The following issue is fixed in this release.

IssueSeveritySynopsis
CADP-17557HCan't reveal Hindi characters when access policy is configured to reveal data as masked value.
CADP-24306HDPG enters panic mode (out of bound) while performing operations on large data using FF3-1.
CADP-24476HThe liveness and readiness probes are not getting updated when heartbeat is missed.
CADP-24463HDPG throws error when processing single character/digit input.
CADP-26240MDPG enters panic mode when destination URL doesn't have scheme.
CADP-27006MThe response of DPG probes is a text string, StatusOK.
CADP-24449LIncorrect error message is logged when reveal operation fails due to connectivity issue with CipherTrust Manager.

On this page