Thales Data Protection on Demand 

https://thalesdocs.com/dpod/support/changelog/index.html

Removed Service Provider Tenant Usage Report and Associated Endpoints

The Service Provider Tenant Usage Report and the associated tenants/usageReport, tenants/usageDetails, and service_instances/usageDetails endpoints have been removed from the platform.

As an alternative use the Service Report in the DPoD service provider tenant or the /v1/service_instances/usageBillingReport endpoint, and the  /v1/backoffice/serviceAgreements{tenantId} endpoint to compile tenant usage information.

Removed API Endpoints

Removed

The PATCH /tenants/{id}/admin/reset and POST /tenants/{id}/admin/resetMfaToken operations have been removed from the DPoD Platform API.

Service provider administrators can no longer reset the password or MFA token of a user inside of a child tenant.  Users can use the self-service resources in the DPoD platform or submit requests to an available administrator. See User Management for more information.

Release 1.16

Added

  • Version 10.2 of the HSM service client is now available for download from Thales Data Protection on Demand. This client supports hybrid usage of both HSMoD services and the Luna HSM product line, as detailed in the HSM on Demand Client User Guide. Refer to the HSM Client 10.2 Customer Release Notes document for more information. See Upgrading your HSMoD Service Client for more information about updating your HSMoD service client. 
  • HSM on Demand service clients now use JWT authentication. 
  • The HSMoD service client is now supported on the following operating systems:
    • RHEL8/CentOS8
    • Windows Server 2019 (standard and core)
  • You can configure additional logs (Application Error Logs and Curl Logs) in the application console. See the HSM on Demand Troubleshooting section for more information. 

Changed

  • The new HSMoD service has updated entries in the REST and XTC sections of the crystoki.ini (Windows) and the Chrystoki.conf (Linux) configuration files. Refer to the Configuration File Summary for a description of the default options and additional settings. 
  • Deleting a client from a JWT authenticated HSMoD service now revokes the client ID and client secret associated with that client. Create a new HSMoD service client for the service to resume access. See Managing HSMoD Services for more information about deleting a service client and revoking the service credentials. 

Removed

  • Older Java versions are no longer supported. See the HSM Client 10.2 Customer Release Notes document for more information.
  • If your application relies on Oracle Java 7 or Java 8, you must update the advanced version provided by Oracle. You require (at minimum) version 7u131 or 82u121. Please refer to the Oracle website for more information.
  • If your application relies on IBM Java 7 or 8, do not update your service client.If you want to update your client software, consider adopting OpenJDK or another supported Java version See Supported Cryptographic APIs.

Bugs Found

  • DPS-5531 - If you exit the Suggest An Edit feature, in the DPoD Platform documentation, using the Close button, you can no longer scroll the documentation page. Refresh the page to continue scrolling.
  • DPS-5493 - The Rotation Policies section of the Salesforce Key Broker service do not display. There is no workaround at this time.
  • DPS-5433 - Tenant administrator users cannot reset their password using the Actions column in the User Details table. Change your Tenant Administrator password by clicking Change password in the upper right corner of the DPoD UI. 
  • SH-4987 - When creating a self-signed certificate with cmu selfsigncertificate, additional characters are added to the specified serial number. Use cmu getattribute to list the actual serial number assigned to the certificate.

Bugs Fixed

  • Luna-11616 - LunaCM displays available slots if the client fails to resolve the DPoD service's hostname. Restart LunaCM to re-attempt the connection to the service.
  • Luna-11447 - Resolved a segmentation fault stopping HA members from failing over to an HSMoD service.
  • HOD-957 - The default log level in the client was updated to provide improved details. 

Release 1.10

Features under development

  • FIPS Certification Firmware Candidate - The HSM firmware is undergoing FIPS certification coordination.

Added

  • Added the Virtual Token Library (VTL) to the 1.10 HSMoD service client. 
  • Client patched reducing timeout and failover issues during key and certificate migration.
  • Direct link to SafeNet Data Protection on Demand **Status Page** available in user interface footer.
  • The Company name no longer needs to be unique. Now, multiple enterprise tenants can share a common company name.
  • Service provider monthly reports now include the minimum billable units (MBU) selection from the tenants **Initial Elections** form.

Deprecated

  • Deprecating support for 32-bit operating systems.
  • Ending support for Windows Server 2008 and Windows Server 2008 R2.

Removed

  • You cannot download a new HSMoD service client for a service which existed prior to release 1.5. Recreate the service.

Bugs Fixed

  • DPS-3071 - Deleting an application owner account before deleting any associated platform credentials results in being unable to delete both the platform credentials and any associated subscriber group.
  • DPS-3006 - The HSM on Demand service generic mapping refers to key_vault in reports and the API.

Release 1.9

Features under development

  • FIPS Certification Firmware Candidate - The HSM firmware is undergoing FIPS certification review.

Added

Changed

Deprecated

  • LunaProvider.jar

Removed

  • You cannot download new HSMoD service clients for a service which existed prior to release 1.5. Recreate the service.

Release 1.8

Features under development

  • FIPS Certification Firmware Candidate - The HSM firmware is undergoing FIPS certification review.
  • Conversion from evaluation to subscriber tool for enterprise tenants.

Added

Removed

  • You cannot download new HSMoD service clients for a service which existed prior to release 1.5. Recreate the service.

Bugs Fixed

  • DPS-2159 - When the service provider administrator edits an enterprise tenant, the tenant administrator field displays empty.