Your suggested change has been received. Thank you.

close

Suggest A Change

https://thales.na.market.dpondemand.io/docs/dpod/services/kmo….

Thales Logo

All

  • All
back

Release Notes

Release Note for CTE v7.9.0 for Windows

search

Please Note:

Release Note for CTE v7.9.0 for Windows

Release Note Version Date
v7.9.0.xx 1 2026-01-23

This release of CipherTrust Transparent Encryption for Windows adds new features, fixes known defects and addresses known vulnerabilities.

New Features and Enhancements

AGT-64198 Documentation: RWP - block a process from running again once detected as ransomware: Sage. RW only RN only

AGT-67642 Agent_signer information now included in agent information collection and saved to a log

AGT-67811 Doc: Enhance RWP remote attack detection to better differentiate between SIDs RN only

Resolved Issues

AGT-68296 LDT encryption Failed to create metadata error RN only

Known Issues

  • AGT-36370: The vorvmd.log reports an error message, Not guarding path when guarding LDT over CIFS GuardPoint

    AFFECTED VERSIONS: N/A

    This error message displays when the CTE agent is in the process of authenticating the user. This error can be safely ignored.

  • AGT-39189 | AGT-55063: CTE failed to unguard after changing to incorrect CIFS credentials

    AFFECTED VERSIONS: All

    If a user has a CIFS guarded path, and tries to access it with invalid credentials, the unguard request fails. After this, if the user switches to valid credentials, the unguard request still fails because CTE agent is unable to access the CIFS share to update the credentials.

    Work-around

    To successfully guard/unguard a CIFS path, use valid credentials.

  • AGT-39190: File modified time does not change after rekey for excluded files

    AFFECTED VERSIONS: 7.7.0 — 7.9.0.XX

    This is a limitation with the current CTE agent. This is due to the Windows Redirected Drive Buffering Subsystem (rdbss) limitation.

  • AGT-48196: Microsoft DPM recovery creation failed when creating an incremental backup recovery point

    AFFECTED VERSIONS: 7.5.0 — 7.9.0.XX

    Work-around

    Perform a complete backup. Do not perform an incremental backup.

  • AGT-48580: The gzip files in a directory can be mistakenly identified as ransomware by Ransomware Protection

    AFFECTED VERSIONS: 7.5.0 — 7.9.0.XX

    Some compression algorithms haves high entropy value and intermittently, zip or unzip activity that occurs on files that already themselves have high entropy, within a Ransomware Protection GuardPoint, is mistakenly identified as ransomware.

    Work-around

    Add the zip/gzip/winzip programs to the Ransomware Protection process exemption list in the CipherTrust Manager.

  • AGT-48862: Unguard process fails if CTE secfsd service is down

    AFFECTED VERSIONS: 7.5.0 — 7.9.0.XX

    The secfsd service is a critical CTE service. If this service is down, certain CTE features may not work as intended.

    Work-around

    Manually restart the secfsd service in the service manager.

  • AGT-58577: Issues and limitations for Multifactor Authentication and Ransomware Protection co-existence

    AFFECTED VERSIONS: 7.7.0 — 7.9.0.XX

    Multifactor Authentication is not yet supported for a GuardPoint with Ransomware Protection with a CTE Agent.

  • AGT-61138: When applying a GuardPoint on the UNC (Universal Naming Convention) name instead of a Local drive, files display as cipher-text format when accessing using local drive

    AFFECTED VERSIONS: 7.7.0 — 7.9.0.XX

    User must apply GuardPoint on the local drive. If the user decides to apply the GuardPoint on the UNC path, user must use the UNC path to access the data. Do not view through the local Windows explorer path.

  • AGT-64352: No Audit logs generated for same resource set on Standard Policy vs FAM policy

    AFFECTED VERSIONS: 7.7.0 — 7.9.0.XX

    In FAM, no audit logs are generated with a FAM policy having a resource set matching the designated pattern.

  • AGT-64711: Data transformation is failing in case of existing data in OneDrive using dataxform

    AFFECTED VERSIONS: 7.7.0 — 7.9.0.XX

    For OneDrive v23.066 and subsequent versions, Microsoft made a change to their software. Users can no longer disable the Files On-Demand feature. Disabling this feature is required for the CTE driver. As a result, the CTE driver can only support using a standard policy and Data Transformation with previous versions of OneDrive v23.066. For OneDrive v23.066 and subsequent versions, the CTE driver supports using a standard policy. It does not support using Data Transformation.

  • AGT-64971: Unable to delete GuardPoint inside a Ransomware protected volume, when simulating a ransomware attack when a process is marked as malicious by RWP

    AFFECTED VERSIONS: 7.9.0.XX

    GuardPoint is not being removed from the directory. On CipherTrust Manager it displays that it's in the processing state.

    Work-around

    Reboot the agent.

  • AGT-65794: CTE/FAM duplicate audit logs generated for single action

    AFFECTED VERSIONS: 7.9.0.XX

    For CTE protected paths, there can be multiple FAM audit logs generated for a single I/O operation.

  • AGT-66386: Not able to access CIFS file from a Windows AccessOnly node after key rotation

    AFFECTED VERSIONS: 7.8.0.77 — 7.9.0.XX

    If a file on a CIFS share is accessed from a Windows AccessOnly node immediately following the initial LDT transformation operation, and then a subsequent rekey is performed, the file is no longer be accessible on the Windows AccessOnly Node.

    Workaround

    Reboot the Windows AccessOnly node.

End of Life

Due to the end of life status of DSM, CTE no longer ships with VMSSC.

On this page