Thales TCT Product Updates

Thales Trusted Cyber Technologies (TCT) is pleased to announce the introduction of the new Thales TCT CipherTrust k160 appliance. Offering core-level security at the edge, the CipherTrust k160 is designed to seamlessly extend hardware-based cryptographic key management from the datacenter to the edge without compromising on data protection. This cost-effective solution is ideal for small to medium sized deployments commonly found in small offices, remote sites, and tactical environments.

Available to order with either a FIPS-certified or High Assurance token root-of-trust HSM, the Thales TCT CipherTrust k160 is uniquely suited to provide a compact all-in-one cryptographic key management solution backed by the best-in-class security features of the CipherTrust Data Security Platform.

CipherTrust k160 can be used in conjunction with the other physical and virtual appliance models within the CipherTrust product family as part of an enterprise-wide key management strategy. With common security features, user interfaces, and reporting mechanisms across the entire CipherTrust product family, users can leverage their investment in training, security evaluations, and compliance procedures to deploy core-level cryptographic key management capabilities to the edge using the CipherTrust k160.

Resources:

• CipherTrust k160 Product Brief 
• CipherTrust Manager Family Brief
• CipherTrust k160 Landing Page
• Public Announcement
• CipherTrust Manager v2.8 Product Documentation
• CipherTrust k160 Release Notes

Thales TCT is announcing the End of Sale (EOS) and Last Date of Support (LDOS) for the following products:

• KeySecure for Government G160 Standard
• KeySecure for Government G160 High Assurance
• KeySecure for Government Connectors used in conjunction with the KeySecure G160

End of Sale and Last Date of Support Timeline The following table describes the lifecycle milestones, dates, phases, and definitions for the affected products.  The last date to order new product is 30 June 2023.

Milestone	Date	Phase Entered	Description
Lifecycle Notification to Customers	15-Aug-2022	Last Time Buy (LTB)	Customers notified about EOL timeline. Affected products enter LTB: minor enhancements security and bug fixes
End of Sale (EOS)	30-Jun-2023	End of Life (EOL)	Affected products removed from Sales catalog and not sold past this date. Affected products enter EOL: security fixes RMAs permitted
Last Date of Support (LDOS)	31-Dec-2024*		Affected products no longer supported

*Terms of existing contracts extending beyond this day will be honored. Ref: SAT1-500028-001

KeySecure for Government G460 & G350v As previously announced, the KeySecure for Government G460 & G350v will reach EOS on 31-Dec-2022 and LDOS on 31-Dec-2023. For details, reference: https://www.thalestct.com/products/updates/eol-announcement-keysecure-for-government.

Migration Strategy The CipherTrust Data Security Platform allows easy migration from KeySecure for Government, keeping sensitive data secure throughout the transition.

Professional Services offerings designed to assist customers in migrating to CipherTrust Data Security Platform are available.

For more information on migration options or any other questions, please contact your Thales TCT account manager or info@thalestct.com.

Affected Products List

Part Number	Description
KeySecure for Government G160
931-500053-001	KeySecure G160, High Assurance, v8.x
931-500054-001	KeySecure G160, Standard, v8.x
931-500056-001	KeySecure G160, Standard, KMIP Bundle (2 G160 Std, shelf, 10 KMIP connectors, 1 year Plus Maint.)
931-500057-001	KeySecure G160, Standard, KMIP Bundle (2 G160 Std, shelf, 10 KMIP connectors, 3 year Plus Maint.)
KeySecure for Government Connectors (as used in conjunction with KeySecure for Government G160)
931-500002-001	Standard KMIP Connector
931-500005-001	ProtectConnect, Server
931-500006-001	ProtectConnect, Client
931-500036-001	Tokenization
931-500037-001	ProtectApp
931-500039-001	Database Native TDE
931-500040-001	ProtectFile, Server
931-500040-002	ProtectFile, Client
931-500041-001	Transform Utility
931-500042-001	ProtectDB
931-500046-001	Nutanix KMIP Connector
931-500048-001	LINUX Native LUKS

Thales Trusted Cyber Technologies (TCT) is pleased to announce the release of version 7.12.1 of the Luna Network HSM and PCIe HSM. This release encompasses multiple Luna HSM components:

• Luna T-Series appliance software 7.12.1
• Luna Client 7.12.1
• Luna User Documentation Revision I

Each of these components is available as a download from the Thales TCT Support Portal.

Release 7.12.1 includes the following new features:

• REST API Support
• Pycryptoki Python Wrapper Support

Details regarding these new capabilities are available in the Luna User Documentation (Rev I) and the Customer Release Notes (Rev P).

Thales Trusted Cyber Technologies (TCT), a trusted, U.S. based source for cyber security solutions, today announced that its Smart Card 650 v4.2 token (SC650) has received approval from the National Security Agency (NSA) for use in defense networks when using an approved applet (CoolKey version 1.5.558cdcff). The SC650 is a high assurance identification and authentication smart card that brings two-factor authentication to applications and networks where security is critical.

This is an update to the previous SC650 which has been the only certificate-based smart card to ever be designed at all levels from NSA requirements and officially awarded NSA Certification. It enables strong two-factor authentication and proof-positive user identification in all SECRET level environments. The SC650 securely stores users’ credentials, such as digitally-signed certificates, private keys, and network login credentials and seamlessly supports secure key generation, secure key storage, encryption/decryption, and digital signature processing. The SC650 is capable of performing all private and public key cryptographic functions directly on the smart card, thus eliminating potential threats resulting from private key exposure. The SC650 contains a custom smart card ASIC developed by Thales TCT and produced at a U.S. based foundry. The SC650 is manufactured and supported exclusively in the United States to mitigate potential supply chain security risks.

For more information on the SC650 visit thalestct.com/sc650.

Thales TCT is announcing the release of KeySecure for Government 8.16. Continuing our commitment to provide security improvements for the duration of our products’ lifespans, KeySecure 8.16 includes a number of maintenance items and documentation improvements. KeySecure 8.16 is available on all platforms: G460, G160 (Standard and High Assurance), G350v (VMware and AWS) as a field upgrade package – available through our Customer Support Portal. Review the Customer Release Notes for additional information on the improvements included in this release.

As previously announced, Thales TCT has begun the End-of-Life process for KeySecure. Existing KeySecure for Government customers have several options for migrating from KeySecure for Government to the CipherTrust Data Security Platform. For more information on migration options, please contact your Thales TCT account manager or info@thalestct.com.