Stormshield KMaaS 4.2 new features and enhancements

For information about the Google services supported by the Stormshield KMaaS (client-side encryption), refer to the section Which services CSE supports of Google documentation About client-side encryption.

Google Meet in-meeting chat

The content of Google Meet chat messages can now be secured with the Stormshield KMaaS.

Periodic refresh of KEKs

If you are using a Key Management System (KMS), you can now set the refresh frequency for KEKs.

One-off refresh of KEKs

KEK retrieval has been optimized. A one-off KEK refresh is now performed if the KEK ID cannot be found in the host local cache. This may occur if you have several instances of the Stormshield KMaaS.

Thales Ciphertrust Manager Key management system

It is now possible to use the private keys for Gmail S/MIME in the Thales Ciphertrust Manager via REST API. The list of algorithms supported in this mode is limited. For more information, refer to the Administration guide of the Stormshield KMaaS.

Customized access rules (OPA)

Custom claims provided by the identity provider can now be used to create OPA rules.

HTTP proxy

You can now exclude certain endpoints from the HTTP proxy.