Release 9.0.25.1¶

Base image upgraded¶

Base image upgraded to address CVE related issues.

New : Introduced Support for Snowflake & Databricks Unity Catalog Connectors¶

Application Connectors now support integration with Snowflake and Databricks Unity Catalog. The configuration workflow has been enhanced with an improved application properties form that allows multiple input values, simplifying setup and management.

Enhancement: Expanded Kubernetes Compatibility for GKE and AKS¶

The Privacera Portal service has been updated to support newer versions of Google Kubernetes Engine (GKE) and Azure Kubernetes Service (AKS). This enhancement removes previous limitations on patch and node image versions, enabling smoother deployments and improved compatibility with modern Kubernetes environments.

Databricks Unity Catalog Support for Managing Connector Configurations in Privacera Portal¶

Databricks Unity Catalog connector configurations can now be managed directly through the Privacera Portal, simplifying configuration management. Refer to the Managing Connector Configurations from the Privacera Portal documentation for more details.

For new Databricks Unity Catalog connector installations, please refer to the setup instructions for setting up the Databricks Unity Catalog connector in the Privacera Portal.

For migrating the existing connectors managed by YAML files in Privacera Manager to the Privacera Portal, please refer to the migrating instructions.

Snowflake Support for Managing Connector Configurations in Privacera Portal¶

Snowflake connector configurations can now be managed directly through the Privacera Portal, simplifying configuration management. Refer to the Managing Connector Configurations from the Privacera Portal documentation for more details.

For new Snowflake connector installations, please refer to the setup instructions for setting up the Snowflake connector in the Privacera Portal.

For migrating the existing connectors managed by YAML files in Privacera Manager to the Privacera Portal, please refer to the migrating instructions.

Enhancement: Support for Managing Foreign Catalog Resources in Databricks Unity Catalog¶

APrivacera now supports managing foreign catalogs—such as AWS Glue—and their associated resources within Databricks Unity Catalog. This enables more centralized governance and streamlined access management across external data sources.

Enhancement: Performance and Scalability Improvements for Lake Formation Connector¶

Resource Loading Enhancements:

• Multi-threaded resource loading has been enabled to accelerate the processing of resource data.
• A new configuration option allows skipping the loading of data_location and tag resources to further optimize performance when those elements are not needed.

Permission Loading Enhancements:

• Multi-threaded permission loading has been enabled to improve speed and scalability, especially in large-scale environments.

Bug Fix: Masking Policy Issue on DECIMAL Columns in Databricks Unity Catalog¶

Resolved an issue in the Databricks Unity Catalog connector where masking policies applied to DECIMAL columns caused unexpected behavior when referencing associated tables.

Enhancement: Validation, Encryption, and Dynamic Masking Improvements¶

The following enhancements have been introduced to improve the functionality and flexibility of PEG (Privacera Encryption Gateway):

Data Validation:

• PEG now validates input data against the defined schema format (e.g., numeric date) to prevent invalid encryption and ensure data integrity.

Non-Deterministic Encryption:

• Added support for non-deterministic encryption. When enabled, identical input values generate different encrypted outputs—ideal for scenarios requiring enhanced privacy and reduced pattern detection.

Dynamic Masking via REST API:

• Masking permissions can now be enforced dynamically through the REST API, based on user groups and roles.

Custom Encryptor Support:

• Introduced support for stream-based encryption and decryption in Databricks (Scala) and FEU environments, allowing greater flexibility for custom integration use cases.