Subscribe via E-mail

Your email:
Download Now
Free Consultation
Request Demo

Blog

Managed File Transfer and Network Solutions

Current Articles | RSS Feed RSS Feed

What Is An SFTP Key?

  
  
  
  
  
sftp connection and impostor resized 600

Overview

What good is an encrypted data transfer if the information it protects still falls into the wrong hands in the end? SFTP is best known for its ability to encrypt data while in transit. But while data-in-motion encryption can secure confidential information as it traverses the network, encryption can't prevent an impostor from carrying out the download himself. For that purpose, you'll want your users to authenticate with the right password and the right SFTP key.

How To PGP Encrypt Every Single File Uploaded By A Particular User

  
  
  
  
  
pgp encryption on select users resized 600

Overview

Some guys in your organization may have to handle lots of sensitive information. Because there's always a good chance their files are going to contain confidential data, it would be best to ensure that every single file they upload to your server get utmost protection. On JSCAPE MFT Server, you can do that by applying OpenPGP encryption on all virtual paths owned by that user.

Required MFT Server Password Settings for PCI DSS Compliance - Part 2

  
  
  
  
  
01 mft server admin configuration resized 600

In part 1, we enumerated all PCI-DSS requirements that directly affected password settings and practices. Here, we're going to show you how and where in JSCAPE MFT Server you can configure settings in order to meet those requirements.

Required MFT Server Password Settings for PCI DSS Compliance - Part 1

  
  
  
  
  
PCI DSS requirements

Overview

Certain PCI-DSS requirements dictate how passwords should be generated, managed and used in file transfer systems located within or connected to your cardholder data environment. In this post, we'll identify what those requirements are and then point to ways you can meet them when using JSCAPE MFT Server.

How To Automatically PGP-Encrypt A File Upon Upload Using Triggers

  
  
  
  
  
09 jscape mft server pgp encryption resized 600

Overview

OpenPGP encryption is an excellent way of securing sensitive files on a server. Even if the server is compromised, the information in those files can remain secret. On JSCAPE MFT Server, PGP encryption can be made to execute automatically. You can configure the server so that, as soon as a file is uploaded, the server will immediately encrypt it. 

Using DLP to Protect Credit Card Data - Part 3

  
  
  
  
  
20 jscape mft server key manager resized 600

Applying OpenPGP encryption to a file containing credit card numbers

In Part 1, we showed you how to configure DLP on a group directory in order to detect uploaded files that contained credit card numbers. Then in Part 2, we laid out the steps for sending an automatic email notification whenever such files were detected. This time, we're going to teach you how to protect those files using OpenPGP encryption.  

Using DLP to Protect Credit Card Data - Part 2

  
  
  
  
  
denied download dlp match

If you followed the steps in Part 1, then you should now have a DLP-enabled group. That group directory will have the capability to detect files stored in it that contain certain credit card numbers. If a member of that group attempts to download such a file, the server will prevent the download from taking place and fire a "DLP rule matched" event. In the screenshot below, a user is prevented by JSCAPE's DLP from downloading a file containing MasterCard numbers.

Using DLP to Protect Credit Card Data - Part 1

  
  
  
  
  
01 jscape mft server setup teamgold group users resized 600

Overview

A large share of all data security breach incidents involve non-malicious company insiders. In fact, Ponemon's "2013 Cost of Data Breach Study: Global Analysis" revealed that an astounding 35% of data security breaches in 2012 were simply caused by negligent employees or contractors. In a file transfer server, where multiple users can share a single folder, such incidents can easily happen.

Protecting FTP Passwords from Brute Force Attacks

  
  
  
  
  
ftp brute force

"Always use strong passwords." - You probably don't pay too much attention to this advice, do you? A lot of people don't either. That's why brute force is still one of the favorite techniques for breaking into any password-protected system, including FTP servers. It's really not very difficult to carry out. Let me show you.  

Which Works Best for Encrypted File Transfers - RSA or DSA?

  
  
  
  
  
server client pgp rsa dsa resized 600

Overview

During the process of generating server keys, client keys, or PGP keys in the JSCAPE MFT Server Manager, you're asked to choose between two supported key algorithms: RSA or DSA. Which one should you choose?

All Posts