Blog

Managed File Transfer and Network Solutions

The SSH / SFTP Key Fingerprint And Its Role In Server Authentication

Posted by John Carl Villanueva on Thu, Aug 04, 2016 @ 11:30 AM

The first time a user connects to your SSH or SFTP server, his/her file transfer client may display an alert or notice indicating it doesn't recognize the server's fingerprint. What it's actually referring to is the server's SSH/SFTP key fingerprint, an important security feature that helps users and client applications authenticate SSH/SFTP servers. This post explains how it's used.

 

Read More

Topics: Security, Secure File Transfer, SFTP

Streamlining Data Transfers for State Data Breach Notification Law Compliance

Posted by John Carl Villanueva on Tue, Jul 26, 2016 @ 07:35 AM

Overview

Most US states now have their own data breach notification law. If your business operations involve the storage and transfer of personal information, there are a couple of things you ought to know to reduce the risks and bring down the costs of compliance.

Read More

Topics: Managed File Transfer, Security, Compliance, Secure File Transfer

What Could Be The Impact of Brexit on Data Transfers?

Posted by John Carl Villanueva on Sun, Jul 17, 2016 @ 08:48 PM

Overview

Will Brexit have a significant impact on data transfers involving personal information? While it's hard speculate what the impact will be, it could largely depend on the specific path UK chooses to take once its separation from the EU is finalized.   

Read More

Topics: News, Security, Compliance, Secure File Transfer

A QuickStart Guide To Transferring Files Using A Windows SFTP Client

Posted by John Carl Villanueva on Wed, Jun 22, 2016 @ 06:00 AM

Overview

Windows doesn't have a built-in SFTP client. So if you're looking to transfer files with an SFTP server but are using a Windows machine, you might want to check out this post. 

Read More

Topics: Security, AnyClient, Secure File Transfer, SFTP

SFTP Client Connection Issues Involving Diffie-Hellman-Group1-SHA1

Posted by John Carl Villanueva on Mon, Jun 13, 2016 @ 04:13 AM

Overview

If you're running a SFTP service, chances are you've already received connectivity-related complaints involving the diffie-hellman-group1-sha1 key exchange algorithm. Here's how you fix that.

Read More

Topics: Security, Secure File Transfer, SFTP

Port Confusion - Is Security Through Obscurity Bad?

Posted by John Carl Villanueva on Wed, Jun 01, 2016 @ 09:58 PM

Overview

Last week, while responding to one of the tickets at our HelpDesk, I noticed that the port number used wasn't standard. While we encounter this quite often, the use of non-standard ports is one of those practices where many IT folks have opposing views.

On one side you have those who consider the use of non-standard ports a form of "security through obscurity" and hence discourage it. On the other, you have those who actually recommend it. Clearly, the topic makes for an interesting discussion, so here we are to discuss it. 

Read More

Topics: Security, Secure File Transfer

HTTPS Not Required To Apply Digital Signatures On Your AS2 Messages

Posted by John Carl Villanueva on Fri, May 20, 2016 @ 04:50 AM

Overview

Although you can run AS2 over HTTPS in order to provide encryption, authentication, data integrity, and non-repudiation to your EDI exchanges, it's not necessary. You can still get the same level of protection if you use AS2's built-in support for encryption and digital signatures. We already talked about AS2 encryption in a previous post, so this time, let's focus on digital signatures. 

Read More

Topics: JSCAPE MFT Server, Managed File Transfer, Security, Secure File Transfer, AS2

SHA2 Certificates Are Imperative

Posted by John Carl Villanueva on Sun, May 15, 2016 @ 06:04 PM

Overview

Over the last few months, we've been receiving a growing number of inquiries on how to enable support for SHA2 certificates in JSCAPE MFT Server. We later learned that the intention was not just to accommodate SHA2-signed certs but to actually replace SHA1-signed certs with them. In this post, we explain why people are moving from SHA1 to SHA2 and why you need to do so as well. 

Read More

Topics: Security, Secure File Transfer, FTPS

What HSTS Is and How It Enhances The Effectiveness of HTTPS

Posted by John Carl Villanueva on Mon, Apr 18, 2016 @ 05:26 AM

Overview

When I first read about HSTS, my first reaction was, "What's this? A replacement for HTTPS? Considering the ubiquity of HTTPS, shouldn't we be working to improve it first instead of replacing it?" Turned out, my initial understanding of HTTP Strict Transport Security was off the mark. 

Read More

Topics: Security, Compliance, Secure File Transfer

Key Trans Pacific Partnership Provisions That Impact Data Transfers

Posted by John Carl Villanueva on Tue, Feb 16, 2016 @ 02:24 AM

Overview

The Trans-Pacific Partnership has drawn a tsunami of reactions both for and against it. For sure, it's going to be a game changer in global trade. But how does it concern us?

Business transactions are now accompanied by massive data exchanges. It's thus expected for the agreement to tackle the conduct of those data exchanges as well. In this post, we take a look at the agreement's provisions on data transfers and try to understand how they might affect current practices.

Read More

Topics: News, Compliance, Secure File Transfer