Blog

Managed File Transfer and Network Solutions

Applying The CIA Triad To Your Enterprise File Transfer

Posted by John Carl Villanueva on Tue, Aug 09, 2016 @ 10:10 AM

Overview

As one of the basic building blocks of information security, the CIA Triad is likewise a vital piece in establishing secure enterprise file transfers. In this post, we explain what the CIA Triad is and how you can apply it to your B2B data transfers.

Read More

Topics: Security, Secure File Transfer, SFTP, FTPS

The SSH / SFTP Key Fingerprint And Its Role In Server Authentication

Posted by John Carl Villanueva on Thu, Aug 04, 2016 @ 11:30 AM

The first time a user connects to your SSH or SFTP server, his/her file transfer client may display an alert or notice indicating it doesn't recognize the server's fingerprint. What it's actually referring to is the server's SSH/SFTP key fingerprint, an important security feature that helps users and client applications authenticate SSH/SFTP servers. This post explains how it's used.

 

Read More

Topics: Security, Secure File Transfer, SFTP

Streamlining Data Transfers for State Data Breach Notification Law Compliance

Posted by John Carl Villanueva on Tue, Jul 26, 2016 @ 07:35 AM

Overview

Most US states now have their own data breach notification law. If your business operations involve the storage and transfer of personal information, there are a couple of things you ought to know to reduce the risks and bring down the costs of compliance.

Read More

Topics: Managed File Transfer, Security, Compliance, Secure File Transfer

What Could Be The Impact of Brexit on Data Transfers?

Posted by John Carl Villanueva on Sun, Jul 17, 2016 @ 08:48 PM

Overview

Will Brexit have a significant impact on data transfers involving personal information? While it's hard speculate what the impact will be, it could largely depend on the specific path UK chooses to take once its separation from the EU is finalized.   

Read More

Topics: News, Security, Compliance, Secure File Transfer

Thoughts On The Rising Cost of Data Breach And How To Reduce Risk

Posted by John Carl Villanueva on Sun, Jun 26, 2016 @ 12:10 AM

Overview

Results from Ponemon's 2016 Cost of Data Breach Study show that the price of these incidents continues to rise and that it has now breached the $4 Million mark. Another paper published by Deloitte even talks about hidden costs that far exceed what most businesses normally take into account. While these reports paint an alarming picture on the state of data security, we managed to extract from these papers key factors that can help businesses mitigate the risks. 

Read More

Topics: News, Security, Compliance

A QuickStart Guide To Transferring Files Using A Windows SFTP Client

Posted by John Carl Villanueva on Wed, Jun 22, 2016 @ 06:00 AM

Overview

Windows doesn't have a built-in SFTP client. So if you're looking to transfer files with an SFTP server but are using a Windows machine, you might want to check out this post. 

Read More

Topics: Security, AnyClient, Secure File Transfer, SFTP

SFTP Client Connection Issues Involving Diffie-Hellman-Group1-SHA1

Posted by John Carl Villanueva on Mon, Jun 13, 2016 @ 04:13 AM

Overview

If you're running a SFTP service, chances are you've already received connectivity-related complaints involving the diffie-hellman-group1-sha1 key exchange algorithm. Here's how you fix that.

Read More

Topics: Security, Secure File Transfer, SFTP

Port Confusion - Is Security Through Obscurity Bad?

Posted by John Carl Villanueva on Wed, Jun 01, 2016 @ 09:58 PM

Overview

Last week, while responding to one of the tickets at our HelpDesk, I noticed that the port number used wasn't standard. While we encounter this quite often, the use of non-standard ports is one of those practices where many IT folks have opposing views.

On one side you have those who consider the use of non-standard ports a form of "security through obscurity" and hence discourage it. On the other, you have those who actually recommend it. Clearly, the topic makes for an interesting discussion, so here we are to discuss it. 

Read More

Topics: Security, Secure File Transfer

HTTPS Not Required To Apply Digital Signatures On Your AS2 Messages

Posted by John Carl Villanueva on Fri, May 20, 2016 @ 04:50 AM

Overview

Although you can run AS2 over HTTPS in order to provide encryption, authentication, data integrity, and non-repudiation to your EDI exchanges, it's not necessary. You can still get the same level of protection if you use AS2's built-in support for encryption and digital signatures. We already talked about AS2 encryption in a previous post, so this time, let's focus on digital signatures. 

Read More

Topics: JSCAPE MFT Server, Managed File Transfer, Security, Secure File Transfer, AS2

SHA2 Certificates Are Imperative

Posted by John Carl Villanueva on Sun, May 15, 2016 @ 06:04 PM

Overview

Over the last few months, we've been receiving a growing number of inquiries on how to enable support for SHA2 certificates in JSCAPE MFT Server. We later learned that the intention was not just to accommodate SHA2-signed certs but to actually replace SHA1-signed certs with them. In this post, we explain why people are moving from SHA1 to SHA2 and why you need to do so as well. 

Read More

Topics: Security, Secure File Transfer, FTPS