[Last updated: January 2021] When I first read about HSTS, my first reaction was, "What's this? A replacement for HTTPS? Considering the ubiquity of HTTPS, shouldn't we be working to improve it first instead of replacing it?" Turned out, my initial understanding of HTTP Strict Transport Security was off the mark.Read More
Of all file transfer services out there, perhaps the easiest to use is an HTTP/S file transfer service a.k.a. a web file transfer service. That's because users don't have to install anything. All they'll need to upload or download files from your service is a web browser. If you're using JSCAPE MFT Server, setting up an HTTP/S file transfer service is easy as well. Let me show you how it's done.Read More
Not everyone using your web file transfer server needs to have a user account. There can be instances when it's perfectly fine for a user to just carry out an anonymous file upload. Meaning, that user doesn't have to login. This set up can be useful in cases where an outsider just needs to do a one-off upload. We'll show you how to enable that functionality on JSCAPE MFT Server.Read More
[Last updated: January 2021] PGP encryption can add another layer of protection to a trading partner file transfer already secured by FTPS. It can also provide data-at-rest encryption as soon as the file arrives at the other end. In this post, we'll show you how to set up a fully automated file transfer secured by OpenPGP and FTPS using JSCAPE MFT Server triggers.
[Last updated: January 2021] People who use SSL/TLS to secure their online transactions/file transfers are mostly only familiar with two of its security functions: 1. That it can encrypt data in transit and 2. That it can enable clients to authenticate the server. They're likely not making use of another feature that can greatly enhance SSL security even more - client certificate authentication.
We already talked about client certificate authentication and its benefits on a previous post, so if you want to learn more about it, I suggest you click that link. In that post, we never got to talk about how to enable client certificate authentication on the server side. This quick post will be all about that.
[Last updated: December 2020] Because Windows doesn't have an SFTP server built in, here's a tutorial showing how to install one on it.Read More
[Last updated: December 2020] Malicious insiders and careless insiders are increasingly posing serious risks to file transfer systems. If nothing is done to mitigate them, these internal threats can cause data loss or, worse, massive penalty-inducing data breaches. In this post, we take a closer look at internal threats, how they put file transfer systems at risk, and what you can do to mitigate them.
In one of our previous posts, we taught you how to sync a Windows folder with an AWS S3 bucket. This time, we'll show you how to do that with a Linux directory.Read More
Businesses that deal with large files such as high-definition videos, 3D CAD models, and so on, sometimes need to transfer these files to another department or to a trading partner located in another state, country, or continent. In situations like this, it pays to know how to securely transfer large files over the Internet.Read More
SFTP is easily one of the most widely used file transfer protocols in business processes. Incidentally, Amazon S3 is also steadily becoming a go-to cloud storage solution for businesses. How would you like to access AWS S3 via SFTP? If that looks like something you could use, check out this post.Read More