Posts from ‘WS_FTP Professional’
Definitely not. To begin with, there are numerous kinds of encryption—some of which can actually be broken quite easily. One of the earlier common forms of encryption (around 1996) relied on encryption keys that were 40 bits in length; surprisingly, many technologies and products continue to use this older, weaker form of encryption. Although there are nearly a trillion possible encryption keys using this form of encryption, relatively little computing power is needed to break the encryption—a modern home computer can do so in just a few days, and a powerful supercomputer can do so in a few minutes.
So all encryption is definitely not the same. That said, the field of cryptography has become incredibly complex and technical in the past few years, and it has become very difficult for business people and even information technology professionals to fully understand the various differences. There are different encryption algorithms—DES, AES, and so forth—as well as encryption keys of differing lengths. Rather than try to become a cryptographic expert, your business would do well to look at higher‐level performance standards.
One such standard comes under the US Federal Information Processing Standards. FIPS specifications are managed by the National Institute of Standards and Technology (NIST); FIPS 140‐2 is the standard that specifically applies to data encryption, and it is managed by NIST’s Computer Security Division. In fact, FIPS 140‐2 is accepted by both the US and Canadian governments, and is used by almost all US government agencies, including the National Security Agency (NSA), and by many foreign ones. Although not mandated for private commercial use, the general feeling in the industry is that “if it’s good enough for the paranoid folks at the NSA, it’s good enough for us too.”
FIPS 140‐2 specifies the encryption algorithms and key strengths that a cryptography package must support in order to become certified. The standard also specifies testing criteria, and FIPS 140‐2 certified products are those products that have passed the specified tests. Vendors of cryptography products can submit their products to the FIPS Cryptographic Module Validation Program (CMVP), which validates that the product meets the FIPS specification. The validation program is administered by NIST‐certified independent labs, which not only examine the source code of the product but also its design documents and related materials—before subjecting the product to a battery of confirmation tests.
In fact, there’s another facet—in addition to encryption algorithm and key strength—that further demonstrates how all encryption isn’t the same: back doors. Encryption is implemented by computer programs, and those programs are written by human beings— who sometimes can’t resist including an “Easter egg,” back door, or other surprise in the code. These additions can weaken the strength of security‐related code by making it easier to recover encryption keys, crack encryption, and so forth. Part of the CMVP process is an examination of the program source code to ensure that no such back doors exist in the code—further validating the strength and security of the encryption technology.
So the practical upshot is this: All encryption is not the same, and rather than become an expert on encryption, you should simply look for products that have earned FIPS 140‐2 certification. Doing so ensures that you’re getting the “best of breed” for modern cryptography practices, and that you’re avoiding back doors, Easter eggs, and other unwanted inclusions in the code.
You can go a bit further. Cryptographic modules are certified by FIPS 140‐2, but the encryption algorithms themselves can be certified by FIPS 197 (Advanced Encryption Standard), FIPS 180 (SHA‐1 and HMAC‐SHA‐1 algorithms). By selecting a product that utilizes certified cryptography, you’re assured of getting the most powerful, most secure encryption currently available.
- From The Tips and Tricks Guide to Managed File Transfer by Don Jones
To read more, check out the full eBook or stay tuned for more file transfer tips and tricks!
As a continuation of Ipswitch’s 20th anniversary celebration, we’ve decided to offer a “20″ themed deal! That means 20% OFF WS_FTP Professional today only – July 20th!
This special offer is available online only for all licenses of WS_FTP Professional (excluding site licenses). You just need to use coupon code: 20ON20.
Why WS_FTP Professional?
- Gain access to the world’s most popular file transfer client.
- Simplify tasks and enhance productivity with capabilities such as email notification, backup, synchronization, compression, post-transfer events, and scheduled transfers.
- Transfer files over FTP, SSL, SSH, and HTTP/S transfer protocols.
- Protect files before, during, and after transfer. Unmatched security is provided through 256-bit AES encryption, FIPS 140-2 validated cryptography, OpenPGP file encryption, and file integrity validation up to SHA-512.
Yesterday I had the pleasure of speaking with the sales representatives and account managers at CompuCom, many of whom have been selling Ipswitch solutions for a long time. It was a return visit to CompuCom’s Dallas headquarters for me, having attended a similar vendor fair about 6 months ago.
Many of our conversations centered on the types of problems that CompuCom customers are asking them help solve with technology solutions. Top of the list are topics such as: Group policy management, security, compliance, B2B exchanges and virtualization.
About a dozen or so of the representatives I talked with focus solely on renewal business. It was nice to see the enthusiasm on long-term customer relationship and growing existing customer accounts. One upsell in particular that was mentioned quite often for existing WS_FTP Server customers was adding the Ad Hoc Transfer module for person-to-person transfers using either Outlook or a browser.
Oh, and team Veeam – nice spending time with you guys. You may have won the bowling match over team Ipswitch, but I return home to Boston knowing that Sam Adams beat Shiner Bock (TX’s so-called national beer) in the head-to-head comparison taste test!
Here’s an amazing tale of how Ipswitch WS_FTP software is being used by the European Columbus laboratory to securely transfer hundreds of megabytes of scientific data between the International Space Station and Earth.
“Crew time is so valuable and the volume of data involved is so large that a reliable and secure system for data transfer was absolutely essential,” explained Alain Maillet, Cadmos engineer.
“WS_FTP gives us the possibility to transfer all our scientific data files automatically and securely, not only in space, but also back down to Earth – it is secure, stable and easy-to-use.”
Here’s an action photo of Alain Maillet talking with the International Space Station from Toulouse, France.
Got a great Ipswitch story of your own to tell? Email us at mystories@ipswitch.com…. We can’t wait to hear all about it!
