Do Your Homework When Choosing a Managed File Transfer Solution

Linoma Software emerged as an early pioneer in MFT (managed file transfer).  Starting in 2002 with a solution for automating and managing file transfers, capabilities soon expanded to support encryption standards to help organizations protect sensitive and confidential data.

Companies of all sizes quickly recognized how MFT could help them establish centralized control over file access, streamline file transfer processes, and simplify compliance through detailed audit logs and reporting.  This has led to a surge in providers, each with their own flavor of MFT.

This increasingly crowded marketplace has made it difficult for IT security professionals to research and recommend the best MFT solution to meet their organization’s particular needs.  That’s why Linoma Software’s chief architect Bob Luebbe believes so highly in the value of quality research like the recent report on the vendor landscape for MFT by Info-Tech Research Group.

research mft - info-tech-slides-stacked

The Info-Tech report entitled “Select and Implement a Managed File Transfer Solution” gives you the tools to fully explore your organization’s requirements for MFT.

“Managed file transfer software is frequently purchased to meet the requirements of one initiative,” states Luebbe, “but companies quickly discover the advantages of implementing MFT across all areas of file management.”  Proper planning allows you to ‘secure file transfers today and avoid worrying about tomorrow’.

Assembling a thorough assessment of system-to-system and ad-hoc file transfers across every department allows you to match current and future demands to MFT providers identified as leaders in those particular areas.

Choosing an MFT solution is an investment of both money and time.  “If you’re not 100% confident in the software’s ability to communicate with your existing systems and perform to your expectations, that should be reason for concern,” Luebbe cautions.

“Install fully functional trial software on your own system, request a personalized demo where you can see the software in action and have the ability to ask specific questions, and always ask for references from customers using the software in a similar fashion.”

Luebbe concludes, “Linoma Software believes in MFT’s ability to help an organization achieve regulatory compliance, increase security and streamline processes.  It’s important to us that everyone has a positive experience with this transformative technology.”

Read the entire Info-Tech Research Group report on the MFT vendor landscape for yourself at http://go.linomasoftware.com/infotech2015.

GoAnywhere MFT™ Enters the Drummond AS2 Certification Queue

Drummond Group logo - Drummond AS2 Certification
This spring, Linoma Software started the extensive process of reviewing and testing its AS2 automation features against the world’s highest standards, as set by the Drummond Group, LLC. Drummond Certified™ products are compliant and interoperable to make sure they truly interface with the systems of customers and partners.

GoAnywhere MFT™ recently completed the first phase of testing, the results of which confirmed compatibility with RFC 4130.  The testing also verified GoAnywhere’s compliance with optional profiles for:

  • FN (Filename Preservation)
  • MA (Multiple Attachments)
  • FN-MA (Filename Preservation with Multiple Attachments)
  • CTE (Chunked Transfer Encoding)
  • SHA2 hash algorithms supporting SHA256, SHA384 and SHA512

GoAnywhere MFT was added to the Drummond AS2 Certification Queue where it will be tested against all AS2 Drummond Certified products. Linoma Software anticipates certification for GoAnywhere MFT this fall.

10 Ways to Make File Transfers Easier, Automated and Secure

If you’re still managing file transfer processes using traditional methods that include complicated scripts and legacy programs, the potential risks are great. In addition to being a drain on your time, they could also be putting critical data at risk.

10 Ways to Make File Transfers Easier, Automated and SecureIn a recent webinar, “10 Ways to Make File Transfers Easier, Automated and Secure“, Linoma Software chief architect Bob Luebbe talked about key issues and how they are easily addressed using a modern Managed File Transfer (MFT) solution.

The challenges covered included:

  • old technology still in use
  • time consuming manual processes
  • a lack of error alerts or audit logs to meet compliance rules
  • employees sending files unchecked through email, cloud-sharing and portable storage devices

Luebbe went on to introduce the advantages of MFT, and offered the top three considerations when evaluating an MFT solution:

  1. ease of use
  2. centralized security and control
  3. auditing and alerts

Following Bob’s presentation, software development manager Steve Luebbe gave a tour of Linoma Software’s GoAnywhereMFT Suite and demonstrated how it can help users to simplify, automate and secure file transfers.

The webinar ended with a summary of the 10 ways MFT helps in the areas of secure file transfer, full feature data translation and time-saving automation.

This free on-demand webinar is recommended for anyone managing mission-critical file transfers, organizations with individuals sending sensitive file attachments through email and cloud storage (i.e., Dropbox), and IT professionals faced with increasing regulatory and compliance requirements.

What GoAnywhere Customers Should Know About LogJam

Logjam“LogJam Computer Bug Could Wreak Havoc”USA Today

“A Frightening New Vulnerability Could Let Hackers Bypass The One Thing That Keeps Us Safe Online”Business Insider

“FREAK-like LogJam Attack Undermines TLS Security” Infosecurity Magazine

“Enterprise, Cloud Services Exposed as Vulnerable to LogJam”ZDnet

With frightening headlines appearing last week in various news outlets around the world, it’s no wonder people are paying attention to the Diffie-Hellman key exchange attack also known as LogJam. The extremely popular Diffie-Hellman key exchange algorithm allows Internet protocols to negotiate secure connections using shared keys and is integral to protocols such as HTTPS, SMTPS, IPsec and those reliant on TLS.  LogJam exploits a flaw that could allow eavesdropping and data manipulation on affected HTTPS websites.

GoAnywhere Not Vulnerable to LogJam Attack on SSL/TLS.
GoAnywhere Services relies on the JSSE provider for handling SSL/TLS handshake operations. If configured properly, GoAnywhere is not vulnerable to the SSL/TLS Diffie Hellman key exchange attack known as LogJam.

To avoid this attack in GoAnywhere, configure your HTTPS/AS2, FTP, and FTPS Services to only enable cipher suites that utilize the Elliptic Curve DH key exchange algorithms.

For any GoAnywhere customers who have concerns or need assistance in ensuring their system is configured properly, our dedicated Support Team is always available to help. There are several convenient ways to connect with us. You can learn more on our Customer Support page at GoAnywhere.com.

Truly Secure On-Premise Document Management for HR

Document Management for HRHR departments receive, generate, and accumulate substantial volumes of documents such as job postings, employment applications, resumes, reference checks, testing data, personnel files wage and hour records, payroll records, and disciplinary files.

GoDrive by GoAnywhere™ is a secure file storage and collaboration solution that’s ideally suited to the unique document management requirements of today’s Human Resources departments.  GoDrive is an on-premise Enterprise File Sync and Sharing (EFSS) alternative to vulnerable cloud-based document storage services.

DS5.11 Exchange of Sensitive Data:

Exchange sensitive transaction data only over a trusted path or medium with controls to provide authenticity of content, proof of submission, proof of receipt, and non-repudiation of origin.

Even though files are stored using on-site or hosted systems, all data is encrypted in transit and at rest for true file integrity. When single documents or entire folders are shared with individuals or groups, only those authorized users can view the documents.

In compliance with Sarbanes-Oxley requirement DS5.11, GoDrive creates a trusted path to exchange sensitive transaction data.  Detailed audit logs track all activity, including who accessed which documents and from what location.  Email notifications can be generated when an individual downloads or uploads a file, providing a receipt confirming each interaction.

GoDrive supports a distributed workplace, making it efficient to disseminate informational and regulatory documents to in-office and remote employees.  Shared groups might include individual departments or a management team that spans the entire organization. Vendors and contractors can be authorized to access designated documents, and it’s an efficient way to accommodate requests by regulatory bodies.  You can also streamline the distribution of documents to job candidates and new hires.

File shares can be expired quickly and easily at any time due to termination, changes in vendor relations or at the completion of a disclosure commitment.  Permission settings on each file share let you define view-only, download, upload and delete rights.  Best of all, version control enables any document in GoDrive to be restored to a previous version and deleted files can be easily recovered without assistance from an IT Specialist.

GoDrive is robust yet cost-effective, flexible in scale to accommodate unlimited storage and is one of the only multi-platform on-premise EFSS solutions.  Talk to your IT administrator about the surprisingly inexpensive security advantages of GoDrive. Download a FREE full feature trial for evaluation on your own on-site or hosted systems.