Linoma Software | SFTP (FTP over SSH): SFTP (FTP over SSH) for iSeries and System i AS400 as/400


May 17th, 2008	Products	Download	Company	Contact	Home	Search

• Home
• Products

• Crypto Complete
• GoAnywhere
• ProStart
• RPG Toolbox
• Surveyor⁄400

• Encryption

• ZIP
• Open PGP
• SFTP
• FTPS
• Choosing
• Field Encryption
• Commands
• Key Management
• Regulations
• Terminology

• Compression
• Transfer Automation
• Tech Specs
• Trading Partners
• Case Studies
• Testimonials
• Pricing
• Support

• Download
• Webinars
• Company
• News
• Contact
• Careers
• Search
• Site Map
• Partner Login

Home » Products » Encryption » SFTP (FTP over SSH)

SFTP (FTP over SSH)

Transfer Anywhere has been replaced by GoAnywhere , which is the "next generation" solution for automating and securing data movement. Click here to learn more.

The traditional FTP protocol sends commands and data in “the clear” over the network/internet. This FTP data could be intercepted by an attacker, which could then be viewed and altered before sending it onto the receiver. If you are sending sensitive data over the internet, then you may want to consider the SFTP (FTP over SSH) protocol for securing data.

SFTP creates an encrypted tunnel between two computer systems and will protect against the following attacks:

IP spoofing, where a remote host sends out packets which pretend to come from another, trusted host
IP source routing, where a host can pretend that an IP packet comes from another, trusted host.
DNS spoofing, where an attacker forges name server records
Interception of cleartext passwords and other data by intermediate hosts
Manipulation of data by attackers in control of intermediate hosts

SFTP is supported by most commercial servers and many open source servers (e.g. Linux). SFTP is a good protocol to use for transmitting large files since it compresses the data stream prior to encryption.

SFTP uses a combination of asymmetric (public key) cryptology and symmetric cryptology to provide strong encryption and optimal performance.

Transfer Anywhere can connect to SFTP servers for sending and receiving files. These servers can be pre-configured in Transfer Anywhere and selected through simple drop-down menus.

Transfer Anywhere provides comprehensive FTP features for the most-demanding environments.

Standards Support for SFTP

Transfer Anywhere supports the following standards for SFTP.

Protocol

SSH 2.0

Ciphers (Symmetric Encryption Algorithms)

Triple DES, key length of 192 bit

Blowfish, key length up to 448 bit

AES, key length up to 256 bit

MAC Algorithms

MAC-SHA1, key length of 160 bit, digest length of 160 bit

HMAC-SHA1-96, key length of 160 bit, digest length of 96 bit

HMAC-MD5, key length of 128 bit, digest length of 128 bit

HMAC-MD5-96, key length of 128 bit, digest length of 96 bit

Key Exchange Algorithms

Diffie-Hellman

MODP Groups 1, 2, 5 (1536-bit), 14 (2048-bit), 15 (3072-bit), 16 (4096-bit), 17 (6144-bit) and 18 (8192-bit).

SSH Private Keys

OpenSSH encoded keys

PEM (privacy enhanced message) encoded keys

SSH Public Keys

OpenSSH encoded keys

* When creating a SSH key pair with Crypto Studio – the Private key will be generated in PEM format and the Public key will be generated in IETF’s recommended format.

The System i machine is also referred to as AS/400, AS400, iSeries and i5