An April survey conducted by MeriTalk, a government information technology provider, titled “Why Encrypt? Federal File Transfer Report,” found that data security vulnerabilities at federal agencies are mainly due to employees’ use of unsecure methods to exchange information, such as File Transfer Protocol (FTP).
Specifically, the report shows that federal employees use unsafe methods to transfer files in the following ways:
66 percent use physical media (e.g., tapes, CDs, DVDs, USB drives, etc.).
60 percentuse FTP.
52 percent send work files through personal e-mail accounts (e.g., Gmail, Yahoo, etc.).
This article on Government Computer News goes on to mention the insecure methods of sharing data/information. This reinforces the need to deploy secure file transfer methods in not only government agencies, but in the private business sectors as well.
Ipswitch File Transfer recently released an Ad Hoc Transfer Module application that provides unparalleled governance, and allows end users to share information, with anyone, in a fast, easy, secure, visible, and well managed way.
Used in conjunction with any of the industry-leading WS_FTP Server products, the Ad Hoc Transfer module enables companies to proactively manage file transfer and other interactions. It also allows companies to create and enforce policies such as data and transport encryption, access control and authentication, data loss prevention, and content management.
Have you used any of Google’s popular apps? How about the personalized iGoogle or Google Docs or Google Talk? All are great services, but will they open up unwanted security risks for many organizations?
“Google’s large following, which includes federal contractors, will find it quick, easy and inexpensive to transfer company documents — and potentially unencrypted government files, said former Gartner research director L. Frank Kenney.”
A new study by Ipswitch, Inc. found that more than 70 percent of IT executives surveyed at the RSA Conference earlier this month have absolutely no visibility into files moving out of their organizations. A full 64 percent said that they have no visibility into files moving internally, either. Overall, 83% lack any visibility.
“USB flash drives, removable disk drives and cell phones are making it easier than ever for employees who need to transfer large files – and harder than ever for companies to monitor and protect sensitive information.”
The survey stats are truly incredible. At File Transfer Planet, we talk frequently about the need to protect sensitive information - especially when using FTP. It’s important to be aware of the risks involved in transferring files over FTP. Many FTP programs offer encryption during transfer, which you should consider when installing, using and purchasing FTP software. If you are in a small or large business environment, know how your data is being transmitted and shared.
Selecting a secure file transfer method can be a very critical component of your organization’s security policy — and even a requirement! Many different industries require compliance and regulations around how data is shared, transferred, uploaded, downloaded and stored from PCs to file servers.
This concise chart below provides a breakdown of the different secure file transfer methods available in most business-grade file transfer programs.
The WS_FTP Professional Security Guide provides more information around the different layers of security.
A concise 2-minute overview of Ipswitch’s client + server secure file transfer relationship. This video describes old FTP processes, and how the environment has changed with encrypted transfers and stronger client to server security.
The “client-server relationship” is a very common term when it comes to file transfer.. but what exactly is a “client” and what is a “server”? The networking of a “client-server relationship” involves a distributed application architecture that divides tasks between service providers known as servers and a service requester, or a client. Clients and servers generally operate over computer networks, such as office LANs or even the Internet.
The server is the more dominant machine in the relationship, being a high-performance host that runs one (or more than one) server applications. The server applications are what the client “talks to”. Applicaitons on the client system initiate communication sessions with servers.
Simply put, “client-server” describes the relationship between two computer programs where the client makes request to the server. This relationship is seen in such tasks as sending emails and accessing the web. Many business applications currently use the client-server model as well as the main Internet application protocols (HTTP, SMTP, telnet etc.)
The simplest type of client-server uses only two systems, a client and a server. This may also be referred to as “two-tier” and it allows for the sharing of files. Some examples of clients in this relationship would be web browsers, email clients,and online chat clients. Servers would include web servers, ftp servers, application servers, mail servers, file servers, and most web services.
Client-server architecture enables the responsibilities of a system to be distributed amongst several individual computers. These individual computers are accessed only through a network so it is easier to maintain and repair or even relocate a server without affecting the clients. Another benefit exists in that data is stored on servers which generally have greater security than clients. Servers can also control user access and resources. Client-server technologies are abundant in the world today, designed to ensure safety and security. One example of an innovater in this field is Ipswitch – a software company which has been offering FTP software since 1991. As the field of file transfer continues to grow, so will the need for safe servers and happy clients who together form a healthy, networked relationship.
File Transfer Planet discovered this nice review of WS_FTP at www.raakesh.com. One very useful point Raakesh has made is the fact that WS_FTP uses Secure Shell to protect passwords and information during transmission from the FTP client to the FTP server.
Formerly FTPplanet.com, we have redesigned and relaunched as FileTransferPlanet.com, a community site for discussions about file transfer, web design, software deals, and other cool topics! Registration is free -- Post a question in the Discussion Forums or comment on any blog posts.