FTP is a widely used mechanism for sharing large files. The transfer method and protocol have been with us since the beginnings of the Internet. When security considerations appeared, Secure FTP became the obvious answer with encrypted transmission. Even though it has security built in (to the name at least), there are a number of security problems with FTP exchanges and Secure FTP transfers that can be easily remedied with Egress Switch.
Egress Switch protects information you share with strong encryption. Switch controls information you share with access controls packaged with each file. As it is so easy to use, Switch can make information exchange safe for casual users.
You shouldn't have to rely on FTP for anything more than storage - let Egress Switch handle all of the security for you. Consider the following risks that may exist in your FTP site today.
Even though best practices are to assign FTP credentials and folders to each user, many FTP sites allow multiple users to share credentials. Sharing in this way makes password refresh even more difficult. Access control can be easily compromised when this practice creeps into operation.
Egress Switch removes access risk because each file is protected by encryption with unique access control policies set and managed by the information owner. You can allow any number of users to share the FTP credentials because access is managed at the data level instead of the site.
Frequently in our rush to get important work done, the tasks that seem less important are overlooked. How many times does a user place a file on the FTP site and neglect to clean it up later? How much information is at risk because it is sitting in an accessible location? And if access control is compromised, what happens to the risk scenario? Even automated clean-up procedures that purge aged files don't fix the problem if you only clean once a month.
Egress Switch removes the risk from cluttered FTP sites because a security policy is set for each file uploaded to the site. With Switch, you can create files with no access rights so every access request must get positive confirmation from the information owner. This capability gives you an audit trail and drops the risk of exposure to zero.
Even though Secure FTP has tightened the exposure risk during transmission, information sitting on the server is kept in clear text. The obvious risk comes from users with authorized credentials (no matter how they got them) who decide to snoop around the contents of the site. This is a scenario that is difficult or impossible to control.
Egress Switch provides end-to-end security because the local client software encrypts the information before it goes anywhere. It's encrypted at all times, during transmission, on the server, and when downloaded by the recipient. Since the information is always encrypted - and protected by access control, the risk of exposure is eliminated.
Some FTP users have resorted to file-based encryption to reduce risk. This technology requires end users to set and remember a password for each file they share. Some users who exchange files frequently will repeat passwords, thereby introducing risk. Some file encryption products require casual users to create and manage their own keys with PKI which can drive up help desk calls.
Egress Switch provides a simple end user experience where each user is only responsible for their Switch login. The system matches information to intended recipients automatically so key management is handled securely and easily for end users. Switch can also be configured for automatic sign in once the user has signed into Windows making the process even easier.
With Egress Switch, FTP for large file transfers can be secured at the points of greatest risk without losing any of the familiar operation. If you have an FTP or Secure FTP site already in operation, adding Switch shifts the security burden away from FTP.
Switch users tell us that this additional information has been useful when explaining secure data exchange to their recipients.
