Category Archives: News

  • -

Veilig versturen van bestanden met Managed File Transfer

Category:News

Iedere organisatie heeft te maken met een buitenwereld – Een periferie van zakelijke partners, filialen, klanten en medewerkers. Bedrijven versturen en ontvangen dagelijks grote hoeveelheden bestanden, variërend van betalingstransacties tot patiëntendossiers.

Deze bestandsuitwisseling is in feite de levensader van elk bedrijf. Aangezien deze bestanden vaak gevoelige of persoonlijke informatie bevatten, is het noodzakelijk om de uitwisseling hiervan te beschermen. Documenten, e-mails en transport kunnen worden versleuteld om de risico’s van het bewust of onbewust lekken van data te beperken. Organisaties hebben bij de opzet van dit hogere beveiligingsniveau altijd rekening te houden met de mogelijkheden en beperkingen van het netwerk en IT teams. Daarnaast worden ze geconfronteerd met wet- en regelgeving of intern beveiligingsbeleid, zoals AVG/GDPR, PCI-DSS of ISO27001.

Is het mogelijk om honderden of zelfs duizenden van dit soort uitwisselingsprocessen te stroomlijnen? En lukt het organisaties om tegelijkertijd te voldoen aan de veranderende eisen van zakelijke partners?

“Absoluut”, zegt Ekron Dries – accountmanager bij BlueFinch. “Het antwoord kan worden gevonden in Managed File Transfer; een centrale, organisatie-brede dienst die al deze taken kan uitvoeren.”

Wat is Managed File Transfer?

Een Managed File Transfer (MFT) -oplossing is gebaseerd op software waarmee alle aspecten van inkomende en uitgaande bestandsoverdracht kunnen worden georganiseerd, terwijl er gebruik wordt gemaakt van gestandaardiseerde netwerkprotocollen en encryptiemethoden. Het biedt een wereld aan mogelijkheden om de uitwisseling van bestanden over uw netwerk, applicaties, zakelijke partners of cloud-omgevingen te beveiligen, vereenvoudigen en inzichtelijk te maken vanuit één centraal punt van beheer.

“Managed File Transfers vervangt meestal oude technologie, zoals onbeveiligde FTP servers en andere legacy en maatwerk oplossingen. Onze oplossing bevat ook gebruikersvriendelijke tools voor eigen medewerkers om makkelijk en veilig bestanden te delen, zoals bijvoorbeeld SecureMail voor het veilig versturen van bestanden via de mail.”, aldus Dries.

SecureMail biedt voor dit ad-hoc scenario een web interface of een plugin in Outlook. De ontvanger hoeft geen software te installeren. Een bestand wordt klaargezet en de ontvanger haalt het zelf op via een beveiligde verbinding. Bestanden zijn versleuteld “at rest” en “in motion”. En belangrijk vanuit AVG/GDPR: het volledige proces wordt gelogd.

Benieuwd naar de mogelijkheden?

Stuur dan even een contact verzoek per email naar sales@bluefinch.com. We delen graag onze kennis en ervaringen met je.

De afgelopen 8 jaar heeft BlueFinch vele organisaties geholpen in de Benelux en Scandinavië regio om hun Managed File Transfer omgeving te implementeren en te ondersteunen.

 


  • -

Protect your file transfers with Antivirus and DLP integration

Category:News

Download: Whitepaper: Protect your file transfers with Antivirus and DLP integration (782 downloads)

Everything you need to know about protecting your business critical data with antivirus and DLP integration via ICAP protocol.

Antivirus and Malware Prevention in GoAnywhere MFT

In order to stop viruses, malware and malicious content from penetrating your organisation, GoAnywhere MFT can be integrated with antivirus solutions by making use of the standard ICAP protocol.

When you decide to upload a new file to GoAnwhere MFT, the contents of the file can be scanned for viruses by antivirus software. In case malicious content is detected, GoAnywhere MFT can put it in quarantine or remove the whole file, and once that’s done send an email notification to your administrator.

Data Loss Prevention (DLP) in GoAnywhere MFT

Also, GoAnywhere MFT is able to send files for content scanning purposes to a DLP solution over the ICAP protocol. The DLP solution will look for sensitive information, as in credit card numbers, personal or healthcare information. GoAnywhere will receive instructions from the DLP solution about whether it’s allowed to carry out this file transfer or not.

For example, GoAnywhere MFT can scan a file for sensitive information before it’s sent to a business partner through Secure Mail or SFTP. If the file contents get the green light, the transfer will continue as usual. If the file contents are found to be sensitive and are as a result blocked by the DLP solution, GoAnywhere MFT can notify your administrator and refuse this file transfer.

BlueFinch is your knowledge partner when it comes to Managed File Transfer (MFT).  As a certified MFT specialist we have over eight years of experience in successfully designing, migrating and implementing MFT, as well as providing extensive training. We’ve done this for more than 100 mid-market enterprises and big corporates in the Benelux and Scandinavian region.

If you would like to learn more about how a MFT solution can be integrated with DLP and virusscanning, please contact us via email at sales@bluefinch.com or call +31 (0)88 258-3346.

 


  • -

BlueFinch becomes network-partner of HSD

Category:News

Recently BlueFinch has officially partnered with The Hague Security Delta (HSD). HSD is the leading security cluster in Europe with important regional hubs in The Hague, Twente, and Brabant. In a combined effort with all other partners BlueFinch wants to stimulate innovation in security and economic development.

Being part of this network gives us an additional opportunity to keep in touch with businesses, governments and knowledge institutions, as well as young talent in the security domain.

In this Dutch cluster businesses, governments, and knowledge institutions work together on innovations and knowledge in the field of cyber security, national and urban security, protection of critical infrastructure, and forensics.

We’re looking forward to a productive collaboration.

For more information, please contact Richard Verkaik from BlueFinch: Richard.verkaik@bluefinch.com


  • -

Meeting GDPR Requirements with GoAnywhere MFT

Category:News Tags : 

Download: Whitepaper: Meeting GDPR Requirements with GoAnywhere MFT (784 downloads)

The General Data Protection Regulation (GDPR) is a regulation approved by the European Parliament. It applies to all organisations that handle and process EU citizens’ data, regardless of whether they’re located in the European Union or not. Failure to meet GDPR requirements can result in huge penalties: 4% of annual global turnover (revenue) or €20 million, whichever is greater.

The GDPR was created to replace the Data Protection Directive, which has been used in the EU for over 20 years. There are several key changes, also known as rights, introduced to the GDPR that organisations must address; thinking about them now is critical to successful compliance. For some companies, GDPR rights may require excessive work and planning if the requested processes aren’t already implemented.

GoAnywhere MFT is a managed file transfer solution that runs on any system. It can help you meet GDPR compliance standards, while saving you time and money in other business areas. It can also eliminate the custom programming and scripting normally required to transfer data and improve the security and quality of those transfers.


  • -

New GoAnywhere Release Automates and Secures File Transfers in Cloud and Private Networks

Category:News

The release of GoAnywhere managed file transfer (MFT) solution version 5.5 allows organizations to deploy MFT agents across the enterprise to automate, secure and audit all of their file transfers from a single, centralized location. This new innovation adds to an already extensive suite of security and automation features including encryption at rest and in transit, batch and ad-hoc file transfer, peer-to-peer file collaboration, and more.

With this new version, customers can easily install MFT agents on almost any server or workstation where file transfers need to be performed including Windows, Linux, UNIX, IBM i and Mac OS systems. These systems can reside on premise or in cloud infrastructure such as Amazon Elastic Compute Cloud (Amazon EC2) or Microsoft Azure. This allows for organizations with complex and ever-changing environments to greatly reduce the manual repeatable work associated with the complexity allowing IT professionals to focus on more strategic initiatives.

The MFT agents are managed by a central deployment of GoAnywhere, where customers can easily configure and schedule agent file transfers right from their browser. This new version of GoAnywhere not only transfers all files securely, but also gathers key information about the transfers for simple, consolidated auditing and reporting. This unique approach provides visibility of all file transfers within the organization.

“The use cases for MFT agents are really endless,” said Bob Luebbe, President and Chief Architect at Linoma Software. “Whether it’s a franchise needing to synchronize files with its store locations, or a healthcare system needing to move PHI data between its data center and satellite clinics, the deployment of MFT agents will greatly simplify those processes.”

MFT agent Features and At-a-Glance

– Automates and secures file transfers within a centrally managed environment
– Monitors agent systems for new or modified files
– Schedules file transfers on agent systems to run at future dates/times
– Provides additional workflow capabilities
– Sends automatic alerts via e-mail or text messages if file transfers fail on agents
– Feeds audit data to the central GoAnywhere MFT solution for reporting

“Our customers are really excited about MFT agents,” said Steve Luebbe. “Many organizations have files spread across a diverse network of in-house servers and cloud infrastructure running a variety of operating systems. Automating the movement of files between these environments has traditionally been very difficult to set up and maintain. MFT agents solve this problem with a simple installation and configuration process, saving organizations significant time and money.”

About GoAnywhere Managed File Transfer

GoAnywhere® MFT is a managed file transfer and secure FTP solution that will streamline and automate file transfers with trading partners, customers, employees and internal servers. Enterprise level controls and detailed audit logs are provided for meeting strict security policies and compliance requirements including PCI DSS, HIPAA, HITECH, SOX, GLBA and state privacy laws.

GoAnywhere can be installed on most platforms including Windows®, Linux®, IBM® i (iSeries®), UNIX®, AIX®, and Solaris®. It supports popular protocols and modern encryption standards including FTPS, SFTP, HTTPS, OpenPGP, AES and Drummond Certified AS2. GoAnywhere features the GoDrive on premise file sharing and collaboration alternative to cloud-based services, and Secure Mail module for ad-hoc file transfers.

For more information please contact Ekron Dries:

088-2583346 or ekron.dries@bluefinch.com

 

Source article: http://www.marketwired.com


  • -

Webinar Adaptive Redaction

Category:News Tags : 

Webinar: Introducing Adaptive Redaction. Protecting critical information without harming productivity or communication flow.

Join us for this free webinar on February 8 or 15, 2017:  http://pages.clearswift.com/FY17_Q4_INT_BlueFinch_Webinar.html

This unique technology can be used as a proactive approach to business critical information protection, without harming productivity and the delay of valid business communication. Based on security policies, it is possible to remove sensitive content, document properties, macros, and active code in common office documents.

We provide this webinar together with our technology partner Clearswift (www.Clearswift.com ).

 


  • -

No business is an island!

Category:News Tags : 

Want we hebben allemaal te maken met een buitenwereld. Een periferie van partners, leveranciers, filialen en klanten. Het delen van informatie, in welke vorm dan ook, is van alle tijden. En dat geldt in toenemende mate ook voor de risico’s ervan.

Dagelijks nieuws over beveiligingsincidenten, de nieuwe wet- en regelgeving rond de bescherming van privacy en het voorkomen van datalekken, zorgen voor een toenemende druk op iedere organisatie.

Deze uitdagingen blijven voorlopig nog bestaan. Maar er zijn genoeg mogelijkheden om te zorgen voor meer veiligheid en een betere controle.

De voordelen van een centrale Managed File Transfer oplossing:

Vereenvoudig
Voorkom wildgroei en centraliseer alle ad-hoc en geautomatiseerde data- en bestanduitwisseling binnen een eenvoudig aan te passen omgeving. Gemakkelijk opzetten van nieuwe connecties en snel problemen detecteren en oplossen.

Beveilig
Encryptie is van vitaal belang voor de bescherming van informatie. Realiseer maximale beveiliging op alle niveaus van de informatieoverdracht (SSL, SSH, AS2 of OpenPGP). Autoriseer gebruikers op basis van rollen en taken.

Controleer
Controleer eenvoudig wie, welke informatie stuurt en ontvangt en hoe deze processen zijn beveiligd. Cruciaal voor iedere organisatie die zich moet conformeren aan PCI-DSS, SOX, wet datalekken of intern security beleid zoals ISO27001 of Cobit.

Benieuwd naar de mogelijkheden?
Neem snel contact op voor meer informatie.

088-2583346


  • -

What is AS2?

Category:News Tags : 

Applicability Statement 2 (AS2) is a popular file transfer protocol that allows businesses to exchange data with their trading partners.

AS2 combines the use of several secure and widely used technologies including HTTPS, SSL Certificates, S/MIME, and file hashing. By utilizing the strengths of each of them, AS2 has become the preferred protocol in many organizations for exchanging sensitive EDI files.

AS2 messages can be compressed, signed, encrypted and sent over an SSL tunnel making the file transfers very secure. And receipts can be sent back to the sender ensuring the messages were delivered successfully. The receipts can be digitally signed and will contain a checksum value that the sender will use to verify the message received is identical to what was sent.

Message Encryption – By using the recipient’s public certificate, the AS2 message contents can be encrypted to keep the data secure. Only the recipient will be able to decrypt the contents using their private certificate.

Digital Signatures – The message can be signed using the sender’s private certificate which allows the recipient to verify the authenticity of the sender. The receipt that is sent back to the sender can also be signed to ensure the identity of the recipient’s system. These digital signatures are used for message integrity and non-repudiation of origin. They are typically used in addition to authentication using a user name, password, and/or certificate.

Compression – In order to improve transmission time, compression can be added to decrease the size of the message.

Receipt – The Message Disposition Notification (MDN, which is commonly referred to as a receipt) plays an important role in AS2 as it acknowledges that the recipient received the message. It can also be used to verify the identity of the recipient when the receipt is signed. Receipts that are sent back immediately over the same connection are referred to as a synchronous MDN. Receipts can also be sent back at a later time in asynchronous mode. This allows the recipient to process and verify the data before sending back a status to indicate if the transaction was successful.

Message Integrity Check – The recipient will calculate a checksum of the message using MD5, SHA1, or a SHA2 hashing algorithm. This value is referred to as the MIC and is shared with the sender by placing it in the receipt. The sender will calculate a checksum as well using the same algorithm. These two values are then compared to guarantee that the message sent is identical to the message that was received.

Non-repudiation of Receipt –The use of signatures on the message and receipt creates a Non-Repudiation of Receipt (NRR) event, which is considered legal proof of delivery.

Both organizations will need an AS2 solution in order to exchange data. Due to the complex nature of the AS2 protocol with encryption, signatures, and receipts; it is possible that there can be compatibility issues between two separate products. Fortunately, Drummond Group has a rigorous program that validates an AS2 product follows the RFC 4130 standard and is interoperable with other certified products. Using a Drummond Certified solution, and requiring your trading partners do as well, alleviates the challenges of AS2 and allows you to focus on the business aspects of data transfers.

GoAnywhere MFT™ is Drummond Certified™ for AS2 and supports SHA2 algorithms for stronger security, chunked transfer encoding to handle large files, multiple attachments per message, and filename preservation.


  • -

5 Signs your organisation is ready for MFT

Category:News Tags : 

Low-cost file transfer tools allow mid-market businesses to make simple data exchanges both internally and externally.  As your company grows, however, trading partners demand enterprise-level systems to improve reliability and data security.

cityscape - mft readyManaged File Transfer (MFT) emerged to reduce the cost and programming skills required for you to meet customer requirements and stay competitive in the marketplace. According to an Info-Tech Research Group report on selecting and implementing an MFT solution, there are five signs that indicate your organization could benefit from this technology.

1. A need for transparency and traceability in file exchange activities

2. New business relationships mandate adherence to compliance laws and privacy regulations

3. Traditional methods of sending data, such as FTP, aren’t secure

4. Processes need to be more agile and adapt to changing network conditions

5. The inability to comply with government reporting requirements

MFT provides comprehensive audit trails and monitoring to document all file transfer activity. Reports generated from this data show every interaction with the files on your server in great detail and allow you to better serve customers by responding quickly when problems do arise.

When security and reporting tools are needed to meet strict regulatory compliance standards of even highly-regulated industries, MFT delivers.  These include the data protection and integrity requirements found in PCI DSS, GLBA, SOX, Dodd-Frank and state privacy laws.

In light of recent high profile data breaches, many organizations have chosen to reduce their risk by seeking alternatives to unsecure FTP.  MFT gives you the flexibility to connect with trading partners using secure protocols and popular encryption methods like SFTP, FTPS, HTTPS, AS2, Open PGP and ZIP with AES.

In addition, automation and simplified workflows offered in many MFT solutions streamline the process of adding and onboarding trading partners. Companies can reduce or eliminate time spent on manual file exchanges and interrupted file transfers, thus reducing administrative costs and assuring the timely delivery of mission-critical data.

 


  • -

GoAnywhere Managed File Transfer 5.0 Released with Unified Interface and Advanced Reporting

Category:News

Linoma Software unveils GoAnywhere MFT™ (Managed File Transfer), version 5.0 of its GoAnywhere secure file transfer software. The upgrade combines the workflow automation capabilities of Linoma’s popular GoAnywhere Director solution with secure file transfer protocol (FTP) features from GoAnywhere Services into a single product. In addition, the merged product adds numerous significant enhancements.

GoAnywhere Managed File Transfer 5.0 Unified Interface DashboardGoAnywhere MFT 5.0 introduces a brand new and customisable browser-based dashboard with more than 20 gadgets providing statistics, graphs, and details of file transfer activity and critical system information. Each administrator has their own personal dashboard, and can arrange informative gadgets to quickly monitor the activity most important to them.

The upgrade delivers advanced Reporting features that include various PDF reports that cover system information and file-transfer activity with details and graphs.  A Security Settings Audit report will analyse a GoAnywhere MFT server’s security settings to determine compliance with the Payment Card Industry Data Security Standards (PCI-DSS) requirements. The report also suggests actions needed to remedy the settings that are non-compliant.

GoAnywhere continues to provide individual audit logs for job activity, triggers, and file transfers (SFTP and FTP/s, HTTP/s, AS2). The product’s new version improves logging by sending the individual log events to a global index for faster, system-wide search results.  The new Global Search can be used to quickly find events for a particular file name, a specific user name or a wide variety of ‘Google’ like search criteria.

Licensing for GoAnywhere MFT has been revamped allowing Linoma to offer a completely free FTP server, including functions to automate FTP transfers. Every edition of GoAnywhere MFT also includes 10 free user accounts for GoDrive, the on-premise enterprise file synchronisation and sharing solution.

GoAnywhere MFT now features the ability to use Internet Content Adaptation Protocol (ICAP) servers as Resources and Tasks to integrate antivirus and DLP (data loss prevention) solutions in your workflows. Customers can scan files for sensitive data and viruses to stop harmful file transfers before they are sent.

Existing customers of GoAnywhere can upgrade to this latest version. To download the software or learn more about the enhancements and features of GoAnywhere MFT 5.0, please contact BlueFinch.