Skip Navigation Links
Products
Downloads
Store
Support
Resellers
Company
Investor Relations

Skip Navigation LinksHome > Products > Enhanced File Transfer Server > Features
EFT Server
Features
AS2
High Security PCI
DMZ Gateway
EFT Web Client
Auditing and Reporting
Secure Ad Hoc Transfer
What's New
Case Studies
System Requirements
Support
Webinar
Request a Trial
Contact Sales

Whitepapers

PCI Executive Summary

PCI Overview 

Clustering Overview

EFT ROI

Security Best Practices

Features: EFT Server

The EFT Server solution consists of EFT Server and six add-on modules.  Its modular form keeps it affordable by allowing you to purchase just the functionality you need.  

Add-On Modules

  • DMZ Gateway – Used in combination with EFT Server to create a multi-tier security solution for data storage and retrieval. The DMZ Gateway resides at the edge of the network, brokering data between EFT Server residing behind your corporate firewall and your clients in the outside world.
  • AS2 Module -  Easy to use and cost effective AS2 support for EFT Server.
  • Secure Ad hoc Transfer Module – The Secure Ad hoc Transfer module allows companies to exchange files without the problems associated with having to manually create temporary FTP accounts, the size limitations and security issues of regular email, or the time delays and high costs of overnight and physical shipments.
  • Auditing and Reporting Module – Captures all of the transactions passing through EFT Server. Query the data and view reports from within EFT Server's Administrative console.
  • High Security-PCI Module – This module helps companies comply with the Payment Card Industry Data Security Standard (PCI-DSS) or to put in place a High Security solution for their organization. It helps create PCI DSS-compliant file-transfer services simply and easily and facilitates the continuous process of maintaining compliance.
  • Web Transfer Client – A powerful thin client that deploys automatically and can be used by any trading partner using most Web browsers.

EFT Server Features - Base

EFT Server provides robust security architecture for meeting business and regulatory requirements, ensures that encrypted transactions occur only with the appropriate entities, and ensures that data confidentiality and integrity are preserved during transport and storage.

Transport Security
  • Industry- standard FTP and HTTP over:
    • Secure Sockets Layer (SSL)
    • Transport Layer Security (TLS)
  • SSH2 (Secure Shell's SFTP)
  • Create, manage, and use digital certificates and public keys
  • Specify cipher preference and order of precedence

Data Storage Security

Organizations transferring mission- critical or classified documents, or requiring increased data security on Internet-accessible systems, may wish to encrypt data as it is received and subsequently stored on disk. GlobalSCAPE's EFT Server can encrypt files automatically using AES 256-bit encryption (Microsoft's powerful but controversial EFS) or using the popular OpenPGP-based two-factor encryption standard.

  • Encrypted File Store (EFS)
  • With OpenPGP-based Encryption
  • Automatic offloading of files as they arrive
General Security
  • Multiple mechanisms for registering, authenticating, and authorizing users.
  • User accounts isolated from network user accounts, ODBC-based or network-based authentication (NT/AD/LDAP).
  • Advanced protection from Denial of Service (DoS) and flood attacks.
  • Support for strong (complex) password policy enforcement for account authentication.

  • SOCKS proxy support allows EFT Server to access external servers via a SOCKS proxy, such as Microsoft ISA Server, Sun Java System Web Proxy server, and Secure Shell servers.

Event Rules

Create powerful event triggers without any programming knowledge. Use a simple point-and-click interface to create pre- and post-processing “Event Rules” that launch pre-defined actions if certain conditions occur.

Configurable event triggers for performing single or multi-step actions including:
  • Send an e-mail notification to one or more recipients
  • Push data to a network drive or to another server using a variety of protocols
  • Pull data from remote inboxes located on the LAN or using FTP/S, SFTP, or HTTP/S
  • Run a command or process, giving you virtually unlimited extensibility
  • Encrypt, decrypt, or sign data using the included OpenPGP component
  • Delete stale data from the server
  • Monitor a specific folder for changes. If a file is added or modified, EFT Server will trigger a specified action
  • Run rules on a recurring schedule
  • Conditionally run one or more actions using IF/ELSE blocks, and AND/OR/<>=! operators
click image for larger view

Data pre- and post-processing is integral part of EFT Server's event-based trigger system. With Event Rule triggers, when a specific event occurs (the trigger), and if certain conditions are met (the criteria), then pre-defined actions can be launched.

Non Repudiation of Receipt
EFT Server tracks and reports on transactions throughout their life cycle, providing non repudiation of receipt through granular transaction auditing and reporting

Guaranteed Delivery
EFT Server includes mechanisms for ensuring file delivery using Automatic Retry, which completes the transfer if a remote connection is interrupted, and Checkpoint Restart, which allows transfers in progress to be paused and restarted at any time.

Data Integrity Checking
EFT Server can optionally validate the Cyclical Redundancy Check (CRC) checksums of transferred files.

COM API

EFT Server's programmatic interface (component object model (COM) application programming interface (API)), allows you to programmatically manage EFT Server, performing unattended maintenance automatically (as opposed to manually using EFT Server's Administrator console).

  • COM (Component Object Model) for automating time-consuming tasks or integrating into your custom application
Flexible Authentication & Account Management

Authorize partners by creating accounts in EFT Server's built-in database, or reference external directory services including Active Directory, LDAP, or proprietary data stores that support ODBC. Flexible Authentication Choices include:

  • NT user accounts with NTLM
  • Active Directory (AD) authentication
  • EFT Server authentication (virtual users)
  • ODBC authentication against ODBC data source
  • LDAP authentication
Manage Access to Resources

Limit clients and partners to designated “home” folders, assign permissions in those folders, and limit access to resources such as bandwidth and files. Assign fine-tuned settings to reusable templates, and create permission “groups” for easier control over multiple users.

  • Folder permissions (read, write, exec, list, create, rename, delete, etc.)
  • Bandwidth settings
  • Connection limits, restricted IPs, max uploads/downloads, etc.
  • Disk space allowed (quotas)
  • Allowed commands, password types, protocol types, and more
  • Types of files allowed
Life-Cycle Management

Quickly and efficiently remove users such as a departing employee or ex-partner, manage temporary accounts, and address the revocation and if necessary re-issuance of public-keys or certificates if they expire or are compromised.

  • Set an account expiration date
  • Set a certificate expiration date
  • Manually disable accounts
  • Temporarily or permanently disable accounts based on improper or suspicious activity
Administration

Manage Multiple Servers
Manage multiple physical servers running on systems across the world or within your LAN/WAN using a Windows-based Administrator Interface.

Manage Virtual Sites
Operate multiple sites with unique directory structures and user accounts from one location using the Administrator console.

Multiple Administrator Capability
Multiple administrators can connect and manage the servers with full or limited access.

Business continuity requirements typically require that an organization's outward-facing business-to-business or business-to-consumer services are highly available, meaning that interruptions are kept to an absolute minimum, and that those services are restored quickly should a disruption occur.

General failure handling

EFT Server mitigates failures caused by temporary network connectivity loss by:

  • Manual or automatic checkpoint restart - guaranteed delivery
  • Cyclical Redundancy Check (CRC) checks performed after transfer - data integrity validation
  • Accelerated transfers using segmented (multi-part) and concurrent delivery – maximize available bandwidth
Server outage

Possible deployment options for Disaster Recovery (DR) and in the case of unplanned downtime:

  • Can be configured in a fail-over (Active-Passive) cluster
  • Can provide scheduled backups (archival) for easy data backup and DR
Accelerated Transfers

Organizations with partners or clients that are geographically dispersed can benefit from EFT Server's remarkable Accelerated Transfer feature.

  • Multi-part* Accelerated Transfers (Segmented Delivery) – This cutting-edge approach to transferring large files can accelerate transfers by over 400%. A file is segmented (split) into multiple equally sized parts, and each part is then transferred simultaneously over a separate thread. Once all segments are received, the resulting parts are recombined into a whole file.

EFT Server
*requires file transfer client that supports this feature

 

 

If you would like more information regarding evaluating or purchasing EFT Server, please call us at 1-800-290-5054 (U.S.) or 1-210-308-8267 (international), or submit a request for a product trial and a representative will contact you shortly.
Home | Support | Resellers | Jobs | Privacy Policy | Subscribe to our news feeds ©2008 GlobalSCAPE - All Rights Reserved