Previous Topic

Next Topic

Book Contents

Book Index

Overview

OpenPGP can be used with FTP to provide improved security over standard FTP. WS_FTP Professional provides the industry's first fully-integrated OpenPGP mode to encrypt individual files to enable secure file management before and after transfer. Only individuals with the appropriate key can decrypt OpenPGP files. The OpenPGP mode also supports AES, 3DES, and other ciphers; offers Signature (key) strength from 1,024 up to 4,096 bit; and provides support for RSA and Diffie-Hellman key types with expirable keys.

You can additionally protect your files before, during, and after transfer with Progress WS_FTP Professional best-in-class 256-bit AES or other encryption options. This lets you combine the fully-integrated OpenPGP mode to encrypt individual files with secure file transfer over SSL/FTPS and SSH/SFTP connections to safely transfer and store your private and confidential files.

This chapter discusses how OpenPGP works within WS_FTP, outlines the steps to transfer a file using OpenPGP encryption, and provides scenarios that illustrate how OpenPGP can solve security problems.

WS_FTP contains software based on standards defined by the OpenPGP Working Group of the Internet Engineering Task Force (IETF) Proposed Standard RFC 2440. Progress WS_FTP Professional can work with OpenPGP, PGP or GPGP keys.

How it works

OpenPGP is a key-based encryption method used to encrypt files so that only their intended recipient can receive and decrypt them. OpenPGP is used widely to secure e-mail communications, but its technology can also be applied to FTP.

OpenPGP works by using two cryptographic keys to secure files. A Public Key is used to encrypt the file so that only its corresponding Private Key can decrypt it.

Unlike SSL and SSH, OpenPGP is not a type of connection, but a method of encrypting a file prior to uploading it. As such, OpenPGP Mode can be used in conjunction with standard FTP, SSL or SSH connections.

The following is a step-by-step illustration of how OpenPGP Mode works with FTP.

Step 1. The file to be uploaded is encrypted using a Public Key that the file's intended recipient has previously provided.

Step 2. The encrypted file is uploaded to the FTP server.

Step 3. The intended recipient retrieves the file from the FTP server.

Step 4. Using the Private Key (which together with the Public Key used to encrypt the file initially comprises the Key Pair), the intended recipient decrypts the file and accesses its contents.

You can also use OpenPGP to encrypt and decrypt files in local storage.

See Also

OpenPGP

Using OpenPGP mode to encrypt and decrypt files for transfer (WS_FTP Professional)

Enabling OpenPGP mode for a site by default (WS_FTP Professional)

Encrypting and decrypting local files (WS_FTP Professional)

Generating an OpenPGP key pair (WS_FTP Professional)

Importing OpenPGP keys (WS_FTP Professional)

Exporting OpenPGP keys (WS_FTP Professional)

Scenario: Encrypting files for transfer to or from a remote site (WS_FTP Professional)

Scenario: Encrypting local files and local transfers (WS_FTP Professional)