Encryption

Ensuring the privacy and integrity of your data is vital, whether it's stored to disk or transmitted outside your organization. Sending an encrypted file transfer of sensitive data is essential for compliance with PCI DSS, state privacy laws, and federal regulations such as HIPAA and Sarbanes-Oxley.

GoAnywhere MFT Encryption Technologies

GoAnywhere implements several popular technologies for encrypted file sharing and transfers. Click the links below to learn more:

  • Encrypted Folders
  • Protect your files at rest using AES 256-bit encryption for easy compliance with security standards. Files are automatically decrypted for authorized users. Many GoAnywhere MFT features support Encrypted folders. Learn more >
  • Open PGP and GnuPGP
  • These industry standards allow you to encrypt and decrypt files using public and private keys to safeguard the privacy and integrity of your data. Learn more about Open PGP or GnuPGP
  • SSL/TLS
  • Use Secure Sockets Layer (SSL) and Transport Layer Security (TLS) for sending encrypted file transfers over AS2, FTPS, and HTTPS protocols. An integrated SSL Certificate Manager simplifies working with X.509 certificates. Learn more >
  • SSH
  • Send encrypted file transfers over SFTP and SCP protocols to secure your network communications and file transfers. Learn more >
  • ZIP with AES
  • Tasks in GoAnywhere MFT assist with compressing and encrypting files with AES encryption using ZIP and GZIP standards. Learn more >
  • FIPS 140-2
  • Protect your files at rest and in motion. GoAnywhere MFT offers a FIPS 140-2 Compliance Mode that, when enabled, only permits the use of FIPS 140-2 compliant ciphers (e.g. AES, Triple DES) for SSL and SSH protocols. Learn more >
  • Key Manager
  • An integrated Key Manager is provided in GoAnywhere MFT, allowing you to create, import, export, and manage Open PGP keys, SSH keys, and SSL certificates. Learn more >
  • Send Encrypted Email
  • Email encrypted with SMIME allows you to send data from GoAnywhere. And with the optional Secure Mail module, you can send secure HTTPS links to download files. Learn more >

Achieve Encrypted File Sharing and Transfers with GoAnywhere

Obtain a personalized quote based on the managed file transfer features you need.

Request Pricing

 

Why Protect Your Files With a File Transfer Software?

Watch this short video for a brief overview of the best ways to ensure documents, emails, and databases are encrypted.

Encrypt with GoAnywhere MFT

Protect your files at rest and in motion with GoAnywhere MFT. See these tutorials for how to use GoAnywhere to encrypt your files and learn how MFT works to protect your data.

Getting Started with Projects

This guide is an overview of how to design Projects to encrypt data, transfer, and automated processes.

How to Encrypt and Sign Files Using PGP

Protect your sensitive information with PGP encryption, and ensure you’re sharing your files safely. This tutorial walks through how to import PGP keys and use them to encrypt and sign files.


Encryption Related Resources

Managed File Transfer Solution FAQs

Is GoAnywhere MFT's Open PGP encryption/decryption compatible with other PGP products?

Yes. GoAnywhere MFT is compliant with the Open PGP standard. The Open PGP standard is a non-proprietary and industry-accepted protocol which defines the standard format for encrypted messages, signatures and keys. This standard is managed by the IETF (Internet Engineering Task Force). See RFC2440 and RFC4880 for more details on the Open PGP standard.

HelpSystems is not aware of any compatibility issues with any other PGP products. GoAnywhere MFT's Open PGP encryption and decryption processes have been verified for interoperability with many other 3rd party products, including PGP Desktop from PGP® Corporation, E-Business Server from McAfee® and GnuPG (GPG).

Does GoAnywhere MFT support GnuPG (GPG) encryption?

GnuPG (GPG) is the GNU project's implementation of the Open PGP standard as defined by RFC4880. Since GoAnywhere MFT includes Open PGP compliant technology, you can use GoAnywhere MFT to decrypt files that were encrypted with GPG. Your trading partners can also decrypt files (which were encrypted with GoAnywhere MFT) using GPG.

Is the price of GoAnywhere MFT based on the number of users?

GoAnywhere MFT supports the AES, Triple DES, Open PGP, SSL/TLS, S/MIME and SSH 2.0 standards for encrypting data transmissions.

Does GoAnywhere MFT's encryption algorithms (ciphers) comply with FIPS 140-2 standards?

Yes. Security Requirements for Cryptographic Modules are formalized in the Federal Information Processing Standard (FIPS publication 140-2), developed by the US National Institute of Standards and Technology (NIST) and Canadian Communication Security Establishment (CSE). GoAnywhere MFT provides a FIPS 140-2 Compliance Mode and when enabled, it only permits the use of FIPS 140-2 compliant ciphers (e.g. AES, Triple DES) for encryption processes.

The FIPS 140-2 certified algorithms (ciphers) in GoAnywhere MFT are provided by an embedded RSA® security module and apply to all SSH and SSL communications within GoAnywhere MFT including SFTP, SCP, FTPS and HTTPS protocols. RSA, a division of EMC, is a trusted provider of security, risk and compliance management solutions for business acceleration. By leveraging RSA’s extensive experience with encryption technology and compliance criteria, GoAnywhere MFT is able to satisfy the stringent requirements for FIPS 140-2.

Which compression standards does GoAnywhere MFT support?

Files can be compressed and uncompressed using the ZIP, GZIP and TAR standards.

How comprehensive are the FTP, SFTP, SCP and FTPS features in GoAnywhere MFT?

GoAnywhere MFT provides comprehensive features for automating the exchange of files with your trading partners over SFTP, SCP, FTP and FTPS protocols. Features included:

  • Predefine SFTP, SCP, FTP and FTPS server connections (host name, user, password, default path, etc.) in a central database which can then be selected through drop-down menus when creating Projects
  • Authenticate connections using passwords, certificates or keys
  • Auto-detect Binary and ASCII modes
  • Make Passive and Active connections
  • Use non-standard port numbers
  • Select multiple files using wildcard naming (i.e. ?/orders/*.*?), date filters and size filters
  • Select files using substitution variables
  • Prefix and suffix files with the current date, time or timestamp
  • Automatically encrypt or ZIP files before distributing them to a FTP server
  • Distribute files and directories to other SFTP and FTP/s servers, the local file system or email
  • Automatically decrypt, UNZIP and import files retrieved from SFTP and FTP/s servers
  • Rename files using specific names or variables
  • Delete files from the source SFTP or FTP/s server after successful retrieval
  • Archive files on the source SFTP or FTP/s server after successful retrieval
  • Run remote SFTP and FTP/s command scripts
  • Auto-retry failed connections with user-defined limits
  • Support for large files with auto-resume and packet integrity checks to help guarantee delivery
  • A detailed audit log is be generated and saved for each transmission, which will log all commands issued and any messages generated