Transferring Files Securely Using FTPS

<h1>Transferring Files Securely Using FTPS</h1>Author: <a title="David Muck" href="http://www.articlesbase.com/authors/david-muck/99278.htm">David Muck</a> FTPS is a protocol for transferring files using SSL to secure the commands and data that are being transferred between the client and the server. Secure Sockets Layer (SSL) and its successor Transport Layer Security (TLS), are cryptographic protocols that provide secure communications on the Internet for such things as web browsing, e-mail, FTP and other data transfers. The SSL protocol was developed by Netscape Communications Corporation to provide security and privacy over the Internet. Due to the widespread use of SSL, it can be considered a "de facto standard". 
 
FTPS supports channel encryption as defined in RFC 2228. With FTPS, data transfers take place in a way designed to allow both parties to authenticate each other and to prevent eavesdropping, tampering, and forgery on the messages exchanged. 
 
How FTPS Works 
 
When establishing an SSL secure session, the following steps occur: 
 
1. Authenticate the server to the client. 
 
2. Allow the client and server to select the cryptographic algorithms, or ciphers, that they both support. 
 
3. Optionally authenticate the client to the server. 
 
4. Use public-key encryption techniques to generate shared secrets. 
 
5. Establish an encrypted SSL connection. 
 
Server authentication allows a user to confirm a server's identity. SSL-enabled client software can use standard techniques of public-key cryptography to check that a server's certificate and public ID are valid and have been issued by a certificate authority (CA) listed in the client's list of trusted CAs. This confirmation might be important if the user, for example, is sending a credit card number over the network and wants to check the receiving server's identity. 
 
The client encrypts the premaster secret with the server's public key. Only the corresponding private key can correctly decrypt the secret, so the client has some assurance that the identity associated with the public key is in fact the server with which the client is connected. Otherwise, the server cannot decrypt the premaster secret and cannot generate the symmetric keys required for the session, and the session will be terminated. 
 
Public Key Cryptography 
 
Public key cryptography assures private and secure data transmission through two processes: authentication and encryption. Authentication ensures that the data sender is exactly who or what it claims to be. Encryption, the most effective way to achieve data security, is the process of translating data into a secret code. To demonstrate the difference between 56-bit, 128-bit and 256-bit encryption, consider the following example: 
 
Sending information without encryption is like sending a postcard through the mail - the contents are visible to anyone who wants to see it. Using this analogy, 56-bit encryption is like sending the information in a plain white envelope, and 256-bit encryption is like encasing your data in a lead-lined, 6-inch thick titanium safe that is being transported by an armored tank with a convoy of a hundred armed guards. 
 
Public and Private Keys 
 
Authentication and encryption use digital codes called "keys" - a public and a private key. The public key is used to encrypt messages, and the corresponding private key is used to decrypt them. It is important to note, however, that despite their symbiotic association, it is virtually impossible to infer the private key if you know the public key. 
The public key has two major functions: validation and data encryption. As its name suggests, the public key is openly published to any party requesting one of these two functions. 
 
The private key on the other hand, is necessary for encrypting data (also called signing) and for decrypting. Unlike the public key, this key is closely guarded. 
 
Digital Certificates 
 
Digital certificates are a standard way of binding a public key to a name. In order to provide a digital certificate, the data sender must apply for a digital certificate from a Certificate Authority (CA) such as VeriSign. This way, the CA acts as a neutral third party that verifies the data sender is who or what they claim to be. Once this information is verified, the CA can issue a public key certificate for that party to use. The most commonly used standard for digital certificates is X.509. A universal standard of this sort is necessary because in order to send encrypted data, you must know the recipient's public key. 
 
Summary 
 
FTPS should be used when you need to transfer sensitive or confidential data between a client and a server that is configured to use SSL for secure transactions.About the Author: Zephyr Development Corporation is a highly respected developer of advanced terminal emulation and host integration solutions for Microsoft Windows. More about Zephyr's PASSPORT and FTPS Secure SSL File Transfer: <A href="http://www.zephyrcorp.com/ftps.htm"><a target="_blank" href="http://www.zephyrcorp.com/ftps.htm">http://www.zephyrcorp.com/ftps.htm</a></a>Article Source: <a href="http://www.articlesbase.com/">ArticlesBase.com</a> - <a href="http://www.articlesbase.com/computers-articles/transferring-files-securely-using-ftps-660810.html" title="Transferring Files Securely Using FTPS">Transferring Files Securely Using FTPS</a>

FTPS is a protocol for transferring files using SSL to secure the commands and data that are being transferred between the client and the server. Secure Sockets Layer (SSL) and its successor Transport Layer Security (TLS), are cryptographic protocols that provide secure communications on the Internet for such things as web browsing, e-mail, FTP and other data transfers. The SSL protocol was developed by Netscape Communications Corporation to provide security and privacy over the Internet. Due to the widespread use of SSL, it can be considered a "de facto standard".

FTPS supports channel encryption as defined in RFC 2228. With FTPS, data transfers take place in a way designed to allow both parties to authenticate each other and to prevent eavesdropping, tampering, and forgery on the messages exchanged.

How FTPS Works

When establishing an SSL secure session, the following steps occur:

1. Authenticate the server to the client.

2. Allow the client and server to select the cryptographic algorithms, or ciphers, that they both support.

3. Optionally authenticate the client to the server.

4. Use public-key encryption techniques to generate shared secrets.

5. Establish an encrypted SSL connection.

Server authentication allows a user to confirm a server's identity. SSL-enabled client software can use standard techniques of public-key cryptography to check that a server's certificate and public ID are valid and have been issued by a certificate authority (CA) listed in the client's list of trusted CAs. This confirmation might be important if the user, for example, is sending a credit card number over the network and wants to check the receiving server's identity.

The client encrypts the premaster secret with the server's public key. Only the corresponding private key can correctly decrypt the secret, so the client has some assurance that the identity associated with the public key is in fact the server with which the client is connected. Otherwise, the server cannot decrypt the premaster secret and cannot generate the symmetric keys required for the session, and the session will be terminated.

Public Key Cryptography

Public key cryptography assures private and secure data transmission through two processes: authentication and encryption. Authentication ensures that the data sender is exactly who or what it claims to be. Encryption, the most effective way to achieve data security, is the process of translating data into a secret code. To demonstrate the difference between 56-bit, 128-bit and 256-bit encryption, consider the following example:

Sending information without encryption is like sending a postcard through the mail - the contents are visible to anyone who wants to see it. Using this analogy, 56-bit encryption is like sending the information in a plain white envelope, and 256-bit encryption is like encasing your data in a lead-lined, 6-inch thick titanium safe that is being transported by an armored tank with a convoy of a hundred armed guards.

Public and Private Keys

Authentication and encryption use digital codes called "keys" - a public and a private key. The public key is used to encrypt messages, and the corresponding private key is used to decrypt them. It is important to note, however, that despite their symbiotic association, it is virtually impossible to infer the private key if you know the public key.
The public key has two major functions: validation and data encryption. As its name suggests, the public key is openly published to any party requesting one of these two functions.

The private key on the other hand, is necessary for encrypting data (also called signing) and for decrypting. Unlike the public key, this key is closely guarded.

Digital Certificates

Digital certificates are a standard way of binding a public key to a name. In order to provide a digital certificate, the data sender must apply for a digital certificate from a Certificate Authority (CA) such as VeriSign. This way, the CA acts as a neutral third party that verifies the data sender is who or what they claim to be. Once this information is verified, the CA can issue a public key certificate for that party to use. The most commonly used standard for digital certificates is X.509. A universal standard of this sort is necessary because in order to send encrypted data, you must know the recipient's public key.

Summary

FTPS should be used when you need to transfer sensitive or confidential data between a client and a server that is configured to use SSL for secure transactions.

Zephyr Development Corporation is a highly respected developer of advanced terminal emulation and host integration solutions for Microsoft Windows. More about Zephyr's PASSPORT and FTPS Secure SSL File Transfer: http://www.zephyrcorp.com/ftps.htm

Rate this Article:

0 / 5 stars - 0 vote(s)

Re-Publish

Article Source: http://www.articlesbase.com/computers-articles/transferring-files-securely-using-ftps-660810.html

Article Tags: FTP, Ssh, Ssl, File Transfer, Sftp, Ftps, Secure File Transfer

Related Videos
Related Articles
Ask / Related Q&A

Play

How to Keep Confidential Computer files Secure

Play

How to Apply Security to a PDF File in Adobe Acrobat 7

Play

How to Set Up Security Policy to a PDF File

Play

Bomgar Training 11: Secure File Transfer URL Push

Play

How to Encrypt emails using Voltage Security Network

Latest Computers Articles
More from David Muck

How Do Laptop Skins Help Protect Your Laptop?

By: BhratBrij | 09/12/2009
Looking for laptop skins on the Internet? Apart from laptop skins, you can get a wide variety of network skins and cell phone skins on the Internet also.

Will dawn of Windows 7 bring XP's end?‏

By: pirumandal | 09/12/2009
The warm reception of Windows 7 suggested that the software giant will get the same or better response of the operating system compared to Windows XP. Therefore, the company is planning to introduce EOL (end-of-life) to the nearly decade-old operating system.

Registry Cleaner Review - 2 Ways That Can Assist You to Select the Best Registry Repair Software

By: johnfrank | 09/12/2009
If you are somebody whose PC has at the present started working very slow and needs a rapid fix for the difficulty, then with the help of this article you will come to know how can you increase the speed of your computer, with the help of some important and effective tips. Mostly, too many entries in the Windows database registry are the cause after such problems. These databases over a period of times build up a lot of data, together with junk files, which leads to your computer working slow an

Registry Cleaner Reviews – The Complete Guide That Will Help You Choosing the Most Excellent Registry Cleaner Software

By: johnfrank | 09/12/2009
If you have the slow running computer that contains lots of errors crashing or blue screens, then you are among those million of people who can solve their problem with the help and service of the registry cleaner tool.

Registry Cleaner Review – The Biggest Secret Exposed Only For You to Select the Ultimate Registry Cleaner Software

By: johnfrank | 09/12/2009
There are many of the people who are having same problem with their PC. This problem exactly means nothing, but slow sped of the computer, continues hang up, crashing appearance of blue screens and many other errors. This all things takes place when the registry of the computer gets corrupted because of the useless files and data stored in the computer, but there is no need to think much, as there is the very simple solution for your problem this problem can be solved by cleaning the registry wi

Google Real Time Search Results

By: Sherry Tingley | 09/12/2009
The new Google search tools allow people to search in real time. This new search feature means that you will get your news faster than you have been able to in the past. Several other search tools have also been developed.

Why Should You Opt for AMC?

By: Ritu Sharma | 09/12/2009
AN Annual Maintenance Contract is a specialized service that helps maintaining your PC, notebook, laptop, Server and printer throught the year.

The Virtues of Building Your Own Computer

By: Gregg Housh | 09/12/2009
For the vast majority of users, off-the-shelf computers deliver enough bang for their buck. However, for those who want a powerful machine without breaking the bank, building your own computer can be a relatively inexpensive solution. Although the task may seem intimidating, assembling your own computer can be much simpler...

Guide to TN3270 Emulation

By: David Muck | 09/12/2008 | Computers
TN3270 emulation is a communications standard that allows a remote terminal such as a Windows workstation to communicate with an IBM or IBM-compatible mainframe. Originally, 3270 display terminals, also known as "dumb terminals", were used to connect to mainframes. TN3270 emulation replaces the use of dumb terminals for accessing mainframe...

Guide to VT220 Emulation

By: David Muck | 09/12/2008 | Computers
VT220 Emulation uses the telnet protocol to create a TCP/IP connection to a remote host typically running the Unix, AIX, IBM i or Linux operating system. Originally, video terminals were used to communicate with these systems. The most established manufacturer of VT terminals was Digital Equipment Corporation (DEC). The first...

Guide to TN5250 Emulation

By: David Muck | 09/12/2008 | Computers
TN5250 emulation uses the telnet protocol to create a TCP/IP connection to a remote host. Initially, IBM 5250 terminals were sold with IBM's System/34 minicomputer system. Today, TN5250, or telnet 5250, is typically used to access an IBM AS400 or iSeries server. TN5250 emulation software installed on a PC allows...

Transferring Files Securely Using FTPS

By: David Muck | 27/11/2008 | Computers
FTPS is a protocol for transferring files using SSL to secure the commands and data that are being transferred between the client and the server. Secure Sockets Layer (SSL) and its successor Transport Layer Security (TLS), are cryptographic protocols that provide secure communications on the Internet for such things as...

Guide to IBM PSeries Emulation

By: David Muck | 27/11/2008 | Computers
The IBM pSeries line of servers, also known as IBM System p, was originally named RS/6000. These servers run the AIX, IBM i or Linux operating systems. The IBM pSeries line of servers has now been replaced by IBM Power Systems. Virtualization and Server Consolidation Using IBM's PowerVM virtualization technology for the...

Evolution of the AS400 and ISeries

By: David Muck | 27/11/2008 | Computers
In 1988, IBM introduced the AS400® as a server solution for midsize businesses and departments within larger enterprises. Over time, IBM realized that in order to fulfill their vision of replacing PC and Unix servers throughout organizations worldwide, the AS400 would need to be easily integrated with distributed networks and...