File Transfer Security

Biscom file transfer security spans multiple levels – application (access controls), data (file encryption), and network – and actively manages user and administrator access control to keep information safe and avoid potential data breaches or data leak incidents, allowing the owner of the data to send large files securely.

Application security and governance

• Local and LDAP/Active Directory authentication support
  
• Active protection for Web attacks and vulnerabilities, including SQL injection, cross-site scripting, and buffer overflows/overruns
  
• User roles and permissions, policy-based access control
  
• Automatic delivery expiration
  
• User expiration and quotas
  
• File type restrictions

Data and network security

• Back-end file encryption (protection for "data at rest") using AES 256-bit encryption
  
• Encryption of files in transit using 128-bit Secure Sockets Layer (SSL) or higher
  
• Key management utilities for administrators with multiple encryption key support
  
• Three-tier architecture to separate presentation, application, and data layers
  
• Automatic file deletion/purging schedule
  
• Obfuscated file system keeps file names and owners hidden

Architecture

The Biscom three-tier architecture separates the presentation, application, and data layers to help keep files and information in your more protected network layers. No user data exists in the Web or application tiers. This framework also provides extreme flexibility to let your IT department dictate security parameters and requirements during deployment.