It has come to our attention here at FireTide Creative that our current File Transfer Protocol (FTP), our primary method of transferring data, has some inherent security flaws. This has prompted a switch from using FTP for our data transfers to the incredibly secure, Secure Shell, which boasts public-key cryptography and authentication. Outlined below are the shortcomings of FTP and the solution provided by SSH.

FTP is a network protocol used to upload, download, and manipulate files over the Internet and has been the standard since the early 1980’s. To make use of this protocol and access a desired server, the client needs a username and password. This, however, creates a sense of security that does not actually exist.

When the client connects to a server via FTP, their username and password is transmitted in plain text over the Internet—no encryption, no security. Anyone sniffing around for this login information can find it and use it, thus giving them immediate access to the contents of your server.

Unfortunately, the security pitfalls go one step further: all files are uploaded or downloaded without any encryption at all. This leaves any sensitive information, such as credit card data, vulnerable to a security breach.

The solution to this complete lack of server security comes in the form of Secure Shell (SSH). SSH is another network protocol, but the way it works is completely different than FTP. Rather than relying on a username and password sent over the Internet in plain text, it creates a secure channel (or shell) between two networked devices.

SSH uses public-key cryptography to authenticate both client and host and then encrypt all subsequent data once the connection has been made. This is done through a private key that resides on the clients local system and a public key that resides on the server. When a connection to the server is attempted, the host must validate itself via the public key, then the client’s machine must validate itself via the private key. Once this connection is made, SSH uses the keys in combination with a standard encryption cipher to create an extremely secure ‘tunnel’ through which to pass all data.

---

About OpenSSH
OpenSSH is a FREE version of the SSH connectivity tools that technical users of the Internet rely on. Users of telnet, rlogin, and FTP may not realize that their password is transmitted across the Internet unencrypted, but it is. OpenSSH encrypts all traffic (including passwords) to effectively eliminate eavesdropping, connection hijacking, and other attacks. Additionally, OpenSSH provides secure tunneling capabilities and several authentication methods, and supports all SSH protocol versions.
For more information, visit: www.openssh.com

---

About FireTide Creative
FireTide Creative is a Marketing, Advertising, and Definition Firm developing creative and unique design for print, web, video and radio solutions. FireTide provides proven marketing expertise in brand management.  For more information, visit: www.firetidecreative.com