Edge Gateway Solution
How do you allow secure file transfers without risking cyber attacks and data loss? Leave a standalone server in the DMZ and hope your data isn’t stolen, or run a server on the internal network and hope you’re not hacked? And how can any of this be compliant? Coviant Software has the answer: with Diplomat MFT as your SFTP Server behind the Edge Gateway, you and your data stay protected.
Please contact us for more info or to schedule a demo
Why Choose Diplomat MFT?
Better design means fewer errors and less time spent troubleshooting failed transfers. Diplomat MFT from Coviant Software will improve the efficiency and productivity of file transfer administrators, and play an important role in your organization’s data management, security, and compliance programs. That’s because Diplomat MFT can automatically tackle repetitive tasks, as well as vital steps required for all secure file transfers, thus reducing the risk of a security incident by keeping data encrypted, and minimizing the chance of human error.
Edge Gateway Overview:
In order to allow external parties to exchange files with you, your SFTP Server must be internet accessible, but you still need to protect sensitive data within your secure back-end network. How can you securely host an SFTP server AND transfer files between your internal system and external trading partners in a secure, auditable, and compliant manner?
Install Coviant Software’s Edge Gateway in your DMZ to accept connections from external clients. It securely coordinates SFTP services between your Diplomat MFT and the internet, ensuring that no files are ever stored in your DMZ and requiring no inbound holes in the internal firewall.
No user data, authentication data, or keys are ever stored in the DMZ — even temporarily. Instead, the Edge Gateway coordinates with Diplomat MFT to exchange secure packets with the external SFTP Client. Both your services and your data remain compliant and securely protected with no DMZ data theft possible.
Contact Us
MULTI-LAYER SECURITY
The Edge Gateway allows SFTP connectivity for external clients while keeping Diplomat MFT protected internally. Control, data, and credentials are retained exclusively by Diplomat MFT, with communications only ever initiated out to the Edge Gateway. It acts as a specialized file transfer proxy that keeps the file transfer process secure: no inbound firewall holes from the DMZ, and no direct connections from external clients. The Edge Gateway can only reply to Diplomat MFT commands, ask permission to continue, and relay information from clients.
No user data, authentication data, or keys are ever stored in the DMZ — even temporarily. Instead, the Edge Gateway coordinates with Diplomat MFT to exchange secure packets with the external SFTP Client. Both your services and your data remain compliant and securely protected with no DMZ data theft possible.
COMPLIANCE
An edge-facing DMZ is critical to network security. You must partition internet-accessible services like e-mail servers, web servers, and SFTP servers that sit inside the DMZ away from back-end systems with sensitive data.
But systems like SFTP servers that receive connections from customers, vendors, and trading partners pose a painful challenge to remaining compliant with industry and governmental regulations like PCI DSS, HIPAA/HITECH, SOX, GDPR, PIPEDA, and ADPPA. Data must be isolated securely and must not be exposed in the DMZ. The Edge Gateway solves these compliance problems for you by leaving no sensitive data available to be stolen from the DMZ, needing no inbound holes in a firewall to be compromised, and ensuring even the worst bad actor cannot eavesdrop on communications or launch attacks.
