File Transfer Using PGP and SFTP

“Diplomat enabled us to take two time-consuming and inefficient processes – encrypting and setting up file transfers – and make them one single, automated process that supports Allegheny’s business requirements.”
Ryan Andrews

Senior IT Security Analyst, Allegheny Energy

What is Open PGP?

Open PGP is a technology that provides strong cryptography for encryption and digital signatures.  The Open PGP standard is widely adopted standard for protecting sensitive information exchanged between parties, and for verifying the sender of those files.  A file encrypted using Open PGP is protected by strong cryptography and hash functions to verify that the contents are not changed during transmission.

How do companies use Open PGP?

Many companies use Open PGP to protect the sensitive data that is transferred between systems.  Data such as payment card information, personally identifiable information, patient health care records, inter-company payments, and other sensitive information must be stored and transferred with strong cryptography to avoid financial or reputational penalties for data loss during data storage or transmission.

What is SFTP?

SFTP is a file transfer technology based upon the SSH standard.  SFTP is widely adopted across virtually every platform imaginable.  It supports strong authentication with passwords and cryptographic keys (called “SSH Keys”), ensuring that the identities of both client and server are verified for a file transfer.  SFTP provides strong encryption and integrity checking to ensure that transferred data is secure in transit, and arrives untampered at its destination.

How do companies use SFTP?

Companies use the SFTP protocol to transfer files between internal systems, and with external customers, suppliers, and trading partners.  SFTP is a ubiquitous protocol, available on modern and legacy computer systems.  SFTP is firewall-friendly, because all file transfers require only a single port open on the firewall (typically, port 22).  As a result, SFTP is a very popular choice for file transfers.

The Problem

How do companies manage Open PGP and SFTP File Transfer Workflows?
Often, Open PGP and SFTP workflows are handled with home-grown scripts or batch files sprawled across the organization.  Operation is fragile, maintenance is hard, and errors are common – and difficult to handle.  Scaling is impossible because these ad-hoc mechanisms were never designed for growth, and lack necessary Enterprise-grade features.  Managing the security is a daunting task, as cryptographic algorithms become obsolete and tools need to be updated.

The Solution: Diplomat MFT

If you need to encrypt or decrypt sensitive files using PGP, and transfer those files to internal systems or external partners, customers, or clients, then Diplomat Managed File Transfer will save you time, reduce human errors, and provide full auditing and alerting of those file transfers.

Rather than developing and maintaining fragile scripts to handle Open PGP encryptions, manage keys, and transfer files via SFTP, you can make a low-cost investment in Diplomat MFT in order to simply, and centralize your OpenPGP and SFTP business workflows.

Coviant Diplomat MFT has saved countless hours of productivity for hundreds of customers, handling thousands of file transfers across the globe every hour.  You can trust Coviant to automate your Open PGP and SFTP business workflows!

Case Study: Allegheny Energy, Inc.


Allegheny Energy is an electric utility headquartered near Pittsburgh, Pennsylvania, with
over $3 billion in annual revenues and more than 4,000 employees. It owns and operates
generating facilities with almost 10,000 megawatts of generating capacity and delivers
electric service to approximately 1.5 million customers in Pennsylvania, West Virginia,
Maryland, and Virginia.


Improved Security

Manage Access, Track Activity, Create Audit Trail Reports

Manage Complex File Transfer Environments

Diplomat’s intuitive point-and-click interface makes it easy to schedule file transfer jobs.

Automate Secure File Transfers

Initiate complex file transfer jobs with a single command
using Diplomat MFT Scripting Agent