Dan Kusnetzky of ZDNet recently wrote an article featuring Data Expedition, and its “Multipurpose Transaction Protocol” (MTP/IP). If you are looking to find out more about data acceleration and fast file transfer, this is definitely worth a read…

Data Expedition accelerating “big data” By Dan Kusnetzky

Nathan Ouellette, an author at SC Magazine produced a great review of Biscom’s secure file transfer software, Biscom Delivery Server 4. Installed using a VMware image, the reviewer rated the product based upon 6 key elements including Features, Ease of Use, Performance, Documentation, Support and Value for Money. Emerging with an overall rating of 5 stars – it was clear that BDS was found to be easy to deploy, easy to use, and it gets the job done when it comes to transferring sensitive data securely and simply. The numerous advantages such as multi-platform (Windows and Linux supported, and VM), Outlook plug-in, checkpoint restart, no file size limits, strongest back end encryption (AES 256-bit), extremely granular tracking and reporting, Web services SDK, and it’s simple, intuitive web interface means Biscom Delivery Server is one of the most comprehensive ad hoc file transfer solutions in the marketplace.

You can read the full SC Magazine Biscom Delivery Server review here or, for more information regarding the product please visit the Biscom Delivery Server product page on our website or contact Pro2col on 0333 123 1240.

We’re interested to find out what’s the most common way that you send and receive large files. If you’ve got a spare minute and fancy taking part in our mini poll on LinkedIn – here’s the link to follow:

http://polls.linkedin.com/p/111142/zgtbx

We’ll look forward to hearing from you!

The PCI Security Standards Council have just released version 2.0 of PCI-DSS, the Data Security Standard enforced upon all merchants that accept any form of card payments, designed to secure and protect cardholder details.  Although introducing only minor alterations, the main intention of the amendment is to provide greater clarity and flexibility for small merchants, facilitating a more comprehensive understanding of the requirements that must be satisfied under PCI DSS and making them easier to implement and abide by.

From a long term perspective, the amendments made are designed to help merchants manage evolving risks and data security threats whilst maintaining alignment with industry best practices.  Taking a higher level perspective, the main changes cover:

• Reinforcement of the need to conduct thorough scoping exercises, so that merchants can identify exactly where their cardholder data resides in the business.
• The need for more effective log management of credit card data within the business.
• Allowance for organisations to adopt a more risk based approach when prioritising vulnerabilities, taking into account their specific circumstances.
• The acceptance of unique business environments and accommodation of their specific needs.

More specifically Jonathan Lampe, VP of Product Management at Ipswitch File Transfer and representative of the PCI Security Council has identified the 5 key changes that will directly effect the transfer of sensitive credit card data:

• Explicit recognition of SFTP  as a secure protocol.
• Audit of virtual machine infrastructure and virtualisation hypervisors will be brought within the scope of PCI DSS.
• Rotation requirements for the purposes of key management will be “based on industry best practices and guidelines” rather than an annual stipulation.
• Identity and authentication requirements for users, “non-consumers” and administrators will be split further.
• More specific requirements will be implemented around the auditability and security of timekeeping, especially as recorded in audit logs.  (Coordinated and reliable timestamps are helpful during civil and criminal investigations as well as internal forensics investigations.)

A further step taken by the PCI council to help small merchants achieve the latest 2.0 PCI-DSS changes is the introduction of a small microsite.  The implementation life-cycle the of PCI Council’s standards will be extended from the current 2 years to 3 years to give merchants plenty of time to make the necessary changes.  The new 2.0 standard will be effective from 1st January 2011, however validation against the previous 1.2.1 standard will be allowed until 31st December 2011.

For more information regarding PCI DSS compliance and how this can be achieve in terms of secure file transfer, please don’t hesitate to contact the team at Pro2col on 0333 123 1240.

Well, it’s been a while, but in that time we’re pleased to say we’ve managed to launch the ‘new look’ Hermstedt StingRay website (take a peek here) and released the latest StingRay firmware version – 2.6.

We’ve packed StingRay 2.6 full of new features and functionality – designed to make the large file transfer process as quick and simple as possible.  Here’s a rundown of the key features built into StingRay 2.6:

Quicksend – An entirely new file sending option, available when sending files via the StingRay Client Application (Mac version 2.0.2).  Aptly named Quicksend, this feature allows internal users to send files/folders quickly and simply in a few short steps.  Just create a new job, add an email address, attach the desired files/folders and press send.  It really is that simple.

Direct Web Browser Upload – External users can now upload files directly into StingRay’s incoming queue via the external web browser interface.  Significant in terms of automation potential, this new feature is ideal for directing incoming files into internal production workflows, freeing staff from manual downloads and allowing them to focus their attention on more productive, revenue generating tasks.

HTTPS – All of StingRay’s file sending options that rely upon HTTP as the fundamental delivery protocol (Email Hyperlink and Web Browser Upload/Download) can now be secured in transit by HTTPS.  The leading security protocol used on the internet today, SSL provides superior levels of security and is the standard implementation when purchasing items online.  Self-assigned SSL certificates can be created within the internal web browser interface or alternatively, if you have an existing SSL certificate, this can be uploaded to the StingRay.

If that wasn’t enough, a number of tweaks and improvements have been made to the existing features provided by Hermstedt StingRay.  These include:

- Personalised Customer Logins (External Web Browser Upload)
- Progress Bar during file upload (External Web Browser Upload)
- Successful Upload Notification (External Web Browser Upload)
- Email Hyperlink Auto-delete functionality
- Hyperlink Signature Customisation potential

If you want more information, you can download a comprehensive guide that outlines the new features in 2.6 in greater detail.

This is the best bit – the StingRay 2.6 upgrade is FREE for all StingRay 2.5 users that hold and valid Silver or Gold maintenance contract.  Just send an email to customerservice (at) pro2col.com and we will get the upgrade process rolling for you.

Unsupported StingRay users and those holding a Bronze maintenance contract will still be able to upgrade if they’d like, all you’ll need to do is contact the Pro2col sales department on 0333 123 1240 for pricing.

Recently we seem to be getting quite a few enquiries from companies experiencing difficulties with high latency during the file transfer process.  It appears to be a wide spread issue, affecting businesses in a climate where everybody needs to get ahead of the game.  Companies want – no need – their files right here, right now!!!

For those of us unfamiliar with the term, latency is an expression for the period of time taken to send a data packet from a source to the intended destination.  The higher the latency, the slower the data transmission.  This incorporates all elements involved in the file sending process – including encoding, transmission, and decoding.

There are certain delivery protocols (such as FTP) that are particularly susceptible to latency.  This is because when sending packets of data to a remote site, the sending site waits for an acknowledgment that the packet has been received before sending the next one.  This makes the problem extremely time consuming in the event of high latency.  In extreme cases of latency, the time that it takes for the delivery of data and then the reply, can result in the data throughput levels dropping to a significantly low level, rendering the solution useless.

So, what can we do about it?  There are several ways to combat this problem – one being to utilise a multi-threaded TCP protocol – working in the same manner as above ONLY multiple packet transfer requests are made at any one time, increasing the throughput.  Another increasingly popular route is to adopt a UDP based delivery protocol, which applies a send and forget mentality i.e. they don’t wait for the acknowledgment receipt.  This can significantly speed up the delivery process BUT then you have to consider the fact that other features are required, and UDP out of the box won’t work for everyone.

How can you measure the latency on your connection?  Network tools like ping tests and traceroute measure latency by determining the time it takes a given network packet to travel from source to destination and back, the so-called round-trip time. Round-trip time is not the only way to specify latency, but it is the most common.

To test the latency on your Internet connection between 100’s of test servers you can use a tool like Speedtest.net, where you can test your bandwidth and latency against a local (London) server and say one in Bangkok.

On DSL or cable Internet connections, latencies of less than 100 milliseconds (ms) are typical and less than 25 ms desired. Satellite Internet connections, on the other hand, average 500 ms or higher latency.

So if you suffer from latency problems when it comes to file transfer, please feel free to contact Pro2col to discuss.  Alternatively, you could have a look at the fast file transfer section on our website that details some solutions that may help.