EnterpriseDT Security Blog

Our business is information security, and so we blog on a variety of topics in this area. We often comment on the security aspects of current affairs, as well as providing technical discussion on cryptography and related areas such as privacy. We are particularly interested in secure protocols such as SSL/TLS and SSH. Our flagship product is CompleteFTP, a Windows server supporting FTPS, SFTP, SCP and HTTPS, all of which are reliant on SSH and SSL/TLS.

10 02, 2016

What is blockchain technology?

Blockchain technology is starting to get attention in banking circles, as its tremendous potential for banking transactions becomes apparent. It was invented by Satoshi Nakamoto (a nom de plume – his or her identity is unknown!) as the key technology comprising the Bitcoin crypto-currency system, first detailed here.

What is a blockchain? Put simply, it is a distributed ledger of transactions. Multiple copies exist at various nodes on the network, and the blockchain is protected against tampering by cryptographic hashes.

What’s […]

4 02, 2016

The downside of anonymity and privacy

We’ve written numerous posts that emphasise the importance of being able to maintain our privacy on the Internet, particularly when it comes to government attempts to mandate “backdoors” into encryption products.

But in recent weeks we’ve seen one of the negative consequences of Internet anonymity. Hundreds of hoax bomb threats have made to schools around the world, including Australia, the United Kingdom and France. These threats have been hugely disruptive to schools, and require considerable […]

25 01, 2016

France says no to encryption backdoors

France has joined the Netherlands in rejecting mandatory encryption backdoors in software products. We recently examined the UK’s draft “snoopers charter” that includes this as a requirement.

The French digital affairs minister, Axelle Lemaire, has sensibly pointed out the harm that result from such a policy, and has rejected an amendment to a new law that would require encryption backdoors.

We’ve noted previously that former US intelligence officials have also pointed out some of the issues, and it seems […]

18 01, 2016

edtFTPj/PRO adds TLS 1.2

We’ve just released edtFTPj/PRO 5.0, adding support for TLS 1.2.

At the start of the new year, it’s interesting to look back over the release history of edtFTPj/PRO. Amazingly, it’s been over 12 years since 1.0 was released with basic support for FTPS! And it was based on the open source Java FTP client, edtFTPj/Free, which was released three years earlier in January, 2000!

So the edtFTPj product line has been around for 16 years! We […]

12 01, 2016

Windows 10 and disk encryption

Hard disk encryption prevents access to your confidential files if your PC or laptop is stolen.  Without disk encryption, retrieving your files from a stolen machine is trivial – your Windows password is of no value whatsoever in preventing data from being copied. Hard disk encryption renders this impossible – there is nothing that can be done to retrieve the data.

By default, both Windows 8.1 and Windows 10 support disk encryption – known as device encryption – […]

5 01, 2016

CompleteFTP’s year of 2015

CompleteFTP is a secure Windows server that supports a number of file transfer protocols such as FTP, FTPS, SFTP, SCP and HTTP/S. During the last eight years, its regular release cycle means it has been continuously enhanced.

Here’s some of the important changes made during 2015.

Security. A number of key security changes were made to CompleteFTP in recent months. Password hashing now uses PBKDF2 with SHA256, making it computationally infeasible to retrieve the salted passwords. Importantly, support for TLS […]