IT Security News & Blog

WS_FTP Server and MOVEit Transfer - What Are the Differences?

Posted: 22 January 2019

Chances are you have probably heard of or used, either WS_FTP Server or MOVEit Transfer. What you might not have known is that they are solutions from the same vendor, Ipswitch.

Both solutions provide access to permission defined folders using protocols such as HTTPS, FTP and SFTP. Both have audit trails and the ability to send one-time links, for guest users to be able to download particular files.

With so much overlap, you are probably wondering what is the difference?

You are not alone, it is a common question that we field on an almost daily basis.

On the face of it, MOVEit is a much larger solution and commonly falls within the definition of a managed file transfer solution, which its price tag reflects. But there is much more to it than that.

In this blog, we take a look at five key capabilities which MOVEIt has, over and above that which WS_FTP server can provide.

 

1. File Encryption and Security

When we have customers choosing between WS_FTP Server and MOVEit Transfer, we normally ask them if the data they intend to transfer using the solution is sensitive in any way.

The reason we ask this is that MOVEit Transfer is packed full of file-level security features for protecting files at both rest and transfer.

At rest, MOVEit Transfer uses FIPS140-2 validated AES 265-bit cryptography to encrypt stored files. It encrypts each file with a completely different key, limiting the exposure of one key being compromised. Files and folders are stored using an identification number and never using their real file names, types or other attributes.

On Top of this, MOVEit hashes files before and after the transfer process to ensure they have not been tampered with, whilst being transferred.

 

2. Tamper-Evident Audit Logging

While it is true that both WS_FTP Server and MOVEit Transfer have audit logging capabilities. MOVEit Transfer really takes the concept of a log much further.

Each log is stored in the database and its record hashed and sequence numbered. Every night, a nightly task is run to verify the hashes and check the sequence to ensure there has been no modification, addition or removal or log items.

MOVEit Transfer also provides a robust filter for searching through logs for particular actions, user accounts or times.

Information security is becoming ever more important for organisations who have to work within the confines of the GDPR. How can you achieve high levels of information security using MFT? Read here to find out more.

 

3. Increased Authentication Options & MFA

WS_FTP Server supports local accounts and LDAP integration, with the highest edition of license. MOVEit Transfer builds on this by including a number of additions:

  • SAMLv2 - Federated Identities.
  • RADIUS.
  • ODBC.

...as well as local accounts and LDAP integration.

In the past, some of our more advanced customers would add multi-factor authentication capabilities through RADIUS, however since early 2018, MOVEit Transfer has included MFA for free.

Using either a smartphone app or email, users can receive MFA token values which further validate their identities when logging into MOVEit Transfer

 

4. Complex Architecture Requirements & Cloud

Outside of standard high-availability setups, MOVEit Transfer can be configured to work in a number of different ways. Whether that be with a Gateway server in the DMZ, separate file store, separate database and/or multiple MOVEit Transfer servers in a web farm.

MOVEIt Transfer has also been ported to Microsoft Azure, where it currently can be deployed from the Azure Marketplace with the click of a provisioning button...

...and Ipswitch even offers a fully managed cloud option at a subscription rate.

The flexible deployment options mean that MOVEit Transfer is ideal for complex environments or those with particular requirements.

Not all automated transfers require scripting. Take a look at our blog on how to create automated file transfer workflows with no code.

 

5. Integration with Anti-Virus/DLP & Automated Clean-Up

For welcoming reasons, security is no longer a department which seeks to slow down the operational capacity of an organisation. It is now embraced as having critical function.

This slow shift in thinking has meant that we are often asked about the integration capabilities of MOVEit with anti-virus or data leakage prevention scanners. Both of which are supported by MOVEit Transfer using the ICAP protocol.

Files can be scanned on upload and/or download, and subsequently prevented from completing that action should it be found in violation of a scanner.

Finally, one of the most underrated features is automated clean-up.

For anyone who has managed a file transfer server before, you will know that one of the more difficult aspects is the build up of legacy files and accounts over time which eventually become unmanageable. MOVEit Transfer has expiration policies for both files and user accounts which can keep your system efficiently clean.

Are you looking for a file transfer solution; or wondering about the differences between WS_FTP Server and MOVEit Transfer? Why not speak to one of our solutions specialists today?

 

Managed Transfer Solution Buyers Guide

Topics: MOVEit, WS_FTP, File Transfer, Managed File Transfer

Chris Payne

Written by Chris Payne

Managing Director - Advanced Cyber Solutions