What is the most secure file transfer protocol to transfer files?

SFTP, FTPS and HTTPS are relatively equal in security, but SFTP is the most secure. SFTP is the most secure because the connection is encrypted from the beginning. FTPS uses too many ports for file transfer and HTTPS was not built for file transfer. See why SFTP, FTPS and HTTPS are more secure »

Is managed file transfer (MFT) more secure than FTP?

Managed file transfer (MFT) solutions enable greater visibility to manage and monitor file transfers. If a company uses on-premises FTP servers, its IT department cannot easily see which files were delivered or resolve issues. Additionally, MFT provides encryption, authentication and access control and retention policy options. Finally, in a cloud-native MFT solution, the vendor manages everything for you, including cloud security, network security and application security.

Top
Protocols
Encryption Methods
SFTP & MFT
Monitoring
Compliance
Cloud & Apps
Solution
FAQs
Resources

What Is Secure File Transfer?

Secure file transfer is a way to protect data during transit using encryption, authentication, access controls and auditing when sharing files within or across networks. These features help businesses achieve compliance to industry standards and governance policies.

Download Security White Paper

image of secure file transfer solution with identity management, data centers, data security and data management governance

Share Files Using Secure File Transfer Protocols

Businesses share sensitive files using common protocols such as SFTP, FTPS and HTTPS. Therefore, a secure file transfer solution needs to be protocol-agnostic, meaning it can exchange a variety of files, internally or externally, regardless of protocol, file type or file size.

Secure File Transfer Protocol (SFTP)

SFTP is a network protocol that uses and relies on a secure channel such as SSH to provide secure file transfer capabilities. SFTP is one of the most used protocols for file transfers. Since Thru can act as a client or server, SFTP clients or servers can continue to be used as needed.

See how SFTP file transfers work in Thru »

Hypertext Transfer Protocol over SSL (HTTPS)

HTTPS uses the Transport Layer Security (TLS) protocol to encrypt files. Recipients can download files directly from a web browser. HTTPS file transfers are handled by our Thru Node, which is a lightweight managed file transfer (MFT) agent.

See how the node handles HTTPS file transfers »

File Transfer Protocol over SSL/TLS 1.2/1.3 (FTPS)

Like HTTPS, FTPS uses the TLS protocol to encrypt files. FTPS has two modes: one explicit and one implicit. Administrators choose between the modes based on their file security requirements and partners’ requirements.

Learn more about FTPS file transfers in Thru »

Top Methods of Encrypting File Transfers

The best way to protect files is complete end-to-end encryption (E2EE): Files are encrypted at the file level in addition to using encrypted protocols during transit and storage encryption at rest.

File Payload Encryption

How are file payloads secured?

Encrypt files all the way to its destination using the OpenPGP standard, based on Pretty Good Privacy (PGP) software. Thru’s MFT solution supports customer creation, import and management of keys and tokens.

Data Encryption in Transit

How is data in transit secured?

Encrypted protocols provide an additional level of defense when sharing files. Secure files in transit using a secure protocol such as SFTP, FTPS and HTTPS.

Secure File Transfer Protocols page »

Data Encryption at Rest

How is data at rest secured in the cloud?

All files stored in Thru cloud platform are encrypted by AES 256-bit FIPS-compliant encryption with redundant and transparent policy and cryptographic key management.

How to keep files secure at rest »

Learn More about Encryption

protect data in file transfers by encryption is illustrated by key and lock

How SFTP and MFT Work Together to Deliver Files

screenshot of generating SSH key within file transfer solution portal

SFTP Secures Files

SFTP has become synonymous with secure file transfer. SFTP servers are ubiquitously used by organizations to exchange files with partners. Relying just on SFTP alone may be adequate for some types of file transfers, but sensitive, business-critical file transactions require additional enterprise-grade protection, control and visibility.

What Is SFTP? »

MFT Adds Control to SFTP Transfers

An MFT solution enhances secure file sharing by providing this required functionality. MFT is a file transfer system that utilizes multiple protocols including SFTP and is able to act as a client or server to enable push or pull connectivity between the MFT system and its endpoints. Readily available capabilities of MFT include comprehensive end-to-end security; tracking, logging and retention settings; and high availability.

What Is MFT? »

Monitoring, Alerts, Audit & Logging

Monitor the “who, what, where and when” of file transfers: Thru records granular details of all file transfer activity, user actions, metadata and any changes to records in the system.

Alerts are generated when issues are encountered. Users or administrators can elect to receive alerts and notifications.

An administrator can easily produce an audit trail for all files that pass through our secure file transfer solution. Current and historical alerts and logs can be viewed in dashboards, manually downloaded or consumed over APIs.

Best tool for comprehensive activity monitoring »

illustration showing screen being monitored

Compliance and Standards

illustration showing floating screens of security methods such as monitoring, role based access, PGP keys and retention to keep file transfers compliant

As sharing data electronically continues to grow so does the number of regulations requiring stricter data security and privacy protection. Our MFT solution provides a proven means for businesses to achieve their goals of remaining compliant and strengthening data security. Corporate governance policies and industry security standards place additional requirements on data sharing and file transfers that our MFT service is designed to meet. Thru has several features to help achieve compliance, including

Encryption in transit and at rest
Role-based access controls
Multi-level retention policies
Audit and logging

Compliance »

Cloud & Application Security

To mitigate security breaches and protect file transfers from potential threats such as hackers and distributed denial-of-service (DDoS) attacks, a zero trust approach across multiple levels of security is in place, including

Antimalware
Antivirus scanning
Authentication
Access controls

Cloud & Application Security »

illustration showing cloud being monitored for protection and that the cloud is secured

How To Find Best File Sharing Solution

To find the best solution to securely transfer files, look for a comprehensive MFT solution with core functionality that includes

End-to-end encryption to protect sensitive information.
Advanced authentication to validate identities of users and connections—human, API, application and system.
Role-based access controls (RBAC) to prevent unauthorized users from modifying endpoints or workflows.
Multiple endpoints to programmatically transfer files.

Read about our Cybersecurity and Data Privacy Performance evaluation by a third party, CyberVadis »

Read about our cybersecurity rating by a third party, SecurityScorecard »

FAQs about Secure File Transfer

What is secure file transfer?

Secure file transfer is a file sharing solution that uses secure protocols to protect data during transit and at rest. Additional data protection measures provided by managed file transfer tools include end-to-end encryption, advanced authentication and role-based access controls.

How can I keep my file transfers compliant?

Using just secure file transfer protocols to exchange files is not sufficient to achieve compliancy requirements. The right managed file transfer tool has additional features to help businesses remain compliant with corporate governance policies and industry security standards, including

Encryption in transit and at rest
Role-based access controls
Multi-level retention policies
Audit and logging

Learn more about keeping file transfers compliant »

What are the best practices to securely share files?

To protect your business-critical data, ensure your secure file transfer solution includes functionality that supports the best practices laid out in this blog. Learn the best practices and how your organization can implement them »

What is the difference between FTP and MFT for secure file transfers?

Managed file transfer solutions provide one place to manage and monitor secure file transfers. If an IT team uses on-premises FTP servers, they cannot easily see which files were delivered or resolve issues. Read more about the differences between MFT and FTP »

What are alternatives to FTP?

File transfer protocol (FTP) is an unencrypted protocol. Files that are sent outside companies’ firewalls can be read if they’re sent with FTP. To avoid security issues, companies must choose an encrypted alternative »

Is SFTP better than FTPS for secure file transfers?

Both SFTP and FTPS are secure file transfer protocols, but they have some differences that usually make one a preferred choice over the other. Read more about the differences between SFTP and FTPS »

What is a secure file transfer gateway?

A secure file transfer gateway is used by on-premises file transfer systems for external file transfer. It sits outside of the enterprise local area network (LAN) in the demilitarized zone (DMZ). See more about what it is and its disadvantages »

What is the best way to send files securely?

Send and share encrypted files and attachments from existing business applications and devices with Thru. See how to securely send files »

Secure File Transfer Resources

Secure File Transfers with Thru

Download our white paper for more information on how we ensure secure file transfers with combined cloud, application and data security.

Secure File Transfers of Financial Data

Plus500 customers frequently upload sensitive financial information to its servers. After switching to Thru, Plus500 achieves security and compliance requirements to secure sensitive information »

Replace FTP Servers with Secure File Sharing Solution

Using an FTP server for file sharing lacked the necessary control and efficiency needed for a global research and manufacturing company. Now, Berghof Group has detailed insights of file access and sharing »

Cookie	Duration	Description
__cfruid	session	Cloudflare sets this cookie to identify trusted web traffic.
ASP.NET_SessionId	session	Issued by Microsoft's ASP.NET Application, this cookie stores session data during a user's website visit.
cookielawinfo-checkbox-advertisement	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Advertisement" category .
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
CookieLawInfoConsent	1 year	Records the default button state of the corresponding category & the status of CCPA. It works only in coordination with the primary cookie.
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Cookie	Duration	Description
__cf_bm	30 minutes	This cookie, set by Cloudflare, is used to support Cloudflare Bot Management.
bcookie	1 year	LinkedIn sets this cookie from LinkedIn share buttons and ad tags to recognize browser ID.
bscookie	1 year	LinkedIn sets this cookie to store performed actions on the website.
lang	session	LinkedIn sets this cookie to remember a user's language setting.
lidc	1 day	LinkedIn sets the lidc cookie to facilitate data center selection.
UserMatchHistory	1 month	LinkedIn sets this cookie for LinkedIn Ads ID syncing.

Cookie	Duration	Description
_uetsid	1 day	Bing Ads sets this cookie to engage with a user that has previously visited the website.
_uetvid	1 year 24 days	Bing Ads sets this cookie to engage with a user that has previously visited the website.
SRM_B	1 year 24 days	Used by Microsoft Advertising as a unique ID for visitors.

Cookie	Duration	Description
_ga	2 years	The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors.
_ga_V6RF3B9LE4	2 years	This cookie is installed by Google Analytics.
_gat_UA-1502461-4	1 minute	A variation of the _gat cookie set by Google Analytics and Google Tag Manager to allow website owners to track visitor behaviour and measure site performance. The pattern element in the name contains the unique identity number of the account or website it relates to.
_gcl_au	3 months	Provided by Google Tag Manager to experiment advertisement efficiency of websites using their services.
_gid	1 day	Installed by Google Analytics, _gid cookie stores information on how visitors use a website, while also creating an analytics report of the website's performance. Some of the data that are collected include the number of visitors, their source, and the pages they visit anonymously.
_session_id	14 days	Cookie set by G2 to store the visitor’s navigation by recording the landing pages. This allows the website to present products and indicate the efficiency of the website.
pardot	past	The pardot cookie is set while the visitor is logged in as a Pardot user. The cookie indicates an active session and is not used for tracking.
undefined	never	Wistia sets this cookie to collect data on visitor interaction with the website's video-content, to make the website's video-content more relevant for the visitor.

Cookie	Duration	Description
ANONCHK	10 minutes	The ANONCHK cookie, set by Bing, is used to store a user's session ID and also verify the clicks from ads on the Bing search engine. The cookie helps in reporting and personalization as well.
IDE	1 year 24 days	Google DoubleClick IDE cookies are used to store information about how the user uses the website to present them with relevant ads and according to the user profile.
MUID	1 year 24 days	Bing sets this cookie to recognize unique web browsers visiting Microsoft sites. This cookie is used for advertising, site analytics, and other operations.
test_cookie	15 minutes	The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies.

Cookie	Duration	Description
_clck	1 year	No description
_clsk	1 day	No description
AnalyticsSyncHistory	1 month	No description
BIGipServerpool_c8home	session	No description
CLID	1 year	No description
li_gc	5 months 27 days	No description
loglevel	never	No description available.
lpv32732	30 minutes	No description
raygun4js-userid	never	Description unavailable.
SM	session	No description available.
visitor_id32732	10 years	No description
visitor_id32732-hash	10 years	No description