SilverShield V7 Windows SFTP Server - What is new

FortressSecure has released a new version of the award winning SilverShield SFTP server

If you are a current user of SilverShield version 6 or the personal/free version, this page is to help you to decide why you need to upgrade.

Upgrade to version 7 to comply with the latest NIST standards

To view the NIST Special Publication 800-131A Revision 2 regarding Transitioning the Use of Cryptographic Algorithms and Key Lengths Click Here

Version 6

 

Version 6 came in 4 different license options.

  • The Pro and enterprise Pro has reduced features and does not  include things such as scripting and active directory integration.
  • ProXL and Enterprise XL had the full feature set.

Version 7

Version 7 comes complete with all the features in a single commercial version with options for the number of servers.

Single server, 5 server pack and 10 server pack.

There is also a 100 pack license option for MSPs and larger enterprises. The support and maintenance on the 100 license version does not include replacement licenses.

In version 6 the console could be run as  a regular user. This created a potential security issue with the possibility of an attacker  adding a new user and gaining access to files. To block this threat requires users to remember to run the console as administrator.

The installer now grants access to the “ProgramData” directory only to the LocalSystem account and to the Administrators group.
The Windows Start menu link runs the Management Console now forces the program to run “as Administrator”
This secures the ProgramData folder and stops a Local Privilege Escalation to SYSTEM

The personal version of SilverShield is designed for users to try the product and does NOT include the latest ciphers and MACs and is in fact a single user version 6

There is no personal / free release of version 7 at this time

Additional security features in Version 7

New MAC algorithms

HMAC_SHA2_256
HMAC_SHA2_512
AES_128_GCM
AES_256_GCM
POLY1305

New ENCRYPTION algorithms

AES_128_GCM
AES_256_GCM
AES_128_GCM (OpenSSH version)
AES_256_GCM (OpenSSH version)
CHACHA20
CHACHA20 (OpenSSH version)

New KEY EXCHANGE algorithms

RSA1024_SHA1
RSA2048_SHA256
ECDH_NIST_P256
ECDH_NIST_P384
ECDH_NIST_P521
ECDH_NIST_K163
ECDH_NIST_P192
ECDH_NIST_P224
ECDH_NIST_K233
ECDH_NIST_B233
ECDH_NIST_K283
ECDH_NIST_K409
ECDH_NIST_B409
ECDH_NIST_K571
ECDH_CURVE25519

Click here to check your current license details