Changes for page SFTP Security

Summary

• Page properties (3 modified, 0 added, 0 removed)

Details

Page properties

Author

...	...	@@ -1,1 +1,1 @@
1		-XWiki.eMagiz
	1	+XWiki.dfirdausy

Default language

...	...	@@ -1,0 +1,1 @@
	1	+en

Content

...	...	@@ -4,9 +4,6 @@
4	4
5	5	Should you have any questions, please get in touch with [[academy@emagiz.com>>mailto:academy@emagiz.com]].
6	6
7		-* Last update: August 25th, 2021
8		-* Required reading time: 9 minutes
9		-
10	10	== 1. Prerequisites ==
11	11
12	12	* Basic knowledge of the eMagiz platform
...	...	@@ -16,7 +16,7 @@
16	16
17	17	This microlearning is about SFTP security.
18	18
19		-By SFTP security, we mean: Making sure that the SFTP we connect to knows that we are indeed eMagiz
	16	+By SFTP security, we mean: Making sure that the SFTP we connect knows that we are indeed eMagiz
20	20
21	21	* Private key is unique per client
22	22	* Private key should only be known to the client
...	...	@@ -23,8 +23,6 @@
23	23	* Public key should be known to the SFTP (server), so they trust us when we set up the communication
24	24	* A private key comes with a passphrase
25	25
26		-
27		-
28	28	== 3. SFTP Security ==
29	29
30	30	In the last microlearning, we discussed how to connect to an SFTP from eMagiz. In this microlearning, we want to expand our knowledge and look at a more complex security configuration when connecting to SFTP instances. The configuration we are talking about is the private key configuration.
...	...	@@ -34,9 +34,9 @@
34	34	* Public key should be known to the SFTP (server), so they trust us when we set up the communication
35	35	* A private key comes with a passphrase
36	36
37		-If you are looking for some introductory reading into certificates, please check this [microlearning](novice-securing-your-data-traffic-what-are-certificates.md).
	32	+If you are looking for some introductory reading into certificates, please check this [[microlearning>>doc:Main.eMagiz Academy.Microlearnings.Novice.Securing Data Traffic.novice-securing-your-data-traffic-what-are-certificates.WebHome||target="blank"]].
38	38
39		-As the private key is yours, you can ask a trusted party to generate the key, or you could create it yourself. The latter part happens a lot when connecting to an SFTP. You could use a tool like PuttyGen to achieve this. As a result, you will have a keypair. The private key should be kept safely with you in eMagiz, and you need to share the public key with the SFTP server party. In this microlearning, I will not explain how PuttyGen works in detail. Instead, we will focus on the part in eMagiz. In eMagiz, we need to refer to the key file (linked under Resources), and we need to refer to the password we use to save our key file securely.
	34	+As the private key is yours, you can ask a trusted party to generate the key, or you could create it yourself. The latter part happens a lot when connecting to an SFTP. You could use a tool like PuttyGen to achieve this. As a result, you will have a keypair. The private key should be kept safely with you in eMagiz, and you need to share the public key with the SFTP server party. In this microlearning, we will not explore on how PuttyGen works in detail. Instead, we will focus on the part in eMagiz. In eMagiz, we need to refer to the key file (linked under Resources), and we need to refer to the password we use to save our key file securely.
40	40
41	41	[[image:Main.Images.Microlearning.WebHome@intermediate-file-based-connectivity-sftp-security--private-key-config.png]]
42	42
...	...	@@ -46,32 +46,22 @@
46	46
47	47	Using this setting gives the server the option to verify if the communication request came from eMagiz (or at least from the party that holds the private key of eMagiz). This is an additional security measure to ensure data integrity and quality.
48	48
	44	+== 4. Key takeaways ==
49	49
50		-
51		-== 4. Assignment ==
52		-
53		-Check within your project(s) whether an SFTP connection is secured with the help of private key construction.
54		-This assignment can be completed with the help of the (Academy) project that you have created/used in the previous assignment.
55		-
56		-== 5. Key takeaways ==
57		-
58	58	* Private key is unique per client
59	59	* Private key should only be known to the client
60	60	* Public key should be known to the SFTP (server), so they trust us when we set up the communication
61	61	* A private key comes with a passphrase
62	62
	51	+== 5. Suggested Additional Readings ==
63	63
64		-
65		-== 6. Suggested Additional Readings ==
66		-
67	67	If you are interested in this topic and want more information, please read the release notes provided by eMagiz. Furthermore, check out these links:
68	68
69		-* https://docs.spring.io/spring-integration/docs/2.2.6.RELEASE/reference/html/sftp.html#sftp-outbound
70		-* https://docs.spring.io/spring-integration/docs/2.2.6.RELEASE/reference/html/sftp.html#sftp-session-factory
71		-* https://www.2brightsparks.com/resources/articles/sftp-authentication.html
	55	+* [[Novice (Menu)>>doc:Main.eMagiz Academy.Microlearnings.Novice.WebHome||target="blank"]]
	56	+** [[Securing Data Traffic (Navigation)>>doc:Main.eMagiz Academy.Microlearnings.Novice.Securing Data Traffic.WebHome||target="blank"]]
	57	+*** [[What are certificates (Explanation)>>doc:Main.eMagiz Academy.Microlearnings.Novice.Securing Data Traffic.novice-securing-your-data-traffic-what-are-certificates.WebHome||target="blank"]]
	58	+* [[SFTP Authentication (External)>>https://www.2brightsparks.com/resources/articles/sftp-authentication.html||target="blank"]]
	59	+* [[SFTP Outbound (External)>>https://docs.spring.io/spring-integration/docs/2.2.6.RELEASE/reference/html/sftp.html#sftp-outbound||target="blank"]]
	60	+* [[SFTP Session Factory (External)>>https://docs.spring.io/spring-integration/docs/2.2.6.RELEASE/reference/html/sftp.html#sftp-session-factory||target="blank"]]
72	72
73		-== 7. Silent demonstration video ==
74		-
75		-As this is a more theoretical microlearning, there is no video.
76		-
77	77	)))((({{toc/}}))){{/container}}{{/container}}