SSH Solutions Quick Reference Guide MultiNet and TCPware TCP/IP Stacks and SSH for OpenVMS

Overview Key Features Function Benefits Replaces Telnet and R SSH provides secure encrypted SSH provides remote system Services communication over unsecured access securely. It eliminates networks such as the Internet. It potential security breaches, such replaces Telnet, rsh, rlogin, and rcp as spoofing and eavesdropping or sessions as specified by the user. hijacking of sessions. Support for protocol The Process Software SSH products An administrator has the version 1 and 2 support protocol v1 and v2 on both the flexibility to decide which client and . SSH v2 is protocol to use. secure then SSH v1 and is an IETF standard. Secure SFTP provides a secure mechanism SFTP provides secure (SFTP) Server for transferring, deleting, or copying with an FTP-like interface. and Client files over the network using SSH file transfer protocol v4. Secure Protocol - SCP provides a mechanism for Files can be transferred over a SCP transferring, deleting, copying or secure network. moving files securely. Authentication Authentication is used to verify the Authentication protects users identity of a user logging into a against the possibility of a hacker system. RSA and DSA methods are forging their identity. used for authentication. The more secure Diffie-Helmann algorithm is used for the key exchange in SSH v2. Encryption Encryption is used to encode Encrypted data prevents a hostile passwords and data. The options user from being able to read the include DES, 3DES, ARCFOUR, data as it is traversing the network. Blowfish, IDEA, Twofish, CAST-128, and AES. Single Sign-On Process Software’s SSH solutions Single sign-on simplifies allow organizations to work with their management of an organizations existing PKI certificates and Kerberos security infrastructure. V5 infrastructure. Port Forwarding Third-party applications can be A user can select which (Application Tunneling) secured, such as, POP, SMTP, application to encrypt based on STREAM, database connections, and corporate security policy. Not all more. applications are encrypted avoiding unnecessary network overhead.

Process Software l tel 800-722-7770; 508-879-6994 l fax 508-879-0042 l www.process.com Overview Key Features Function Benefits X-11 Forwarding X-11 applications can be sent across a This feature protects X-11 network securely. Windows sessions. Government Compliance The Process Software SSH2 server Government agencies can share and client are compiled from unaltered information and collaborate cryptographic source, which is FIPS securely while complying with 140-2 Level 2 compliant. stringent security mandates

Interoperability Key Features Function Benefits Third-Party Client and The Process Software SSH server and This provides the user with Server Interoperability client work with most third-party flexibility. Any SSH-compliant clients and servers on the market today software will operate with the on UNIX, Windows, Linux, Process Software SSH server and OpenVMS, and Macintosh platforms. client. HP backward version Runs on OpenVMS Alpha v6.2 or Administrators do not have to go compatibility higher, OpenVMS VAX v5.5-2 or to the expense and to upgrade higher, and OpenVMS I64 v8.2 or to the latest OpenVMS OS or higher. TCP/IP Services stack to use the Process Software SSH products. ASCII and BINARY File There is improved interoperability This feature provides seamless file Transfer Support when converting files from local transfer interoperability between storage to a destination system (via heterogeneous operating systems. SFTP or SCP), which uses different file formats. Files Transfers Between Process Software preserves the This gives users the flexibility to OpenVMS systems OpenVMS file attributes for file perform binary data transfer or transfers between OpenVMS systems. stream-line files.

Management Tools Key Features Function Benefits Extensive Error An error string is reported to users More detailed error messages Reporting from the underlining file system assist in troubleshooting problems. during SFTP transactions. Public Key Assistant & This is a tool for setting up public key Provides remote management Server authentication on a remote system. capabilities. The Assistant (user program) uploads the key to the server and the server performs the necessary updates to files so that the key can be used.

Process Software l tel 800-722-7770; 508-879-6994 l fax 508-879-0042 l www.process.com Management Tools Key Features Function Benefits Certificate Management Process Software provides the The CERTENROLL and CERTENROLL utility to register CERTVIEW utilities make it certificiates; and the CERTVIEW easier to deploy and manage utility for viewing and validating certificates. certificate details and displaying the configuration information, which can be used to build the certificate mapping file. Configuration Options The SSH client and server have Robust configuration options extensive configuration options make it easier to comply with an available,SSH such as client-side organization’s security policy. server-side "SessionRestricted" keyword which helps restrict users to perform only specific types of operations

Process Software l tel 800-722-7770; 508-879-6994 l fax 508-879-0042 l www.process.com