jdc1944
asked on
SSIS SFTP Security Best Practices
We are implementing a new system that will be interfaced with several of our other internal systems. These interfaces are being built in house using SSIS. As this new system is hosted by a third party, the outputted files from the SSIS job are then SFTP’d to the third party for input.
My concern is around the security of this SFTP process, but FTP is something I’m not particularly hot on at the moment. From the research I have done so far, SFTP is not natively supported by SSIS?
The information I have found from our in-house guys is that the interface file is outputted to one of our network shares, where an SSIS job then SFTP’s it to the third party. This is fully automated I am told, which I presume means the SFTP username and password are then stored in the SSIS job so that a user doesn’t have to enter the details each time (every night).
What security best practices should we be implementing here, especially around this account name and password being stored in the SSIS Job, is it a concern and how can we control it etc.?
My concern is around the security of this SFTP process, but FTP is something I’m not particularly hot on at the moment. From the research I have done so far, SFTP is not natively supported by SSIS?
The information I have found from our in-house guys is that the interface file is outputted to one of our network shares, where an SSIS job then SFTP’s it to the third party. This is fully automated I am told, which I presume means the SFTP username and password are then stored in the SSIS job so that a user doesn’t have to enter the details each time (every night).
What security best practices should we be implementing here, especially around this account name and password being stored in the SSIS Job, is it a concern and how can we control it etc.?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
To clarify indeed SFTP already has the data encrypted and also using PGP keys hence data in transit are protected. The keys can be use to encrypt data at rest. Pardon for the ambiguity
ASKER
Many thanks for your input
ASKER