Reflection for Secure IT is a family of Secure Shell clients and servers for Windows and UNIX—all designed to protect data in motion. With Reflection for Secure IT encryption, authentication, and logging features, you can safely transfer files, manage remote servers, and access corporate applications over encrypted connections. These features can also help you comply with stringent data security regulations.
VERSION 7.0 HIGHLIGHTS
- Support for Windows Server 2008 (x86 and x86-64 platforms).
- Granular access control gives users and groups file transfer and shell access rights.
- Section 508 support in the Server Configuration utility improves usability for people with disabilities.
- GSSAPI/Kerberos-based user and host authentication simplifies user and host key administration.
- Full range of documentation formats—context-sensitive help, PDF, and HTML—provides quick answers to your configuration questions.
- Improved user interface makes it easy to configure server settings.
- Enhanced logging capabilities—including more customization options for diagnostic and event data collection—improve troubleshooting and server monitoring.
- Additional key exchange algorithms allow you to fine-tune security and connection startup performance.
- IP blocking feature temporarily blocks connections from any IP address that has exceeded a specified number of failed login attempts.
- Native 64-bit Windows support for x64 hardware allows you to take full advantage of the modern 64-bit processor.
Secure File Transfer
- SCP1 (for compatibility with OpenSSH servers)
- SCP
- SFTP
Security Protocols
- SSH2 (IETF SecSh Internet drafts and RFCs 4250–4254, 4256, 4462, 4344, 4345, and 4716)
Cryptographic Library Validation
- FIPS 140-2, Level 1 (certificate #766)
Algorithms
- Ciphers:
- AES (128, 192, and 256 bit)
- 3DES (3 56-bit key EDE)
- Blowfish (128 bit)
- CAST (128 bit)
- Arcfour (128 bit)
- MACs:
- Key exchange:
- RSA
- DSA
- Diffie-Hellman
- GSS-API key exchange
Authentication
- Password:
- Local
- Windows Domain authentication
- Keyboard interactive:
- Keyboard-interactive password
- SSH user keys:
- Support for RSA and DSA keys
- Support for key agent forwarding
- OpenSSH public key interoperability
X.509:
- Support for server-side X.509 certificates
- GSSAPI:
- Microsoft SSPI logon credentials
- Supports both user and host authentication using GSSAPI
Tunneling
- Local
- Remote
- FTP protocol
- RDP protocol
Auditing
- Notification of exceeded maximum password attempts
- Customizable and extensive Windows Event Viewer and text file logging
Administrative Tools
- Granular configurations (including file transfer and shell access capabilities) for users and groups (local and domain)
- Section 508 support in the Server Configuration utility
Operating Systems
- Microsoft Windows Vista®
- Microsoft Windows XP
- Microsoft Windows Server 2008
- Microsoft Windows Server 2003
- Microsoft Windows 2000 Server
System Requirements
- Any system that meets the minimum requirements for the Microsoft Windows operating system
- Disk space varies depending on the features installed
- Network interface card