Discussion on Data Transfer Security of Raysync

In the era of big data, the production and dissemination of information are growing exponentially, and the transmission of enterprise files is facing the current situation of insecurity.

Error in file data: a large amount of data is not transmitted in time, resulting in data error, and manual error checking is too cumbersome.

Hard disk loss: large files are transmitted in the form of sending and receiving hard disks. Once the hard disk is lost, the consequences are unimaginable.

Information leakage: Too frequent FTP transmission leads to firewall attacks and information leakage.

Loss of files: massive files cannot be transmitted completely at one time, which is prone to file loss.

Information security event inventory:

Memcache DDoS Attack: on March 1, 2018, GitHub suffered a DDoS attack with a size of 1.35TB. in the following days, NETSCOUT Arbor reconfirmed a reflection amplification DDoS attack with a height of 1.7 Tbps caused by Memcache DDoS.

Data leakage incident: A company announced that the database of a hotel was invaded, and at most about 500 million guests' information was leaked. In the same period, a special user posted that the resume information of over 200 million users in China was leaked.

How to ensure the security of big data transmission. Let's take a look at how Raysync experts interpret it.

• Data security protection:

TLS algorithm encryption, AES-256 financial grade encryption strength, protect user data privacy.

Raysync protocol only needs to open one UDP port to complete communication, which is safer than opening a large number of firewall network ports. FTPS encryption technology adds SSL security function to the FTP protocol and data channel.

Encrypt certificate configuration, support configuration of confidential certificates, and make service access more secure.

• Security mechanisms:

Scan CVE vulnerability risk library regularly to solve risky code vulnerabilities.

In the development process, Valgrind/Purify is used to check the memory leakage. Adopt high-performance SSL VPN encryption to provide user access security services in various scenarios.

• Account security protection:

Adopt a double factor strong authentication system, support USBKey, terminal hardware ID binding, and other password forms for authentication.

The user's password saved in the data is encrypted based on the AES-256 encryption algorithm, and even the developer can't recover the source password from the saved ciphertext.

Raysync is a professional service provider of enterprise-level file transmission, and it is also the first enterprise in China to provide commercial high-performance file transmission products. Raysync provides customers with high-performance, stable, and safe data transmission services in IT, film and television, biological gene, manufacturing, and many other industries.