BIT's EME Protocol Proxy is based on open standards and lightweight secure technology. Protocol Proxy makes it easy to build comprehensive, integrated, and secure managed file transfer applications. Protocol Proxy works with BIT's EME enterprise messaging engine to provide a centrally-managed system for monitoring and managing secure file transfer activity across multiple file transfer sites or applications. Key capabilities include:

• Communication Services
• Security Services
• Management Services
• Data Orchestration Services
• Reporting and Auditing Services

Protocol Proxy is a lightweight replacement to standard protocol services (FTP, SFTP, HTTP, HTTPS) that is deployable in the DMZ.

You can download Protocol Proxy in the EME zip file from the Download page. There is no charge, but registration is required.

Protocol Proxy eliminates the need to open "holes" in the firewall of the secure internal network while still servicing a wide variety of standard messaging protocols. NO connections are made from the DMZ to the secure internal network, thus keeping the internal network safe.

All messages stored in proxy are retrieved from the internal network via the REST Web Service interface, regardless of which incoming protocol was used to store the message. This allows your customers to use whichever protocol they prefer while you use only a single protocol, REST Web Service, to retrieve messages. REST Web Services require only standard HTTP, so they are accessible to any system or language capable of making HTTP requests.

Not only does proxy help keep your internal network secure, it also secures your data as well by encrypting the data before storing it in an encrypted database. This means you no longer have to worry about plain text messages sitting on your FTP server in the insecure external network (DMZ). Proxy accomplishes this by transparently using an encrypted database instead of accessing the file system. For example, when a user logs into proxy via FTP they can use the standard FTP commands to store and retrieve files; however, they are not actually interacting with the file system.

Proxy simplifies user account management as well by centralizing all protocol accounts. Since proxy users are non-OS level accounts and proxy doesn't actually access the file system, you can run the proxy process as a non-privileged user on non-privileged ports for even more security.

Features

• Proxy message store access via a simple REST Web Service Interface
• REST Web Services are accessible to any system or language capable of making HTTP requests
• Switch external customers' protocols without internal coding changes
• Extensible, Spring-enabled for easy customization
• Highly secure - encrypts each message before storing it in an encrypted database
• Easy, centralized account management for all supported protocols
• Proxy users are NOT operating system-level accounts
• Proxy can be run as non-privileged user on non-privileged ports

Protocol Proxy integration

• Retrieve
• Uses one polling REST HTTPS connection to retrieve an XML list all of the available messages for all integrated proxy users
• Splits the list XML doc into one doc per item, then retrieves the items separately; once the message is successfully retrieved it is deleted from proxy
• Send
• POST message via REST HTTPS for a specific user

Protocol Proxy Product Description (PDF)