Devart SecureBridge v9.0.1 Professional for Delphi Rio & Tokyo » Developer Team :: Best choice for developers!

Devart SecureBridge v9.0.1 Professional for Delphi Rio & Tokyo

Devart SecureBridge v9.0.1 Professional for Delphi Rio & Tokyo
Devart SecureBridge v9.0.1 Professional for Delphi Rio & Tokyo

SecureBridge represents clients and servers for SSH, SFTP and SSL protocols as a network security solution. It protects any TCP traffic using SSH or SSL secure transport layer protocols, that provide authentication for both client and server, strong data encryption, and data integrity verification. SecureBridge components can be used in conjunction with data access components to prevent data interception or modification in an untrusted network.

Our security solution is very convenient in setup and usage. It is enough to place several components on the form and specify the server address and the user login information to establish a secure connection. Applications that have to work with secure information are easy to deploy, as they do not require any external files.

Data Protection and Encryption Solutions
SecureBridge protects transferred data against different kinds of attacks. SecureBridge uses the Diffie-Hellman key exchange algorithm for secure network connection establishing. A reliable random number generator is used for generating keys. To protect data against illegal access, information gets encrypted by symmetric algorithms that provide high speed and reliability. For data integrity verification hash algorithms like SHA1 are used.

Cross-Platform Solution for Delphi and C++Builder
This high-performance and feature-rich library of components combines cross-platform solutions for developing applications using various IDEs and editions including Community Edition: RAD Studio, Delphi, C++Builder, Lazarus (FPC) on Windows (for both x86 and x64 platforms), macOS, iOS, Android, Linux and FreeBSD.

Support for Third-Party Components
SecureBridge supports Internet Direct components (Indy) and Data Access Components for MySQL and PostgreSQL (MyDAC, PgDAC, UniDAC) . This allows you to implement all the advantages of encrypted connections within a single application without any external files.

Full Support for SSH2 Protocol
SecureBridge supports SSH2 protocol which is one of the most reliable protocols for data en­cryption. SSH2 is an acknowledged industry standard in the area of secure data transfer through un­protected con­nections.

SSH Server
High-performance SSH server with wide abilities for connection setup and users ma­na­ge­ment. SSH server works with different types of SSH clients such as OpenSSH, PuTTY etc. Number of the clients connected simul­taneously is limited only by system resources.

SSH Client
Use the TScSSHClient component, that re­presents SecureBridge SSH client, to work with different SSH servers like OpenSSH, WinSSHD. It allows you to achieve high performance due to con­nection parameters ma­na­ge­ment. SSH client unites several un­protected chan­nels from client to server in one protected con­nection. Logical chan­nels can exist in different threads.

SFTP Client
Transfer files and access file system securely using the SecureBridge SFTP Client, that is implemented in the TScSFTPClient com­ponent.

Full Support for SSL 3.0 and TLS 1.0, 1.1 & 1.2 Protocols
Our components support Secure Socket Layer (SSL) protocol, which is one of the most reliable protocols for data en­cryption along with SSH. SSL is a widely used protocol for ensuring safety of financial opera­tions in Internet. Any Internet-resource that deals with money, protects its operations with SSL.

SFTP Server
In addition to the possibility of using an SFTP client for secure file down­loading, you now get a great functionality to cre­ate your own SFTP ser­ver using the TScSFTPServer component.

SSL Client
SecureBridge SSL client is implemented in the TScSSLClient component. It can work with other applications through SSL 3.0 and TLS 1.0 protocols. SSL client validates server certificate, encrypts/de­crypts data transferred through a network.

How Does SecureBridge Work?
In order to ensure data safety in insecure networks, it is essential to take care of data protection and integrity, as well as of data receiver identification. So before putting the data into the insecure area, it should be encrypted. On the other side the data should be decrypted. In a general case an encrypted connection between a client and a server may look like this:

Both security client and security server can be implemented with SecureBridge just by adding several components into your application. This will not affect its architecture, and will not add any external dependencies. It is also possible with SecureBridge to make separate security client and server applications to protect connections between trusted networks.

Both SSH and SSL are designed to protect network connections. As these protocols have certain differences, they have to be described separately.

SSH tunnel can ensure data transferring from several clients of one secure area to clients in another secure area through one protected TCP connection.

SecureBridge can act as both SSH client (TScSSHClient) and SSH server (TScSSHServer). In some cases SSH client and SSH server are embedded into applications whose connections have to be protected.

SSL connection resembles SSH tunnel. The difference is that SSL client and SSL server are always embedded into applications. To put some data into network, an application calls methods of the embedded SSL client/server, and data is encrypted and sent. To get data from network, the application also calls methods of SSL. So, SSL clients and servers operate within the application's address space. The general chart of computer ties when connecting through SSL is presented below:

RAD Studio 10.3 Rio is supported
Lazarus 1.8.4 is supported
Support for the TLS 1.3 protocol is added
Support for the WebSocket protocol by the TScWebSocketClient component is added
Support for Elliptic-Curve keys and certificates is added
Support for ECDSA algorithm for TLS/SSL protocol is added
Support for GCM encryption mode is added
Security for SSL client is improved
The TScUser.SSHChannelPermissions property to manage available user permissions is added
Interface for the OnData, BeforeWriteData, and AfterWriteData events in the TScSFTPClient component is changed
Several bugs in TScHttpWebRequest are fixed
Bug with loading a key in TScCryptoAPIStorage is fixed
Bug with resetting TScSFTPClient.EOF when calling the OpenDirectory method is fixed
Bug with decoding the destination file name containing international characters in the TScSFTPClient.DownloadFile method is fixed
Bug in the MatchesMask function is fixed

Only for V.I.P
Warning! You are not allowed to view this text.

Users of Guests are not allowed to comment this publication.