THE INFORMATION IN THIS ARTICLE APPLIES TO:
- EFT Server, version 6.0 and later
- Mail Express, version 3.0 and later
QUESTION
Why isn't the Peer Notification Channel (PNC) encrypted?
ANSWER
An attack threat of the PNC is extremely low.
- A "hacker" would have to already be inside your network to access the PNC.
- The server and DMZ Gateway PNC connection does not employ username and password credentials.
- There is nothing sensitive contained in the PNC notifications that require encryption.
- Connections through the DMZ Gateway can be created, but for that connection to be valuable, the server has to do something; before the server can do anything, a user has to be authenticated.
- Connections are initiated from the server; if the PNC channel is "broken," DMZ Gateway will refuse new (and existing) client connections until the server re-establishes a connection.
For more information about how the PNC works in DMZ Gateway, refer to the online help.