How is the secure file transfer protocol (SFTP) offered by Everbridge secured?
The Everbridge SFTP system is designed to provide a secure keypair for our clients using the same model as many other well-established providers, such as Amazon EC2 (for more information see http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-key-pairs.html).
Clients can make use of SFTP which makes use of port 22 when uploading data to Everbridge. This port value cannot be changed.
Everbridge is aware that there are other accepted methods of key exchange, but we assure this model is completely secure. Directly from the Everbridge Manager Portal your administrator can generate and download the private key that is specific for your organization. If desired, you can password protect the key yourself, and many of our clients elect to do this. The downloaded private key, along with the organization ID, provide your organization with secured access to the Everbridge SFTP service.
For more information regarding security compliance, see Knowledge Base Article 000004346 - Everbridge Suite Security & Privacy Compliance.