• Solutions
• Products & Services
• Support
• Partners
• Resources
• News
• Company
• Green
• Manager Business Development

Security

Accellion is focused on providing corporations and government agencies with an easy, fast, and secure method for employees to share files with internal and external users and at the same time provide the enterprise organization with the protection it needs for ensuring enterprise data security and demonstrating compliance.

Whether you have one user, ten users or ten-thousand users, Accellion delivers comprehensive security to your organization.  All Accellion solutions provide:

Data Encryption on Transfer

• Data is transferred using Secure Socket Layer (SSL) protocol – 128 bit encryption
• Built-in file encryption capabilities before upload using the AES 128 bit encryption scheme

Data Encryption at Rest

• Data is encrypted on servers using 128-bit encryption
• File names are de-referenced when stored by the Accellion secure collaboration and file transfer system to ensure that files are inaccessible on the server

Authenticated Downloads

• File download requests are authenticated individually for ad-hoc HTTPS access

File Access

• Administrators do not have access to files once they are uploaded to the Accellion system. However, they can view the list of files and delete, replicate and set life cycle rules on these files. Administrators can also view reports and logs in relation to file access events.

Authenticated Access Control

• Accellion provides LDAP/AD integration and Multi-LDAP support
• Accellion provides SAML integration

Comprehensive Reports

• Download and upload file activity by sender, recipient, file size, source IP address and date sent or date downloaded.
• Export log files to Syslog server for better reporting
• Centralized management of Accellion solutions from the admin interface for comprehensive reporting

Certifications and Compliance

• FIPS 140-2 certified – Accellion offers FIPS 140-2 certified secure collaboration and file transfer solutions for Virtual and Public, Private and Hybrid Cloud deployments. 
• HIPAA Compliance - FIPS 140-2 certified providing the necessary security and encryption technologies to meet HIPAA 2.0 requirements. Accellion satisfies the “secure transmission” requirement by providing all communication (login sessions by users and admins, uploads and downloads) over HTTPS/SSL and providing an audit trail of all transactions.
• SOX Compliance – Accellion satisfies SOX compliance by ensuring business processes are auditable. Accellion provides its customers with the security and tracking and reporting tools necessary to demonstrate compliance.
• PCI Compliance – Accellion satisfies PCI compliance by storing files de-referenced from their file name, encrypted, and not accessible by anyone – including an Accellion support person. In order to access a file, you need to provide decryption information that is bundled into the link that is sent to the recipient.

Administrator Security Controls

• Manage groups and users
• Set file and folder expiration dates for file access
• Enable auto-enrollment for new members
• Set password policies that comply with internal policies
• Enforce encryption of files
• Enforce authentication on download
• Set cookie timeouts on the Web Interface for both internal and external users

Secure Deployment Options

• Accellion’s Hosted Cloud Service - SAS70 Type II Certified Data Center
• VMware, Citrix XenServer and Microsoft HyperV appliance options deployed inside your DMZ
• HP Prolient hardware option deployed inside your DMZ

Network Access Control

• HTTP and S-HTTP on port 443