Although a server requires you to present a digital certificate before you use FTPS, you don't have to use a certificate issued by VeriSign. You can use a digital certificate issued by any of the well-known certificate authorities, or, one you have issued yourself, using Microsoft Certificate Server for example. You can have a trusted certificate authority, such as Verisign or Thawte, sign the certificates you create. There are plenty of FTP programs that can handle FTPS. One is GlobalSCAPE's Secure FTP Server, which includes a full digital certificate management system for creating, signing and importing digital certificates to a trusted list. It also supports client authentication to verify users' identities by forcing users to present a certificate. The server compares the client certificate to a list contained in its trusted certificates database, and then either accepts or rejects the connection based upon a match.
Dig Deeper on IPv6 security and network protocols security
Related Q&A from Michael Cobb
Explore the differences between symmetric vs. asymmetric encryption algorithms, including common uses and examples of both, as well as their pros and... Continue Reading
Pirated software is still a major concern nowadays. Uncover how to prevent software piracy and protect your organization's intellectual property. Continue Reading
Shellcode is a set of instructions that executes a command in software to take control of or exploit a compromised machine. Read up on the malware ... Continue Reading