Posted On: Jun 19, 2023

Amazon Transfer Family now supports quantum-safe public-key exchange for SFTP file transfers. Quantum-safe public-key exchange protects your file transfers from threats such as “harvest now, decrypt later” attacks that record present day traffic for decrypting once cryptographically relevant quantum computers become available.

Amazon Transfer Family offers fully managed support for SFTP, AS2, FTPS, and FTP enabling customers to run their managed file transfer (MFT) workflows on Amazon Web Services Cloud. This launch introduces new hybrid post-quantum (PQ) security policies that enable quantum-safe key exchange between your SFTP servers and clients that use PQ encryption algorithms. When using a hybrid PQ policy, your SFTP server preserves the standard connection options supported by most clients today, while leveraging more secure connection options with clients that support quantum-safe cryptography.

Quantum-safe key exchange for SFTP file transfers is supported in all Amazon Web Services Regions where Amazon Transfer Family is available, including the Amazon Web Services China (Beijing) Region, operated by Sinnet, and the Amazon Web Services China (Ningxia) Region, operated by NWCD. To learn more about using hybrid PQ security policies to enable quantum-safe key exchange, visit our documentation.