SSH File Encryption
PGP combines some of the best features of modern cryptography, including compression, digital signatures and public key encryption.
Although Equifax Data Exchange Services (DXS) only utilizes encrypted protocols for its batch file transfers (Connect Direct, HTTPS, SFTP), PGP encrypting your data files prior to transfer adds an additional layer of data protection.
Files Pulled from Equifax DXS
Equifax security mandates that all batch file pulls from its DXS platform are PGP encrypted with a 2048+ bit key length.
Files Pushed to/from Equifax DXS
Equifax security recommends that all batch file pushes to/from its DXS platform are PGP encrypted with a 2048+ bit key length.
Public Key Encryption
Public key cryptography is an encryption scheme that uses a pair of keys for encryption: a public key, which encrypts data, and a private key for decryption. To send encrypted data to us, you must download the public key and encrypt the file with that key.
The following steps are necessary to use PGP to encrypt files before sending to Equifax:
- Obtain and install PGP software (see https://www.openpgp.org or https://www.gnupg.org for more information on compatible software products)
- Equifax DXS PGP Tutorial provides step by step guidance on key import and configuration using Kleopatra as an example application.
- IMPORTANT NOTE: Equifax does not recommend any specific File Encryption Software. We do suggest, however, that its Trading Partners that are unfamiliar with PGP encryption choose a software package that has its own help desk that provides support for any technical issues.
- Download the Equifax DXS public keys from the links provided below.
- Import each public key into your key ring and configure as follows:
- Encrypting files sent to Equifax DXS.
- Certify as the signing key for encrypted files received from Equifax DXS (optional for new file transfers set up after 2/14/2022).
You are now ready to begin encrypting your data files. Here are some general guidelines:
- Compression is built into the encryption, so it is not necessary to zip your data files before or after encryption.
- Issued keys will expire every 2 years.