Linoma Software

From Wikipedia, the free encyclopedia
Jump to: navigation, search
Linoma Software
Type Private
Industry Software
Founded Omaha, Nebraska, U.S. (1994 (1994))
Headquarters Ashland, NE, U.S.
Area served Worldwide
Key people Bob Luebbe (Chief Architect)
Products GoAnywhere Director, GoAnywhere Services, GoAnywhere Gateway, Crypto Complete, Surveyor/400, RPG Toolbox, Crypto Studio
Services Database Management, Database Encryption, Tokenization, Key Management, Secure Managed File Transfer, Data Transformation
Employees 50
Website LinomaSoftware.com
GoAnywhereMFT.com

Linoma Software is a developer of managed file transfer and encryption solutions. Mid-sized companies, large enterprises and government entities use Linoma's solutions to protect sensitive data and comply with data security regulations such as PCI DSS, HIPAA/HITECH, SOX, GLBA and state privacy laws. Linoma's solutions run on a variety of platforms including Windows, Linux, UNIX, IBM i (iSeries), AIX, Solaris, HP-UX and Mac OS X.

History[edit]

Linoma Group, Inc. (the parent company of Linoma Software) was founded in 1994. The company was started in Lincoln, Nebraska by Robert and Christina Luebbe. Throughout most of the 1990s, the Linoma Group performed consulting and contract programming services for organizations in the Nebraska/Iowa area.

Linoma Software was formed in 1998 to address the needs of the IBM AS/400 platform (now known as IBM i) by developing productivity tools to help IT departments and end users. These tools were sold throughout the world and helped Linoma establish itself as an innovative software company.

In 2002, Linoma released Transfer Anywhere, which was a solution for automating and managing file transfers from the AS/400. Over the next 2–3 years, Linoma added encryption capabilities to Transfer Anywhere including support for Open PGP encryption, SFTP and FTPS. These encryption capabilities helped organizations protect sensitive data transmissions such as ACH payments, direct deposits, financial data, credit card authorizations, personally identifiable information (PII) and other confidential data.

Linoma expanded into other platforms when it completely redesigned Transfer Anywhere into an open OS solution with a graphical browser-based interface, renaming it GoAnywhere Director. Released in early 2008, GoAnywhere Director includes comprehensive security controls, key management, trading partner wizards and detailed audit trails for compliance requirements. GoAnywhere Director is in the Managed File Transfer software category of products, but can also be used for ETL functions.

In 2009, Linoma released GoAnywhere Services as collection of secure file services including an FTP Server, FTPS Server, SFTP Server and HTTPS server. GoAnywhere Gateway was released in 2010 as an enhanced reverse proxy to protect the DMZ and help organizations meet strict compliance requirements. GoAnywhere Gateway was enhanced in 2011 to provide forward proxy functions.

Linoma Software also performs encryption of data at rest on the IBM i (iSeries) platform with its Crypto Complete product. This product also includes key management, security controls and audit trails for PCI compliance.

As of 2013, Linoma Software serves more than 3,000 customers around the world.

Certifications[edit]

Associations[edit]

Current Software[edit]

GoAnywhere Director[edit]

GoAnywhere Director is a managed file transfer application that secures data exchange using secure protocols for FTP servers (FTPS, SFTP, and SCP) and Web servers (HTTPS and AS2). It supports popular encryption protocols and offers a NIST-certified FIPS 140-2 Validated Encryption module. The application installs on a wide variety of server platforms and provides separation of duties through role based access and network-based authentication options. The current version is 4.5.2.

Beyond the standard characteristics of a managed file transfer solution, the following functions are available in the GoAnywhere Director application:

  • Data transformation – translates data between file formats and database types
  • Auditing – records user, task, and file activity either internally or to a SYSLOG server[14]
  • Integrated Certificate Management – maintains SSL, SSH, and OpenPGP keys/certificates
  • Data Compression – reduces transmission times
  • File Monitoring – automates processes based on file activity
  • Clustering and Load Balancing - creates an active-active high availability environment

GoAnywhere Services[edit]

GoAnywhere Services is a secure file server that enables authorized trading partners to drop off and pick up files. This server only solution does not require proprietary client software and supports popular file transfer and encryption standards, and provides an optional FIPS 140-2 module that meets the government’s strict security requirements.

The secure browser interface in GoAnywhere Services both manages file servers as well as provides ad-hoc file transfer capability. In addition, it supports clustering and load balancing to create a true active-active high availability environment.

A secure email module is also available that allows users to send messages and files as secure packages. Recipients get an email with a unique link to each package that allows them to view or download the files via a secure HTTPS connection. With GoAnywhere Services Secure Mail, there is no limit on file size or type, and each package can be subject to password protection as well as other security features.

Administrators can remotely monitor server activity and all file and user activity is audited. File activity can also trigger additional events such as copying and moving files or launching a project in the GoAnywhere Director application to further process the file. The current version is 3.3.4.

GoAnywhere Gateway[edit]

GoAnywhere Gateway provides an additional layer of network security by masquerading server identities when exchanging data with trading partners. The application does not store user credentials or data in the DMZ / local network. When using a reverse proxy, inbound ports do not need to be opened into the private network, which is essential for compliance with PCI DSS,[15] HIPAA, HITECH, SOX, GLBA and state privacy laws. The current version is 2.0.1.

A reverse proxy is used by the application for the file-sharing services (for example, FTP/S, SFTP, HTTP/S servers) it front-ends in the DMZ. GoAnywhere Gateway's service broker binds file transfer requests to the appropriate service in the private network through a secure control channel.

GoAnywhere Gateway makes connections to external systems on behalf of users and applications in the private network. Routing outbound requests through a centralized point helps manage file transfers through a firewall. This method keeps inbound ports closed. The forward proxy hides the identities and locations of internal systems for security purposes.

GoAnywhere OpenPGP Studio[edit]

GoAnywhere OpenPGP Studio is a free desktop tool that protects sensitive files using the OpenPGP encryption standard. Documents can be encrypted, decrypted, signed and verified from a PC or workstation using this tool. An integrated key manager allows users to create, import, export and manage OpenPGP keys needed to encrypt and decrypt files. GoAnywhere OpenPGP Studio will run on almost any operating system including Windows, Linux, Mac OS X, Solaris and UNIX.

Crypto Complete[edit]

Crypto Complete is a program for the IBM i that protects sensitive data using strong encryption, tokenization, integrated key management, and auditing. This software encrypts database fields, can automatically encrypt IFS files.

The application also locates[16] sensitive information that should be encrypted using the FNDDBFLD utility, which is available at no cost to IBM i users.[17] The current version is 3.3.0.

The key management system is integrated within the Crypto Complete policy controls, encryption functions and auditing facilities. Along with the integrated security native to the IBM i, access to key maintenance/usage activities is controlled to help meet compliance requirements.

The backup encryption component encrypts the data written to tape devices. Crypto Complete encrypts the backups of any user data in IBM i libraries, objects, and IFS files.

The field encryption registry works with IBM's Field Procedures and remembers which fields in a database should be encrypted. This process can be automated whenever any data is added to the field. When the data is decrypted, the returned values are masked or displayed based on the authority of the user.

Tokenization is the process of replacing sensitive data with unique identification numbers (tokens) and storing the original data on a central server (typically in encrypted form). Tokenization can help thwart hackers and minimize the scope of compliance audits when it is stored in a single central location. Tokenization is used to protect sensitive data like credit card personal account numbers (PAN), bank account numbers, social security numbers, driver's license numbers and other personally identifiable information (PII).

Surveyor/400[edit]

A productivity suite for working with iSeries data, files, libraries, and objects. Surveyor/400 operates in a GUI front-end, but provides options for either IBM 5250 or "Command Line" emulation. The current version is 4.0.4.[18]

RPG Toolbox[edit]

RPG Toolbox was developed to help developers upgrade their older RPG and System/36 code to the new RPG IV or OS/400 standard. The program allows developers to save code "snippets" for re-use or testing. The current version is 4.06

Platforms[edit]

The GoAnywhere applications are VMware Ready and operate in a virtualized or static environment on the following operating systems.

Notes[edit]

  1. ^ Microsoft Silver Independent Software Vendor (ISV)
  2. ^ Microsoft Silver Application Integration
  3. ^ IBM Advanced Business Partner
  4. ^ VMware Elite Partner
  5. ^ Oracle Partner Network (OPN)
  6. ^ Participating Organization in the Payment Card Industry Security Standards Council (PCI SSC), [1]
  7. ^ Member of the COMMON User Group.
  8. ^ A+ Better Business Bureau Member
  9. ^ Beta tester and performance testing for current and upcoming Red Hat Enterprise Linux (RHEL) distributions., [2]
  10. ^ OpenPGP standards group, started by Philip Zimmermann, [3]
  11. ^ Apple Developers actively participate in testing and building on the Mac OS X and Mac OS X Server platforms. Apple Developers also test the accessibility of their products on other Apple Web-based devices like the iPhone, iPad, and iPod Touch.
  12. ^ Novell ISV partnership and SUSE Studio appliance participant.
  13. ^ NAICS codes: 511210, 518210, 522320, 541512, 423430
  14. ^ PCI DSS 10.5.3
  15. ^ PCI DSS 1.3
  16. ^ Find Database Fields - IBM Systems Magazine
  17. ^ FNDDBFLD
  18. ^ IBM Journal - 13 December 2010

External Reviews/Links[edit]

Sys-Con Media - GoAnywhere 3.0
Business Wire - GoAnywhere Services
Four Hundred Stuff - Crypto Complete 2.2
IBM Systems Magazine - Crypto Complete
IT Jungle - Surveyor/400 3.7
GoAnywhere