Linoma Software

Linoma Software

Company type	Private
Industry	Software
Founded	Omaha, Nebraska, U.S. (1994 (1994))
Headquarters	Ashland, NE , U.S.
Area served	Worldwide
Key people	Bob Luebbe (Chief Architect)
Products	GoAnywhere Director, GoAnywhere Services, GoAnywhere Gateway, Crypto Complete, Surveyor/400, RPG Toolbox, Crypto Studio
Services	Database Management, Database Encryption, Tokenization, Key Management, Secure Managed File Transfer, Data Transformation
Number of employees	50
Website	LinomaSoftware.com GoAnywhereMFT.com

Linoma Software is a developer of managed file transfer and encryption solutions. Mid-sized companies, large enterprises and government entities use Linoma's solutions to protect sensitive data and comply with data security regulations such as PCI DSS, HIPAA/HITECH, SOX, GLBA and state privacy laws. Linoma's solutions run on a variety of platforms including Windows, Linux, UNIX, IBM i (iSeries), AIX, Solaris, HP-UX and Mac OS X.

History

Linoma Group, Inc. (the parent company of Linoma Software) was founded in 1994. The company was started in Lincoln, Nebraska by Robert and Christina Luebbe. Throughout most of the 1990s, the Linoma Group performed consulting and contract programming services for organizations in the Nebraska/Iowa area.

Linoma Software was formed in 1998 to address the needs of the IBM AS/400 platform (now known as IBM i) by developing productivity tools to help IT departments and end users. These tools were sold throughout the world and helped Linoma establish itself as an innovative software company.

In 2002, Linoma released Transfer Anywhere, which was a solution for automating and managing file transfers from the AS/400. Over the next 2–3 years, Linoma added encryption capabilities to Transfer Anywhere including support for Open PGP encryption, SFTP and FTPS. These encryption capabilities helped organizations protect sensitive data transmissions such as ACH payments, direct deposits, financial data, credit card authorizations, personally identifiable information (PII) and other confidential data.

Linoma expanded into other platforms when it completely redesigned Transfer Anywhere into an open OS solution with a graphical browser-based interface, renaming it GoAnywhere Director. Released in early 2008, GoAnywhere Director includes comprehensive security controls, key management, trading partner wizards and detailed audit trails for compliance requirements. GoAnywhere Director is in the Managed File Transfer software category of products, but can also be used for ETL functions.

In 2009, Linoma released GoAnywhere Services as collection of secure file services including an FTP Server, FTPS Server, SFTP Server and HTTPS server. GoAnywhere Gateway was released in 2010 as an enhanced reverse proxy to protect the DMZ and help organizations meet strict compliance requirements. GoAnywhere Gateway was enhanced in 2011 to provide forward proxy functions.

Linoma Software also performs encryption of data at rest on the IBM i (iSeries) platform with its Crypto Complete product. This product also includes key management, security controls and audit trails for PCI compliance.

As of 2013, Linoma Software serves more than 3,000 customers around the world.

Certifications

• VMware Ready
• Novell Ready for SUSE Linux Enterprise Server
• Works With Windows Server 2008 R2
• IBM Ready for Power Systems Software – IBM Power Systems
• IBM Ready for Systems with Linux - IBM Chiphopper

Associations

• Microsoft Partner
  • Silver Independent Software Vendor (ISV) competency.^[1]
  • Silver Application Integration competency.^[2]
• IBM Advanced Business Partner^[3]
• VMware Elite Partner^[4]
• Oracle Partner Network (OPN)^[5]
• PCI Security Standards^[6]
• COMMON^[7]
• Better Business Bureau^[8]
• Red Hat ISV Partner^[9]
• OpenPGP Alliance^[10]
• Apple Developer^[11]
• Novell ISV Partner^[12]
• GSA Advantage Schedule^[13]

Current Software

GoAnywhere Director

GoAnywhere Director is a managed file transfer application that secures data exchange using secure protocols for FTP servers (FTPS, SFTP, and SCP) and Web servers (HTTPS and AS2). It supports popular encryption protocols and offers a NIST-certified FIPS 140-2 Validated Encryption module. The application installs on a wide variety of server platforms and provides separation of duties through role based access and network-based authentication options. The current version is 4.5.2.

Beyond the standard characteristics of a managed file transfer solution, the following functions are available in the GoAnywhere Director application:

• Data transformation – translates data between file formats and database types
• Auditing – records user, task, and file activity either internally or to a SYSLOG server^[14]
• Integrated Certificate Management – maintains SSL, SSH, and OpenPGP keys/certificates
• Data Compression – reduces transmission times
• File Monitoring – automates processes based on file activity
• Clustering and Load Balancing - creates an active-active high availability environment

GoAnywhere Services

GoAnywhere Services is a secure file server that enables authorized trading partners to drop off and pick up files. This server only solution does not require proprietary client software and supports popular file transfer and encryption standards, and provides an optional FIPS 140-2 module that meets the government’s strict security requirements.

The secure browser interface in GoAnywhere Services both manages file servers as well as provides ad-hoc file transfer capability. In addition, it supports clustering and load balancing to create a true active-active high availability environment.

A secure email module is also available that allows users to send messages and files as secure packages. Recipients get an email with a unique link to each package that allows them to view or download the files via a secure HTTPS connection. With GoAnywhere Services Secure Mail, there is no limit on file size or type, and each package can be subject to password protection as well as other security features.

Administrators can remotely monitor server activity and all file and user activity is audited. File activity can also trigger additional events such as copying and moving files or launching a project in the GoAnywhere Director application to further process the file. The current version is 3.3.4.

GoAnywhere Gateway

GoAnywhere Gateway provides an additional layer of network security by masquerading server identities when exchanging data with trading partners. The application does not store user credentials or data in the DMZ / local network. When using a reverse proxy, inbound ports do not need to be opened into the private network, which is essential for compliance with PCI DSS,^[15] HIPAA, HITECH, SOX, GLBA and state privacy laws. The current version is 2.0.1.

A reverse proxy is used by the application for the file-sharing services (for example, FTP/S, SFTP, HTTP/S servers) it front-ends in the DMZ. GoAnywhere Gateway's service broker binds file transfer requests to the appropriate service in the private network through a secure control channel.

GoAnywhere Gateway makes connections to external systems on behalf of users and applications in the private network. Routing outbound requests through a centralized point helps manage file transfers through a firewall. This method keeps inbound ports closed. The forward proxy hides the identities and locations of internal systems for security purposes.

GoAnywhere OpenPGP Studio

GoAnywhere OpenPGP Studio is a free desktop tool that protects sensitive files using the OpenPGP encryption standard. Documents can be encrypted, decrypted, signed and verified from a PC or workstation using this tool. An integrated key manager allows users to create, import, export and manage OpenPGP keys needed to encrypt and decrypt files. GoAnywhere OpenPGP Studio will run on almost any operating system including Windows, Linux, Mac OS X, Solaris and UNIX.

Crypto Complete

Crypto Complete is a program for the IBM i that protects sensitive data using strong encryption, tokenization, integrated key management, and auditing. This software encrypts database fields, can automatically encrypt IFS files.

The application also locates^[16] sensitive information that should be encrypted using the FNDDBFLD utility, which is available at no cost to IBM i users.^[17] The current version is 3.3.0.

The key management system is integrated within the Crypto Complete policy controls, encryption functions and auditing facilities. Along with the integrated security native to the IBM i, access to key maintenance/usage activities is controlled to help meet compliance requirements.

The backup encryption component encrypts the data written to tape devices. Crypto Complete encrypts the backups of any user data in IBM i libraries, objects, and IFS files.

The field encryption registry works with IBM's Field Procedures and remembers which fields in a database should be encrypted. This process can be automated whenever any data is added to the field. When the data is decrypted, the returned values are masked or displayed based on the authority of the user.

Tokenization is the process of replacing sensitive data with unique identification numbers (tokens) and storing the original data on a central server (typically in encrypted form). Tokenization can help thwart hackers and minimize the scope of compliance audits when it is stored in a single central location. Tokenization is used to protect sensitive data like credit card personal account numbers (PAN), bank account numbers, social security numbers, driver's license numbers and other personally identifiable information (PII).

Surveyor/400

A productivity suite for working with iSeries data, files, libraries, and objects. Surveyor/400 operates in a GUI front-end, but provides options for either IBM 5250 or "Command Line" emulation. The current version is 4.0.4.^[18]

RPG Toolbox

RPG Toolbox was developed to help developers upgrade their older RPG and System/36 code to the new RPG IV or OS/400 standard. The program allows developers to save code "snippets" for re-use or testing. The current version is 4.06

Platforms

The GoAnywhere applications are VMware Ready and operate in a virtualized or static environment on the following operating systems.

• Linux
• Novell SUSE Linux Enterprise Server (SLES)
• Red Hat Enterprise Linux
• Unix
• Mac OS X
• Windows
• HP-UX
• Solaris
• IBM System p (AIX)
• IBM System i
• IBM System z

Notes

1. Microsoft Silver Independent Software Vendor (ISV)
2. Microsoft Silver Application Integration
3. IBM Advanced Business Partner
4. VMware Elite Partner
5. Oracle Partner Network (OPN)
6. Participating Organization in the Payment Card Industry Security Standards Council (PCI SSC), [1]
7. Member of the COMMON User Group.
8. A+ Better Business Bureau Member
9. Beta tester and performance testing for current and upcoming Red Hat Enterprise Linux (RHEL) distributions., [2]
10. OpenPGP standards group, started by Philip Zimmermann, [3]
11. Apple Developers actively participate in testing and building on the Mac OS X and Mac OS X Server platforms. Apple Developers also test the accessibility of their products on other Apple Web-based devices like the iPhone, iPad, and iPod Touch.
12. Novell ISV partnership and SUSE Studio appliance participant.
13. NAICS codes: 511210, 518210, 522320, 541512, 423430
14. PCI DSS 10.5.3
15. PCI DSS 1.3
16. Find Database Fields - IBM Systems Magazine
17. FNDDBFLD
18. IBM Journal - 13 December 2010

External Reviews/Links

Sys-Con Media - GoAnywhere 3.0
Business Wire - GoAnywhere Services
Four Hundred Stuff - Crypto Complete 2.2
IBM Systems Magazine - Crypto Complete
IT Jungle - Surveyor/400 3.7
GoAnywhere