Start Trial
Glossary / M / MFT protocol

MFT protocol

Managed file transfer is not a file transfer protocol but rather refers to the automation, policy, account and integration settings that wrap around core transfer protocols such as FTPS, SFTP and HTTPS.

These settings will often include requirements such as uniform encryption at rest and in transit, multifactor user authentication and event logging in tamper-proof records. Acting as a control layer, an MFT server centralizes policy so IT administrators can schedule jobs, manage bandwidth and trigger notifications without custom scripts.

Core MFT features also include public key or passwordless logins, automated retention and purge windows and syslog or API export of audit data. These features allow organizations to satisfy mandates like PCI DSS, HIPAA and SOX while keeping sensitive data flowing between on-premises hosts, cloud storage servers and trading partners.

Common MFT protocols

MFT systems do not invent new file transfer protocols. Instead, they select specific protocols based on partner, job requirements and network workload.

Some protocols you might find supported in an MFT platform are:

  • AS2: Packages payloads as signed, encrypted MIME messages over HTTP and is favored for EDI in the retail and healthcare industries
  • FTPS: Layers TLS over the original FTP command set and can operate in explicit (port 21) or implicit (port 990) mode
  • HTTPS: Uses TLS-protected POST or PUT requests and fits well with firewall rules already open for web traffic
  • OFTP2: Operates on port 661 and adds virtual session restart tokens suited to high-volume supply chain activity
  • SFTP: Runs over port 22 with a single encrypted channel and supports key or password logins

Key benefits of MFT multi-protocol support

Adopting a multi-protocol MFT framework helps organizations support the security and connection requirements of a broad number of trading partners, devices, operating systems and formats.

Other benefits of multi-protocol MFT support include:

  • Faster partner onboarding where ready profiles can map to protocol-specific port, cipher and directory rights in minutes
  • Flexibility to support both manual and machine processes from a single platform
  • Improved throughput from the ability to choose the right protocol for network security and bandwidth capabilities

Why does MFT support multiple protocols?

Organizations rarely control every endpoint on a file transfer path and must communicate with a wide variety of devices, operating systems and applications. Partners, cloud services and legacy hosts impose protocol constraints that a single file transfer method often cannot satisfy. MFT servers apply the transfer protocol option that best fits capacity, latency and compliance while retaining uniform governance across their environment. 

Other drivers for supporting multiple protocols on an MFT server include:

  • Geographically disbursed transfers that may require different protocols for different endpoints
  • Firewall policies that might limit communication to certain ports
  • Legacy devices and applications that might require communication via older protocols such as FTP/S 
  • Some trading hubs mandate specific signatures and certificates that may not be required for other transfers

MFT protocol FAQs

What protocol is best for secure file transfer?

No single protocol suits every secure transfer. SFTP is the default choice for many teams because it encrypts commands and payloads within SSH and uses firewall-friendly port 22. FTPS offers similar TLS protection while supporting legacy FTP commands, and HTTPS suits browser or API exchanges over port 443 that is already permitted on most networks.

When partners demand a specific format, such as AS2 for retail EDI or OFTP2 in automotive supply chains, those mandates override other factors.

Is SFTP safer than FTPS?

SFTP may have a slight security edge over FTPS, but only in certain situations. Both protocols provide modern encryption for data in transit, but FTPS requires more configuration to ensure all communication is encrypted and uses dynamic ports to transfer data. Both of these functions can introduce errors. For example, using FTPS in explicit mode can potentially expose unencrypted credentials during the initial security negotiation phase of the connection. 

Best file transfer for Windows: Evaluating SFTP vs. FTPS pros and cons

Which protocols support compliance requirements?

Any file transfer protocol that supports modern encryption will generally meet data security compliance requirements, including SFTP over SSH, FTPS with TLS 1.2 or newer, HTTPS transfers secured by TLS, AS2 with signed encrypted payloads and OFTP2 running on TLS. 

Compliance requirements such as FIPS, PCI DSS, HIPAA, SOX and GDPR generally require encryption of data in transit and the ability to validate files upon receipt, which are provided by the listed protocols.

Beyond the protocols, compliance auditors focus on account access, traceability and retention controls. Implementing granular logging, strict access controls and security alerts will help ensure compliance.

Manage scalable file transfers in one place

Get tips for automating uploads while keeping encryption logging and failover intact.
Blog

Every file transfer protocol: Explained

Read Blog
Blog

Which file transfer protocols should you support?

Read Blog
Blog

SFTP protocol connection and authentication process

Read Blog
Blog

FTPS vs. FTPES: Comparing the secure FTP protocols

Read Blog

Start a 25-day free trial

Try Cerberus Enterprise Edition for free

  • 25-Day Free Trial
  • Installs in minutes
  • No credit card required
Start Trial Now