SecureBridge is a library of non-visual components for Delphi, C++Builder, and Lazarus (Free Pascal) designed to protect network connections from unauthorized access.
SecureBridge can protect any TCP traffic using SSH or TLS/SSL protocol. These secure transport layer protocols provide authentication, strong encryption, and data integrity verification. SecureBridge can be used in conjunction with data access components to prevent data interception or modification in an untrusted network.
The SecureBridge library is actively developed and supported by the Devart Team. If you have questions about SecureBridge, email the developers at [email protected] or visit SecureBridge online at https://www.devart.com/sbridge/.
SecureBridge is very convenient in setup and usage. It is enough to place several components on the form and specify the server address and the user login information to establish a secure connection. Applications that have to work with secure information are easy to deploy, as they do not require any external files.
Wide Support for Secure Protocols
SecureBridge supports SSH and TLS/SSL protocols, which are one of the most reliable protocols for data encryption and integrity verification. These protocols are acknowledged industry standards in the area of secure data transfer through unprotected connections.
SecureBridge SSH Client, that is implemented in the TScSSHClient component, can work with different SSH servers like OpenSSH, WinSSHD. It allows you achieve high performance due to connection parameters management. SSH client unites several unprotected channels from client to server in one protected connection. Logical channels can exist in different threads.
High-performance SSH server with wide abilities for connection setup and users management. SSH Server works with different types of SSH clients such as OpenSSH, PuTTY etc. Number of the clients connected simultaneously is limited only by system resources.
SecureBridge SFTP client, that is implemented in the TScSFTPClient component, serves for secure file transfer.
SecureBridge SFTP server, that is implemented in the TScSFTPServer component, serves for secure file transfer.
SecureBridge TLS/SSL client, that is implemented in the TScSSLClient component, can work with other applications using TLS 1.3, 1.2, 1.1, 1.0, and SSL 3.0 protocols. It allows you achieve high performance due to connection parameters management. SecureBridge does not require external units.
SecureBridge TLS/SSL server, that is implemented in the TScSSLServerConnection component, can work with different types of TLS/SSL clients using TLS 1.3, 1.2, 1.1, 1.0, and SSL 3.0 protocols. SecureBridge does not require external units.
SecureBridge FTP/FTPS client, that is implemented in the TScFTPClient component, serves for secure file transfer.
SecureBridge HTTP/HTTPS client, that is implemented in the TScHttpWebRequest component and the TScHttpWebResponse class, supports request/response model for accessing data from a Web server by the HTTP protocol.
SecureBridge WebSocket client, that is implemented in the TScWebSocketClient component, serves for accessing data from a Web server by the WebSocket protocol.
SecureBridge SignalR client, that is implemented in the TScHubConnection component, serves for connection with a hub server.
SecureBridge SMTP/SMTPS client, that is implemented in the TScSMTPClient component, serves for sending email messages to recipients using the SMTP server.
SecureBridge allows to create REST applications using the TScHttpWebRequest component.
Protection Against Diverse Attacks
SecureBridge protects transferred data against different kinds of attacks. SecureBridge uses the Diffie-Hellman key exchange algorithm for connection establishing. A reliable random number generator is used for keys generating. To protect data against illegal access, information is encrypted by symmetric algorithms that provide high speed and reliability. For data integrity verification hash algorithms like SHA2 are used.
Support for CMS format to encrypt and sign data
The TScCMSProcessor component implements the Cryptographic Message Syntax (CMS) - syntax for data protection. It supports digital signatures and encryption.
Support for Third Party Components
SecureBridge supports Internet Direct components (Indy), MySQL Data Access Components (MyDAC) and PostgreSQL Data Access Components (PgDAC). This allows you to implement all the advantages of the encrypted connection within a single application without any external files.
The following list describes the main features of SecureBridge Components:
|•||Full support for SSH2 protocol|
|•||Full support for TLS 1.3, 1.2, 1.1, 1.0, and SSL 3.0 protocols|
|•||Support for all versions of the SFTP protocol|
|•||Fast and customizable SSH server, SSH client, SFTP server, SFTP client, SSL client, FTP/FTPS client, HTTP/HTTPS client, WebSocket client and SignalR client|
|•||Support for most SSH2-compatible clients and servers including OpenSSH|
|•||Compatible with any application that works through TCP with protocols like SMTP, POP, IMAP, etc.|
|•||Ability to work with system and external certificate storages through CryptoAPI|
|•||Support for AES128, AES192, AES256, Blowfish, Cast128, and TripleDES symmetric algorithms|
|•||Support for Elliptic-Curve, RSA and DSA asymmetric algorithms|
|•||Support for SHA-2, SHA-1, and MD5 hashing algorithms|
|•||Authentication by password or by public key|
|•||Support for Cryptographic Message Syntax (CMS) to encrypt, decrypt, sign, and verify data|
|•||Reliable and convenient maintenance of asymmetric keys|