Release Version Date
MOVEit Transfer 2022.1 14.1 Nov 2022
MOVEit Transfer 2022.1.3 14.1.3 Mar 2022

The following features and improvements were added to MOVEit Transfer.

FIPS Mode

The MOVEit Transfer default SFTP library provides cryptographic capabilities and algorithms that conform to Federal Information Processing Standards (FIPS 140-2). The FIPS validated secure encryption, key exchange, host key, client key, MAC, and compression algorithms are available in the MOVEit Transfer Config Utility.

SFTP Service

MOVEit Transfer uses a new SFTP server to align with current SFTP standards. Benefits include:

  • Additional ciphers including elliptic curve.
  • Host key algorithm is deprecated.

Better Algorithm Selection

There are newer and more secure algorithms selected by default in the MOVEit Transfer Config Utility.

Key Exchange Algorithms:

  • curve25519-sha256
  • curve25519-sha256@libssh.org
  • diffie-hellman-group1-sha1
  • diffie-hellman-group14-sha1
  • diffie-hellman-group14-sha256
  • diffie-hellman-group16-sha512
  • diffie-hellman-group18-sha512
  • diffie-hellman-group-exchange-sha256
  • diffie-hellman-group-exchange-sha1
  • ecdh-sha2-nistp256
  • ecdh-sha2-nistp384
  • ecdh-sha2-nistp521

Hashing Algorithms:

  • aes256-ctr
  • aes192-ctr
  • aes128-ctr
  • aes256-cbc
  • aes192-cbc
  • aes128-cbc
  • 3des-ctr
  • 3des-cbc
  • blowfish-cbc
  • arcfour256
  • arcfour128
  • arcfour
  • cast128-cbc
  • aes256-gcm@openssh.com
  • aes128-gcm@openssh.com
  • chacha20-poly1305@openssh.com

Encryption Algorithms:

  • aes256-ctr
  • aes192-ctr
  • aes128-ctr
  • aes256-cbc
  • aes192-cbc
  • aes128-cbc
  • 3des-ctr
  • 3des-cbc
  • blowfish-cbc
  • arcfour256
  • arcfour128
  • arcfour
  • cast128-cbc
  • aes256-gcm@openssh.com
  • aes128-gcm@openssh.com
  • chacha20-poly1305@openssh.com

Public Key Algorithms:

  • ssh-ed25519

  • ecdsa-sha2-nistp256

  • ecdsa-sha2-nistp384

  • ecdsa-sha2-nistp521

  • rsa-sha2-256

  • rsa-sha2-512

  • ssh-rsa

  • ssh-dss

  • x509v3-sign-rsa

  • x509v3-sign-dss

    Note: MOVEit Transfer supports DSS and RSA host keys.

TLS 1.3 Support

MOVEit Transfer introduces support for the TLS 1.3 protocol. This support makes the latest and most secure TLS standard available when used with MOVEit Transfer and Windows 2022.

MOVEit Transfer Config (Windows 2022 install shown)

Transport Layer Security (TLS) 1.3 makes significant improvements over earlier versions. TLS 1.2 and 1.3 are industry standards and preferred over less secure predecessors. (Microsoft, Apple, Google, and Mozilla all deprecated both TLS 1.0 and TLS 1.1 variants.)

TLS 1.3 (RFC 8446) updates the current TLS protocol. Updates to the protocol include improved performance, security, and privacy. The TLS 1.3 specification was backed by a formal security analysis. Highlights from the specification are:

  • Safer client/server communication (safer cryptographic primitives) (Security enabler)
  • Simplified client/server negotiation.
  • 0-RTT support. (Earlier application data)
  • Fewer round trips.

Amazon AWS RDS Database Compatibility

MOVEit Transfer is now compatible with Amazon Relational Database Service (Amazon RDS) hosted versions of Microsoft SQL Server. For more information, see System Requirements.

Improved User Experience for Ad Hoc Users

We’ve improved the user experience for Ad Hoc Transfer users so that guest and temp user experience in the web UI follows the same model as the Add-in for Microsoft Outlook. We’ve also improved the Add-in to support onboarding of new temp users who are using the Add-in.

Improved User Experience for Web UI Users

Ad Hoc users will see the following improvements in the web UI.
  • UI for creating or viewing a package aligns with the Add-in and with email clients, providing a more familiar experience overall
  • Commands and navigation moved to the top of the interface
  • Package options are to the right of the message composition pane (as they are in the Add-in)

Add-in for Microsoft Outlook now Supports Password Resets

Newly-created temporary users are often required to change their password upon logging in, and now they can complete this step when using the Add-in for Microsoft Outlook. (Previously, they needed to use the web UI.)

Localization for MOVEit Transfer Add-in for Microsoft Outlook

The MOVEit Transfer Add-in for Microsoft Outlook can now be used in any of the following languages, in addition to the default language:
  • English
  • French
  • German
  • Spanish
  • Japanese
  • Traditional Chinese
  • Simplified Chinese
The language of the add-in is determined by the user’s Microsoft Outlook / Microsoft Office / Microsoft 365 language setting, which can either be set directly in Outlook, or can be inherited from the user’s operating system. We do not use the user’s MOVEit Transfer language setting. If the user’s Outlook language is not supported, the add-in will default to English.
Note: Localization requires version 2.0 of the add-in which requires that the add-in be updated (some of the language changes are carried in the XML file for the add-in).

REST API Improvements

Reset Password Attributes are now available if a client signs on to an account where a password needs to be refreshed. This new feature enables your custom application to begin the reset password workflow at first sign on, or if a password is old and needs to be refreshed, for example.