This circular informs you about the change of accepted key lengths for authentication on the ECC FTP Server. To ensure secure communication with our FTP File Transfer, we regularly validate security levels, resulting in the latest update with regards to our accepted key-types and lengths. Up from now we will only accept the keys aligning with the below criteria:
- RSA with minimum 4096-bit
- ECDSA with minimum 384-bit
In case your currently used key doesn’t align with our new requirements, please consult our updated "File Transfer User Guide" for details and how to generate a new key pair.
Once non-compliant older and shorter keys are renewed, please send the new public part to memberreadiness@ecc.de together with your login id, latest by 31 December 2024. Following this date, non-compliant keys will be deleted in order to avoid compromising of the FTP Service and your data.
If accessing our FTP File Transfer with a user-password combination, instead of a keypair, there are no actions required on your behalf.
In case of any questions, please contact clearing@ecc.de
Contact
European Commodity Clearing AG
Clearing & Settlement
Phone: +49 341 24680-444
E-mail: clearing@ecc.de