J.P. Morgan Host-To-Host File Transmission

Our SSL certificate for the AS2, HTTPS and NDM Protocols will be replaced in June 2023, and the old certificate will expire in July. The new certificates will be available for download on our  SSL Support page after June 9.

Dedicated specialists will contact clients whose files are transitioning to our Managed File Transfer (MFT) application. This is a multi-year event that will begin in 2024.

Additional details for impacted clients are available here.

Beginning Q2 2023 certain SSL ciphers will no longer be supported. The complete list of supported ciphers can be found on our  SSL Support page.

Our PGP key will be replaced in September 2023, and the old key will expire in October. The new key will be available for download on our  PGP Support page after September 15.

• All keys used with file transmission must expire in 2 years or less. All expiring keys must be renewed with unique and newly created keys and not previously used. There are no exceptions to this policy.
• Transport Layer Security version 1.2 (TLSv1.2) is the minimum standard for communication session encryption for the following applications and protocols:

                 Applicability Statement 2 (AS2)

                 Hypertext Transfer Protocol Secure (HTTPS)

                 File Transport Protocol Secure (FTPS) – No longer supported for new setups

                 NDM via IBM^® Sterling Connect:Direct^® with Secure+^®

• The Administrative Procedures for Certificates include the following standards:
  • All certificates and keys must have a finite validity period of two years or less.
  • No certificate shall be accepted unless it adheres, at minimum, to the following cryptographic specification:
    
    - Message digest: SHA-256, AES256
    - Asymmetric algorithm: RSA, DSS (DSS is not supported for SSH protocols).
    - Asymmetric algorithm key length: 2048 bits or more.
    - Elliptical curve algorithms are not supported at this time.