J.P. Morgan Host-To-Host File Transmission

Our SSH Key for the SFTP Protocol will be replaced in March 2024, as the old key will expire. The new key will be available for download on our SSH Support page after February 20.

Our SSL certificate for the FTPS protocol will be replaced in March 2024, as the old certificate is expiring. The new certificate will be available for download on our SSL Support page after February 20.

Beginning 2024 all Host-to-Host file transmissions will begin transitioning to our new production strategic data centers.

Additional details are available on the H2H Data Center Migration pages.

Our SSL certificate for the AS2, HTTPS, NDM protocols will be replaced in May 2024, as the old certificates will expire.  The new certificates will be available for download on our  SSL Support page after May 7.

• All keys used with file transmission must expire in 2 years or less. All expiring keys must be renewed with unique and newly created keys and not previously used. There are no exceptions to this policy.
• Transport Layer Security version 1.2 (TLSv1.2) is the minimum standard for communication session encryption for the following applications and protocols:

                 Applicability Statement 2 (AS2)

                 Hypertext Transfer Protocol Secure (HTTPS)

                 File Transport Protocol Secure (FTPS) – No longer supported for new setups

                 NDM via IBM^® Sterling Connect:Direct^® with Secure+^®

• The Administrative Procedures for Certificates include the following standards:
  • All certificates and keys must have a finite validity period of two years or less.
  • No certificate shall be accepted unless it adheres, at minimum, to the following cryptographic specification:
    
    - Message digest: SHA-256, AES256
    - Asymmetric algorithm: RSA, DSS (DSS is not supported for SSH protocols).
    - Asymmetric algorithm key length: 2048 bits or more.
    - Elliptical curve algorithms are not supported at this time.