Q: Does 6sense support public/private key based authentication, as well as IP allow listing?
A: No, 6sense does not support SSH key access to SFTP or have support for IP allow listing.
Q: Do we know how long they will retain the data on the server?
A: Data added to the incoming/ directory is moved out of the SFTP service’s S3 backend as soon as it is transferred to a separate internal S3 bucket for further processing. Data added into other directories (e.g. outgoing/) are not immediately cleaned as the customer should remove those files when no longer needed by the customer.
Q: Is the data encrypted at rest?
A: Data is encrypted at rest via S3 bucket object-level encryption as we use AWS Transfer for SFTP which is backed by S3 for storage.
Q: Any additional information on the security controls on their SFTP server would be helpful?
A: Mentioned previously, but the SFTP server is served via AWS Transfer service and backed by S3 for storage which means AWS handles any additional infrastructure-level security for that service.
Q: What are the ciphers supported by SFTP?
A: Detailed Cipher list available here.