Configuring Stormshield Data File

File encryption in Stormshield Data File makes it possible to guarantee the confidentiality of the data that your users process every day. With this feature, encryption and decryption tasks on user-defined event triggers can also be automated.

For more information, refer to Securing files in the SDS Enterprise advanced user guide.

Configuring file encryption

  • Go to Policies > Features > File, and enable the settings of your choice.


The default encryption format is .sdsx.

In this format, the user can edit an encrypted file transparently without the need to decrypt and subsequently re-encrypt it, as was the case with the previous sbox format.

Encryption and decryption Select the items for which you want to allow encryption and decryption.
Multiple encryption
  • If the user frequently needs to encrypt a large volume of files, unselect Confirm encryption for each file.

  • You can choose whether to encrypt hidden files.

Special encryption
  • When you enable file encryption for a recipient, you will use the recipient's public key for encryption and they will use their private key for decryption.

  • Self-decrypting files can be shared with recipients who do not have either Stormshield Data File or Security BOX SmartFILE.

  • SmartFILEs can be shared with recipients who do not have Security BOX SmartFILE. For more information, refer to the section Generating a Security BOX SmartFILE file in the SDS Enterprise advanced user guide.

Encryption of read-only files There are several options available for the encryption of read-only files.
Manual encryption and decryption of lists See the section below on how to use lists.

For more information on the advanced use of the File feature on the SDS Enterprise agent, refer to the section Stormshield Data File.

Using lists

Encryption and decryption lists can be used to automate file encryption and decryption for error-free ease of use. A file list can also be created to prevent selected files from being encrypted.