SafeGuard Enterprise Integration

Officially Sophos does NOT have a linux version, they may be working on one however any information would probably be disclosed by a Sophos engineer under NDA.

Embedded appliance integration REALLY requires doing whatever is required to have Sophos as an integration partner, this isn't a "just buy this, do this to get this to work".

It might be possible to engineer something if you can get the customer to extract the certs and encryption key the file was encrypted with and you have some encryption gurus, and you have an NDA with the required documentation and consulting from a Sophos Engineer.  That would be key to getting that to work.

As a backup option I would also suggest setting up an independant vmware player appliance to run on a server (or can be used with ESX if the customer has it) that can decrypt, and your device should moniter, manage, the VM, as well as control push/pull.  This would essentially create a "staging area" to use for encryption/decryption.  I've scene a number of companies use a pre-fabircated VM on a customers server (or your own) as a staging area for embedded linux appliance file transfers.  This two stage process could also do stuff like verify file integrity at both locations in cases of shakey internet connections or broket fiel transfer pipes, heavy packet loss, and other tasks like enforce signing and cert checking, have a deticated VPN tunnel, etc, to make sure the route and file transfers from said VM are secured sense you are decrypting before transport.  Some companies doing encrypted cloud backup integration are using this method to aboid windows to linux integration issues on the customers side.

Officially Sophos does NOT have a linux version, they may be working on one however any information would probably be disclosed by a Sophos engineer under NDA.

Embedded appliance integration REALLY requires doing whatever is required to have Sophos as an integration partner, this isn't a "just buy this, do this to get this to work".

It might be possible to engineer something if you can get the customer to extract the certs and encryption key the file was encrypted with and you have some encryption gurus, and you have an NDA with the required documentation and consulting from a Sophos Engineer.  That would be key to getting that to work.

As a backup option I would also suggest setting up an independant vmware player appliance to run on a server (or can be used with ESX if the customer has it) that can decrypt, and your device should moniter, manage, the VM, as well as control push/pull.  This would essentially create a "staging area" to use for encryption/decryption.  I've scene a number of companies use a pre-fabircated VM on a customers server (or your own) as a staging area for embedded linux appliance file transfers.  This two stage process could also do stuff like verify file integrity at both locations in cases of shakey internet connections or broket fiel transfer pipes, heavy packet loss, and other tasks like enforce signing and cert checking, have a deticated VPN tunnel, etc, to make sure the route and file transfers from said VM are secured sense you are decrypting before transport.  Some companies doing encrypted cloud backup integration are using this method to aboid windows to linux integration issues on the customers side.