We do get more and more requests from customers and resellers to fill out a "vendor questionnaire" to answer all sorts of product and security related questions. While we appreciate the interest and understand the demand to have clarity, especially in the security area, we simply cannot answer all the questions because of time and resource constraints. We are a small team and want to deliver high quality software for a very reasonable price. Dealing with these kinds of questions, slows us down and requires us to allocate more resources - which in turn affects our pricing.
This article should answer most (if not all) vendor and security related questions. If you think something is missing or should be explained in more detail, let us know.
Distribution
We are not selling our products directly. So there's no fund-transfer to any of our bank accounts. When you purchase our products, you will actually buy them from our distributor FastSpring (or previously share-it). Many corporations need to enter the company details for their purchasing process. Usually you need to enter our distributor's information because once you hit the "Buy now" links on our buy page, you are effectively forwarded to our distributor and purchase our products from them. License key generation, your account, invoicing and payment is all handled by our distributor:
https://fastspring.com/company/
https://secure.shareit.com/shareit/impressum.html
Reseller
Alternatively you can also purchase our product from a reseller. If you are working with resellers already, contact them and ask them if they already are registered as a reseller. If not, they can contact us here to request a reseller account.
Vendor Information
You can find all necessary information about us (the authors of Royal TS, Royal TSX and Royal Server) here:
Note that each link forwards you to the homepage of each author. There you will find all the legal information (imprint) as well.
Security
We do not offer any cloud services and do not store any data you create in Royal TS/X or Royal Server on any of our systems. All data (including passwords) you enter in Royal TS/X and Royal Server are stored in files on your systems and you have the responsibility to make sure these files cannot be accessed by anyone who does not have permission. We cannot be held responsible if you either lose or leak any information. A good comparison here is Microsoft Excel: if you store sensible information (such as passwords) in an Excel document and this document gets into wrong hands, Microsoft cannot be held responsible for that.
Encryption
Whether or not you have password protected your Royal TS/X documents, all sensible data (passwords) are encrypted using the industry standard XTS-AES encryption algorithm. All the data is encrypted on disk and in memory until it is needed.
1st and 3rd Party Components
Royal TS/X and Royal Server relies on external components. Please find a list of components below we use in Royal TS/X and Royal Server. If you have security related questions regarding a specific component, please contact the vendor/author directly.
Company | Product / Plugin | Components |
Microsoft | Remote Desktop on Windows | RDP ActiveX Control (ships with Windows) |
Rebex | Royal TS, Royal TSX and Royal Server Secure Gateway Feature Terminal Connection (Telnet / SSH) on Windows File Transfer Connection | Security (Encryption) SSH Client / Server SSH Client and Terminal Control FTP/SFTP/SCP |
Bouncy Castle Crypto | Secure Gateway Feature Terminal Connection (Telnet / SSH) on Windows File Transfer Connection | Private Key Files |
Essential Objects | Web Page Connection on Windows | Chromium Engine |
Apple | Web Page Connection on macOS and iOS | WebKit |
TightVNC | VNC Connection on Windows | VNC SDK |
FreeRDP | Remote Desktop on macOS | RDP |
iTerm2 | Terminal Connection on macOS | Terminal Control |
Chicken | VNC Connection on macOS | VNC Control |
Note: the above list is not a complete list of components we use. These are the components which are dealing with sensitive data (like passwords).