1 / 24

TrustPort Net Gateway Email traffic protection

TrustPort Net Gateway Email traffic protection. Advantages of centralised email protection. Entry point protection Clear separation of the risky internet and secured intranet Malware and spam blocked before reaching endpoints No need to remove threats individually on every computer

bena
Download Presentation

TrustPort Net Gateway Email traffic protection

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. TrustPort Net GatewayEmail traffic protection

  2. Advantages of centralised email protection • Entry point protection • Clear separation of the risky internet and secured intranet • Malware and spam blocked before reaching endpoints • No need to remove threats individually on every computer • Unified security concept • Compact user interface • Remote control of the solution possible • Easy analysis of traffic and incidents

  3. Handling email traffic Firewall TrustPort Net Gateway Mail server Firewall TrustPort Net Gateway Mail server

  4. Principal components of incoming email protection Receiving SMTP server Backup of messages Antivirus and antispam kernel Sending SMTP server

  5. Receiving SMTP server • Antispam shield • Blacklists and whitelists • DNS records • Greylisting • Autowhitelist

  6. Antispam shield Receiving SMTP server TrustPort Net Gateway

  7. Basic whitelist and blacklist *@company.com *@company.cz support@net.cz info@company.com support@company.cz contact@company.cz *@company.net *@company.org • LDAP • AD • Text

  8. Blacklists and whitelists Blacklist of banned servers Blacklist of banned senders Whitelist of trusted recipients Whitelist of trusted senders Whitelist of trusted servers Exceptions

  9. Greylisting From: From: TrustPort Net Gateway To: To: IP: IP:

  10. Backup of messages • Criteria for the rules • direction • sender • recipient • IP address range • Action to follow • forward • backup • delete

  11. Antivirus and antispam kernel • Scanning by multiple antivirus engines • Filtering out unwanted attachments • Checking DKIM, SPF • Checking DNS blacklists • Forbidden words • User regulars • Database of regular rules • Checking for image spam • Bayes analysis • Point evaluation Fully adjustableby the user Partiallyadjustableby the user

  12. User filters Antivirus and antispam kernel • Forbidden words creditfreeofferviagra • Regular rules Part: headersField: fromRegular: @company.com Part: bodyRegular: (free|share)ware + 10 000 - 5000 + 2000

  13. Using DKIM Generatinghash of the message Decrypting the electronic signature

  14. Using SPF HELO: MAIL From: IP: IP: IP: IP:

  15. Bayes analysis Spam dictionary User rules spam Regular rules Bayes analysis ham Ham dictionary Updates

  16. Sending SMTP server • Sending electronic mail to one target mail server • Fixed IP address • Sending electronic mail to several target servers • Delivery table • MX records • Delivery table combined with MX records

  17. Components of outgoing email protection Sending SMTP server Antivirus kernel Receiving SMTP server

  18. Components of outgoing email protection Receiving SMTP server • sender control based on computer address • sender control based on email address • whitelist of trusted senders Antivirus kernel • scanning using selected engines • filtering out unwanted attachments Sending SMTP server • adding to autowhitelist • truncating dangerous headers • sending out

  19. Autowhitelist Sending SMTP server From: peter.jones@ company.com From: joe.davis@gmail.com To: joe.davis@ gmail.com To: peter.jones@ company.com

  20. Product certifications @HOME Virus Bulletin Reactive and proactive test, average values (April 2011)

  21. Product certifications @HOME Virus Bulletin (April 2011)

  22. Product certifications @HOME AV-Comparatives(April 2011) Average on-demanddetection of malware Missed samples (the lower the better)

  23. Product certifications @HOME AV-Comparatives

  24. Thank you for your attention!

More Related