Clearswift Secure Email Gateway

Powerful Email Security with Realtime Protection

Around the world, defense agencies, governments and financial institutions rely on Clearswift’s award-winning Secure Email Gateway to provide the highest level of protection for email, transforming it from a high-risk communication channel to one that is safe and secure.

With deep content inspection capability and powerful adaptive redaction features, it removes evasive cyber-threats and prevents unwanted data breaches in real-time. Working alone or alongside cloud-based email applications such as Office 365 and G Suite, the Secure Email Gateway is an essential security layer to maximize cybersecurity defenses.

Unparalleled Deep Content Inspection

Developed with security and performance in mind, the Secure Email Gateway provides an unparalleled level of content inspection and structural verification. A Deep Content Inspection Engine detects and analyzes the content of incoming and outgoing emails down to 50 levels. It offers true-file type detection, file structure verification and extracts sensitive data from compressed files, document body, header and footers, or embedded objects.

Game-Changing Adaptive Redaction

Rather than a stop and block approach, unique Adaptive Redaction features dynamically modify messages and content in real-time, keeping communications flowing and risk free.

• Data Redaction - sensitive data is automatically removed from documents and images. Text in images is identified using Optical Character Recognition (OCR).
• Document and Image Sanitization – metadata, change history and properties are removed from files, including content embedded in images using steganography tools.
• Message and Structural Sanitization – URLs are rewritten before they cause harm and active code (macros, scripts and Active/X) is removed from Microsoft Office, Open Office and PDF files.

Inbound Threat Protection

With a choice of Avira or Sophos anti-virus software engines that update every fifteen minutes, email is well protected. For additional protection against embedded Advanced Persistent Threats (APTs), ransomware, spyware and phishing emails, these technologies are supplemented with zero-hour anti-malware features and active code detection that the Message and Structural Sanitization provides.

Multi-Layered Spam Defenses

Dual anti-spam engines reduce the amount of spam reaching the end user and the number of false positives. DMARC, SPF and DKIM support reduces spam even further. The multi-layered spam defense mechanism achieves 99.9% detection rates. An Outlook Spam Reporter is included so that spam can be monitored, registered, and eliminated.

Outbound Data Loss

The Secure Email Gateway minimizes the risk of employees accidentally sharing confidential information and protects valuable company data that malicious insiders may try to exfiltrate.

Powerful lexical analysis and regular expression rules search messages and content for key words and phrases. When policy violations are found, sensitive data can be automatically removed, or managed by System Administrators or Line Managers.

Regulatory Compliance

Data loss prevention (DLP) is a key concern for organizations who need to comply with regulatory requirements such as GDPR, HIPAA, SEC and SOX. To save deployment time, the Secure Email Gateway includes built in compliance dictionaries and over 200 pre-defined PCI and PII tokens to simplify policy definition and deployment. The Secure Email Gateway can detect, protect, and audit structured data using Lexical Expression Qualifiers to validate sensitive information. This minimizes the number of false positives as it understands when a number might look like a customer ID number but isn’t.

Flexible and Granular Policy Control

Adaptable policies are the key to real-world deployment. If email security solutions are too restrictive, it impacts the organization’s ability to work effectively. If they are too lax, security could be compromised. Flexible and granular policy controls enable organizations to balance security with the need to continuously collaborate. Workflows permit managers to review and release emails so that better context can be applied to message management. Policies can be applied to an individual, a group (department or specific security clearance level), or the whole organization.

Encryption

Some regulations require emails containing sensitive data to be encrypted. The Secure Email Gateway provides Transport Layer Security (TLS) encryption as standard with options to provide S/MIME and PGP message encryption and password protected files. Additionally, Clearswift works with technology partners to provide portal-based encryption, secure email archiving and enterprise Digital Rights Management (eDRM).

Sandbox

The Secure Email Gateway operates with SMTP-based sandboxes. Further development will see the addition of a cloud-based and on-premise sandbox service integrated within the product soon.