Why Is Email Security So Important?
The volume and sophistication of email-based threats continues to grow at an unchecked pace. Most organizations observe that as much as 90 percent of their incoming mail is invalid (spam, viruses, etc.), with the total number of incoming messages increasing every year – even as the number of employees stays constant. These email security threats are fueled by a powerful profit motive associated with spam, fraud, and information theft. This creates resources that bring professional engineers into the business of developing new threats, further exacerbating the situation. As this cycle does not appear to have a natural equilibrium, threats are expected to continue to grow in volume and sophistication for the foreseeable future.
There are no “silver bullets” to eliminate the flaws found in email. The ultimate answer will likely emerge as a mixture of many complementary solutions. The sustained viability of email demands a convergence of market-driven research and technological development.
What Are Cisco IronPort Email Security Appliances
The Cisco IronPort® C-Series and Cisco IronPort X-Series Email Security Appliances are in production at eight of the ten largest ISPs and more than 20 percent of the world’s largest enterprises. These industry-leading systems have a demonstrated record of unparalleled performance and reliability.
IronPort® email security appliances combine market-leading, best-of-breed antispam, antivirus, encryption, digital rights management, and archiving technologies. These solutions run on IronPort’s revolutionary MTA platform, providing the highest levels of email protection, with exclusive preventive and reactive technologies and industry-leading email management tools.
With a complete portfolio of secure delivery methods, integrated key management, and the power of business-class email, IronPort technology also provides industry-leading encryption capabilities, enabling the comprehensive functionality necessary to protect even the most complex enterprise environments.
By reducing the downtime associated with spam, viruses, and blended threats, IronPort email security appliances vastly improve the administration of corporate email systems, reduce the burden on technical staff, and provide constant state-of-the-art network protection.
IronPort email security appliances provide a multilayer approach to stopping email-based threats:
• For spam protection, email and web reputation filtering technology is combined with industry-leading Cisco IronPort Anti-Spam feature.
• Cisco IronPort Outbreak Filters are paired with fully integrated traditional antivirus technology and patent-pending anti-targeted attack protection to ensure users are protected from the industry’s more malicious attacks.
• Cisco Data Loss Prevention technology provides organizations with the broadest set of tools to enforce regulatory compliance and acceptable use policies accurately and efficiently.
• Cisco IronPort PXE encryption technology fulfills secure messaging, compliance, and regulatory requirements.
Figure 1 shows a typical Email Security deployment.
What Is the Cisco SenderBase Network?
Cisco IronPort appliances harness the power of the SenderBase® Network. This powerful threat tracking database captures data from more than 100,000 organizations worldwide, providing a large and diverse sample of Internet traffic patterns.
• SenderBase receives over 30 billion queries daily.
• Using SenderBase data increases malware catch rates by more than 20 percent over signature-based scanning alone – an unprecedented increase in efficacy.
• For live threat updates and real-time access to your SenderBase Reputation Score (SBRS), visit: http://www.senderbase.org.
What Are Cisco IronPort’s Email Security Technology Differentiators?
Cisco IronPort AsyncOS® is a unique, high-performance software architecture designed to address concurrency-based communications bottlenecks and the limitations of file-based queuing.
Cisco IronPort Reputation Filters perform a real-time email threat assessment and then identify suspicious email senders. Suspicious senders are rate limited or blocked, preventing malicious traffic from entering the network.
Cisco IronPort Anti-Spam combines best-of-breed conventional techniques with IronPort’s breakthrough context-sensitive detection technology to eliminate the broadest range of known and emerging email threats.
Cisco IronPort Outbreak Filters detect new virus outbreaks in real time, then quarantine suspicious messages – offering protection up to 42 hours before traditional antivirus solutions.
Cisco Data Loss Prevention technology provides comprehensive DLP policies and remediation options, unparalleled accuracy, and easy deployment and management capabilities – meeting acceptable use policy and compliance requirements readily.
Cisco IronPort PXE encryption technology revolutionizes email encryption – meeting compliance requirements while delivering powerful business-class email features.
The Cisco Threat Operations Center (TOC) provides a 24×7 view into global traffic activity, enabling Cisco to analyze anomalies, uncover new threats, and track traffic trends.