Clearswift Overview. Rise of new collaboration tools grow businesses There is no doubt that the emergence of Web 2.0 technologies… is changing the

Clearswift Overview

Rise of new collaboration tools grow businesses

There is no doubt that the emergence of Web 2.0 technologies… is changing the way that all organizations

do business….

At T-Mobile we make use of Facebook, for example, to aid our graduate recruitment process. As an organization, we need to ensure that as such technologies develop we fully

understand the potential and the impact on our business

Head of HR Operations, T-Mobile

“ “

Creates new risks and business impacts

Data leakage

Compliance risks Employee productivity

Malware and hygiene

What if you could embrace collaboration and…

Stay in control of intellectual property and customer sensitive data? Stop dangerous security threats and malware? Monitor and log communications for compliance and productivity? Reduce the cost of securing collaboration?

With Clearswift you can collaborate more

• Less costs – hardware, licensing, resources and support

• Less risks

• Fewer products to manage

• Less time in training

• Less time on the phone with support

With Clearswift’s MIMEsweeper we can configure flexible and tailor-made

policies that fit our company. I don't know any other product that can do the

same with such little effort."

“

“

About Clearswift

We’re different because we start by understanding content 20+ years helping companies collaborate confidently Trusted by over 17,000 organizations Used by 40% of the Global Fortune 500 97% of customers would recommend us to a peer

Clearswift Email & Web Appliance

Designed for the job

• Secure and resilient platform– optimized OS tuned for high throughput performance

– hardened Linux kernel

– Builtin Kaspersky AV

• Easy installation and deployment– 7-step ‘Getting Started’ deployment & installation

guide

– pre-loaded and configured ‘default’ policy

• Easy to use & manage– 100% web user interface

– simple to use policy model

– Automation to reduce admin effort

Deployment platforms

1) HW Appliance

2) SW Appliance

3) Virtual Appliance y HyperV

• Customers can re-use existing hardware to save buying a new devices

• Customer can virtualize all or part of their solution

• Customers can mix and match deployments to suit them

Key features – common policy console: mail & web

• Easily create, change and enforce policies across e-mail and web

• Automatically updates policy to any ‘peered’ appliances– up to 9 Email and 9 Web (18 in total)

• Simplifies policy enforcement at remote appliance locations

World class spam detection

• TRUSTmanager– global reputation network

– Rejects 70-80% of all traffic before it reaches your gateway

• SpamLogic– delivers in total 99.6% accuracy rate

– comprehensive arsenal of defences

Easy to understand email policy

• Build rules appropriate to the direction of email

Anti-spyware from Sunbelt Software – Signature based detection and

prevention– Spyware “call home” prevention– Tracking Cookie detection/removal

Superior web security without compromise

MIMEsweeper content engine– True binary signature file identification– Recursive decomposition– Lexical analysis/templates– Granular policy based on user– Comprehensive data leakage controls

URL filtering from the leading vendor– 40 categories more than 18 million web sites– Important component for policy and reporting

Anti-virus from Kaspersky– Viruses, worms, Trojans and malicious code

Data leakage templates

• Predefined regular expressions for PII (Personally Identifiable Information) and PCl (Personal Credit Information)– National insurance number

– Credit card numbers

– Social security number

• Benefits– Easy to use (simply add to route)

– No configuration errors

Time based policy

In the example for the ‘Everyone to Shopping’ route shown previously– The green area defines when access to this route is allowed

– The White area defines when it is blocked

– The orange area defines a period with 60 minutes browse time quota

– On Saturday the Blue are defines a period with 30 minutes time quota

Interactive graphical reporting

High-level analysis reports• Top N blocked sites

• Top N blocked users

• Top Users by # Request

• Top Users by Bandwidth

• Top Internet Sites by # Request

• Top Internet Sites by Bandwidth

• Top Categories by # Request

• Top Categories by Bandwidth

• Top Sites for a Category by # Requests

• Top Sites for a Category by Bandwidth

Investigative reports• Top N blocked sites

• Top N blocked machines

• Top machines by number of requests

• Machines visiting particular site

Report options• Scheduled Reports

• Export Reports (PDF, CSV, email)

• Interactive drill downs for more detail

Interactive drill down

Personalized user feedback

Block Pages– policy violations

Progress Pages– informative feedback when

downloading large files

HTTP error Pages– reason why a request can not be

delivered

Administrators and power users mayalso receive the followingnotifications

– Email alerts to administrator

– Email scheduled reports

– Email Infected Machine Digests

Acceptable use policy page

• Configurable ‘Acceptable Internet Usage Policy’ page

• On or off setting

• When ‘on’ may be set to display at browser startup or every ## hours

Fully conjoined policy updating

• Bi-directional Common Policy Console

• Policy changes replicated between peered Web and Email appliances

• Up to 18 appliances (9 Web + 9 Email) in any one peer group cluster

Web Appliance Email Appliance

Policy

HTTPS content scanning and analysis

• Cost option

• Full content scanning of HTTPS/SSL encrypted data

• Detects any malware or data leakage in encrypted traffic

• Flexible deployment i.e., create specific routes NOT to be scanned, e.g., “Financial”

• Also provides policy based certificate checking for added protection

CONTENTSafe Appliance

Data leakage - the stealththreat to business

The penalties can be significant

In 2006 the United States Veteran’s Administration lost the names and social security numbers of 27 million living ex-soldiers stored on an employee’s laptop computer stolen from a home office. This resulted in huge penalty costs and reputation damage for the VA and the US federal government

Source: www.usa.gov/veteransinfo/#FAQs

Cost isn’t be measured in dollars alone

In December 2006 retailer TJX announced that information from 45 million credit and debit cards from transactions in 2003 was stolen by hackers from its computer systems. The company couldn’t determine the extent of the breach or what customer information may have been compromised, nor could it quantify the financial impact of the breach. One credit union sent The TJX Companies an invoice for $590,000 to cover the monetary costs and reputational damage that the financial institution says it incurred as a result of the data breach.

Sources: www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=295516&source=rss_topic82

Compliance legislation

Sarbanes-Oxley• Safeguards on public accounting firms that audit

public companies

Gramm-Leach-Bliley Act (GLBA)• Rules for privacy and security of customer

information

Payment Card Industry (PCI)• Requires credit card information to be securely

sent and stored

Payment Card Industry (PCI)• Requires credit card information to be securely

sent and stored

EU Data Protection Directive• Sets standards for protecting personal data within

the European Union

FSA• Wide range of rule-making, investigatory and

enforcement powers in order to meet four statutory objectives; market confidence, public awareness, consumer protection and the reduction of financial crime.

SEC rules• Record retention of trader-broker

communication for 3 years

• Records stored in unalterable format, serialized and indexed for easy retrieval

• Brokerages must duplicate messages and associated indexes

NASD rules• Enforce policy correspondence for codes of

conduct

• Identify correspondence to be reviewed and

record supervisory activity

Health Insurance Portability and Accountability Act (HIPAA)

• Protect patient healthcare information to ensure privacy and confidentiality when electronically stored, maintained, or transmitted

• Penalties of up to $250,000 in fines and jail time of up to 10 years.

What is the scale of the problem?

81% of companies surveyed admit to data

breaches occurring over previous 12 months

39% involve confidential business information

27% involve personal information about customers

14% involve intellectual property (including software source code)

10% involve personal information about employees

Source: Ponemon Institute

1st Source Bank (1)

A.J. Falciani Realty (1)

ABC Phones (1)

ABN Amro Mortgage (1)

Academy Hearing Centres (1)

ACAP Security (1)

Administaff (1)

Administrative Systems Inc (1)

Adobe Systems (1)

Advance Auto Parts (1)

Advanced Medical Partners (1)

Affiliated Computer Services (1)

Affordable Realty (1)

Agilent Technologies (1)

Alaska Air Group (1)

Alliance Boots (1)

Allied Irish Bank (1)

Altman Weil (1)

American Airlines (1)

American Express (1)

Americhoice (1)

Anheuser-Busch Companies (1)

Antioch University (1)

Aon Consulting (1)

Applera Corporation (1)

Arapahoe Community College (1)

Archive America (1)

ARCO (1)

Arizona Board of Regents (1)

Arizona State University (1)

Art.com (1)

Associated Newspapers (1)

AstraZeneca (1)

Athens Regional Health Services (1)

ATT (2)

Attorney Gary Smith (1)

AW Direct (1)

Axcan Pharma (1)

Axcess Financial (1)

Axia (1)

Balmar Incorporated (1)

Bank of America (1)

Bank of Ireland (1)

Baptist Health System (1)

Barclays Bank PLC (1)

Bates College (1)

Battelle and Battelle (1)

Baxter International (1)

Bayer (1)

BearingPoint (1)

Best Western (1)

Binghamton University (1)

Bixler Incorporated (1)

BJs Wholesale Club (1)

Blockbuster (1)

Blog News (1)

BlueCross BlueShield (2)

BNY Mellon Shareowner Services (1)

Bolton Hospitals NHS Trust (1)

Bowling Green State University (1)

Bristol-Myers Squibb (1)

Broward County Public Schools (1)

BSDNews.com (1)

Buffalo State College (1)

Butte Community Bank (1)

Cabarrus County (1)

Calgary Health Region (1)

Capital Health (2)

Caremark (1)

Carmel Unified School District (1)

Carnegie Mellon University (1)

Cascade Healthcare Community (1)

Castlecroft Medical Practice (1)

Catalina Conservancy Divers (1)

Catholic Healthcare West (1)

CBIZ Benefits and Insurance (1)

Centocor (1)

Central Bank of the UAE (1)

Central Collection Bureau (1)

Central Connecticut State University (1)

Central Piedmont Community College (1)

Charter Communications (1)

Chilean Government (1)

Chipotle Mexican Grill (1)

Chrysler Corporation (1)

Chrysler Financial (1)

Citibank Student Loan Corporation (1)

Citizens Advice (1)

Citizens for Responsible Government Network (1)

City of Columbus (1)

City of Gary (1)

City of Minneola (FL) (1)

City of San Francisco (1)

City of Yuma (1)

City University of New York (1)

Clovis Unified School District (1)

CNET Networks (1)

CollegeInvest (1)

collier county (1)

Colt Express Outsourcing Services (1)

Columbia University (1)

Comcraft (MS) (1)

Commerce Bancorp (1)

Commerce Bank (1)

Concord's Community College (1)

Connecticut College (1)

Convio (1)

Cornerstone Fitness (1)

Cotton Traders Ltd. (1)

Countrywide Assured (1)

Countrywide Financial (1)

Cove Creek Mortgage (1)

Cross Country Staffing (1)

Crosslines Ministries (1)

Crown Stanley and Silverman (1)

Daemon News (1)

Daily Mail and General Trust (1)

Data in Transit (3)

Davidson Companies (1)

Davidson County (TN) (1)

Davita (1)

Daymon Worldwide (1)

De Anza College (1)

Delhaize Group (1)

Deloitte & Touche (1)

Department of Health and Human Services (1)

Desyne Web Services (1)

DHL International (1)

Dickson County School District (1)

Direct Marketing Services (1)

District of Columbia (1)

Dixie State College (1)

Dominican University (1)

Dominion Enterprises (1)

Domino's Pizza (1)

Downingtown Area School District (1)

Dudley Group of Hospitals (2)

Duke School of Law (1)

Duke University (2)

E.On (1)

East Tennessee State University (1)

Eastern Connecticut State University (1)

Eastern Sales and Marketing (NE) (1)

Eastern School District (1)

Ebay (1)

Edgewood Independent School District (1)

Edmonton Catholic School District (1)

EDS Corporation (1)

Electronic Data Systems (2)

Elliot Health System (1)

Emotive (1)

Employee Fraud (21)

Employee Mistake (56)

Employee Theft (2)

Fallon Community Health Plan (1)

Family Video (1)

Ferris State University (1)

Fidelity Investments (1)

Fidelity National Information Services (1)

First Calgary Savings (1)

First Magnus Financial (1)

Foreign and Commonwealth Office (1)

Franklin University (1)

Fresno County (1)

Front Range Mortgage (1)

Full Spectrum Lending (1)

Gander Mountain (1)

Gap Inc. (1)

GE Money (1)

Geeks.com (1)

General Internal Medicine of Lancaster (1)

Genica Corporation (1)

Genworth Financial (1)

Georgetown University (1)

GlaxoSmithKline (2)

Goldfish Card Services (1)

Government of Canada (4)

Government of Hong Kong (1)

Government of Ireland (1)

Government of Newfoundland and Labrador (1)

Grady Health System (1)

Greensboro Gynecology Associates (1)

Greenville County School District (1)

Greil Hospital (1)

Hack (53)

Hannaford Bros. Co (1)

Harris County (TX) (1)

Harvard University (1)

Health Net (2)

HealthNow New York (1)

HealthSpring (1)

Heinemann-Raintree (1)

Hewlett-Packard (1)

Hillsborough Community College (1)

HM Customs and Revenue (4)

HomeVisions.com (1)

Horizon Blue Cross Blue Shield (1)

Hough MacAdam and Wartnik (1)

Houghton Mifflin Harcourt (1)

HSBC Group (3)

Huron Consulting Group (1)

IAC/InterActiveCorp (1)

IKON Office Solutions (1)

Illinois Eye Center (1)

Illinois Tools Works (1)

Indiana State University (1)

Indiana University-Purdue University Fort Wayne

(1)

Indianapolis Power and Light (1)

Insecure Discard (37)

InterActive Financial Marketing Group (1)

Interbank FX (1)

Internal Revenue Service (1)

International Brokerage Dallas (1)

International Market Place (1)

Intrusion (20)

Invision HR Staffing Group (1)

Iowa State University (1)

Iron Mountain (2)

Isle of Wight NHS PCT (1)

IVAX (1)

J. Lohr Vineyards (1)

J.C. Penney (1)

Jobs.ie (1)

Johns Hopkins Hospital (1)

Johnson and Johnson (2)

Joliet Township High Schools (1)

Kansas State University (1)

Keller Independent School District (1)

Kellogg Community Federal Credit Union (1)

KimsCrafts (1)

King County Transportation Department (1)

Kingston Hospital (1)

Kingston Tax Service (1)

Kiski Area School District (1)

Kraft (2)

Kurt Bischoff Accounting (1)

L.A. Department of Water and Power (1)

Laboratory Corporation of America (1)

Las Cruces Public Schools (1)

Lasell College (1)

Layered Technologies (1)

LendingTree (1)

LexisNexis (1)

Lexmark (1)

LGT Group (1)

Liberty Furniture (NC) (1)

Lifeblood (1)

Lippincott Williams and Wilkins (1)

Lloyds TSB (1)

Loans.co.uk (1)

Long Island University (1)

Lost Device (19)

Lost Laptop (8)

Lost Media (2)

Lost Tape (15)

Louisiana Office of Student Financial Assistance

(1)

Loyola University (1)

LPL Financial (2)

Lunardi's (1)

Madeley Health Centre (1)

Mailing Error (12)

Major League Soccer (1)

Malware (7)

Marathon County (1)

McKesson Specialty Pharmaceutical (1)

Mecklenburg County (NC) (1)

Medisure (1)

Memorial Blood Centers (1)

Memorial Hospital (1)

Memorial University (1)

Merrill Lynch (1)

Microsoft (1)

Middle Tennessee State University (1)

Milwaukee County (2)

MLSGear.com (1)

Modesto City Schools (1)

Monroe Community College (1)

Monroe County (1)

Montana State University (2)

Montgomery Ward (1)

Monthly (1)

Moore Stephens Consulting (1)

Moraine Park Technical College (1)

MTV Networks (1)

National Guard Bureau (1)

National Heart Lung and Blood Institute (1)

National Institutes of Health (1)

Nationwide Building Society (1)

NatWest (1)

Naval Surface Warfare Center Dahlgren (1)

Nestle Waters North America (1)

Nevada Department of Public Safety (1)

Nevada State Democratic Party (1)

New England School of Law (1)

New Mexico State University (1)

New South Wales Government (1)

New York University (1)

NHS Trust (12)

NHTI (1)

Nobody Knows (7)

Northcliffe Media (1)

Northern Arizona University (1)

Northwest Missouri State University (1)

Northwestern Michigan College (1)

Not Your Average Joe's (1)

NSK Americas (1)

Oak Ridge National Laboratory (1)

Off-Topic (2)

Ohio University (1)

Okemo Mountain Resort (1)

Oklahoma County (1)

Oklahoma State University (1)

Oldham Primary Care Trust (1)

OmniAmerican Bank (1)

OneAmerica (1)

Oracle Corporation (1)

Oregon State University (1)

OSU Bookstore Inc (1)

Park National Corporation (1)

Pearson Education (1)

Pembroke Public Schools (1)

Pennine Acute Hospital Trust (1)

Pennsylvania State University (1)

People's United Bank (1)

Peter Roberts (1)

Petroleum Wholesale (1)

Pfizer (5)

PGM (1)

Phishing (4)

PinPay (1)

Pocono Mountain School District (1)

Poor Business Practice (26)

Poor Design (12)

Presbyterian Hospital (1)

Princeton Tower Club (1)

Printpack (1)

Promissor Corporation (1)

Providence Alaska Medical Center (1)

Prudential plc (1)

Purdue Pharma (1)

Purdue University (1)

Queen Mary's Sidcup Hospital (1)

Queens University of Charlotte (1)

Quest Diagnostics (1)

R.E. Moulton (1)

Recovery (1)

Rent-a-Center (1)

Rentway (1)

Republic of Korea (1)

Robotic Industries Association (1)

Roman Catholic Diocese of Providence (1)

Roses Only (1)

Royal Bank of Scotland (1)

Royal Bolton Hospital (1)

Royal Perth Hospital (1)

Russells Hall Hospital (1)

S and K Famous Brands (1)

S and K Menswear (1)

Saks Incorporated (1)

Salem Associates (1)

SalesForce.com (2)

Salt Lake Community College (1)

Sandown Health Centre (1)

Scarborough & Tweed (1)

Schering Plough (1)

SearsHomeCenter.com (1)

SearsRoomForKids.com (1)

SearsShowPlace.com (1)

Select Medical Corporation (1)

Semtech Corporation (1)

Serono (1)

Service Canada (2)

Siemens AG (1)

Skipton Building Society (1)

Skipton Financial Services (1)

Social Security Administration (1)

Sodexo (1)

SoftCard (1)

Southern Connecticut State University (2)

Southern Oregon University (1)

Specsavers (1)

Spring ISD (1)

SPX Corporation (1)

St Edmundsbury Borough Council (1)

St. Charles Medical Center (1)

Stanadyne Corporation (1)

Standard Life (1)

Stanford University (1)

Stanley Inc. (1)

State of Alabama (2)

State of California (2)

State of Colorado (2)

State of Connecticut (3)

State of Florida (3)

State of Georgia (1)

State of Iowa (1)

State of Maryland (3)

State of Massachusetts (2)

State of Minnesota (2)

State of Nevada (2)

State of New Mexico (1)

State of Ohio (1)

State of Oklahoma (2)

State of Pennsylvania (5)

State of Rhode Island (1)

State of South Carolina (1)

State of Tennessee (1)

State of Utah (2)

State of Virginia (1)

State of West Virginia (1)

State of Wisconsin (2)

State Street Corporation (1)

State University College at Brockport (1)

State University of New York (1)

Staten Island University Hospital (1)

Stedman's (1)

Stock and Options Solutions (1)

Stockport Primary Care Trust (1)

Stokes County Schools (1)

Stolen Computer (32)

Stolen Device (18)

Stolen Documents (3)

Stolen Laptop (105)

Stolen Tape (6)

Stryker Corporation (1)

SunGard Higher Education (1)

Super 8 Worldwide (1)

Sweetbay Supermarket (1)

Swimwear Boutique (1)

Sydney West Area Health Service (1)

Systematic Automation Inc (6)

T. Rowe Price (1)

Target Corporation (1)

TD Ameritrade (1)

TD Bank Financial Group (1)

TD Canada Trust (1)

Tel Sell (1)

Tele Atlas NV (1)

Tele2 (1)

Telford and Wrekin Primary Care Trust (1)

Tenet Healthcare (1)

Tennessee Tech University (2)

Texas A and M University (2)

Texas Insurance Claims Svcs (1)

The AES Corporation (1)

The Analysis Corporation (1)

The Bank of New York Mellon Corporation (1)

The Better Business Bureau (1)

The Dental Network (1)

The Hartford (1)

The Home Depot (1)

The Home Office (UK) (1)

The Hospital for Sick Children (1)

The Nature Conservancy (1)

The Princeton Review (1)

The Senior Source (1)

The Venetian Resort Hotel Casino (1)

Ticketmaster (1)

TNS (1)

Tokwiro Enterprises ENRG (1)

Torrance Unified School District (1)

Town of Wellesley (1)

TradeFreedom Securities (1)

Transportation Security Administration (3)

TRICARE (1)

Trinity College (1)

U.S. Department of State (1)

U.S. Foodservice (1)

U.S. Government (3)

UCLA Medical Center (1)

UK Ministry of Defence (1)

UKvisas (1)

UltimateBet.com (1)

Union Mortgage Services (1)

United States Air Force (1)

United States Army (3)

United States Navy (1)

United States Postal Service (1)

University Health Care (2)

University of Akron (2)

University of Arizona (1)

University of California (3)

University of Cincinnati (1)

University of Colorado (1)

University of Florida (3)

University of Georgia (1)

University of Glamorgan (1)

University of Illinois (1)

University of Iowa (2)

University of Kansas (1)

University of Maryland (1)

University of Massachusetts (1)

University of Miami (1)

University of Michigan (1)

University of Minnesota Physicians (1)

University of Nevada (1)

University of New Hampshire (1)

University of North Carolina at Charlotte (1)

University of South Carolina (2)

University of Texas System (2)

University of Toledo (2)

University of Utah (2)

University of Virginia (1)

University of Wisconsin (1)

Unknown (3)

update (1)

USinternetworking Inc. (3)

UT-Battelle LLC (1)

UTUIA (1)

VA Medical Center (2)

Verified Identity Pass (1)

Verisign (1)

Verizon Wireless (1)

Vertical Web Media (1)

VFS Global (1)

Viacom (1)

Village of Tinley Park (1)

Virgin Media (1)

Visa Services Northwest (1)

Voxant (1)

Wabash Valley Prison (1)

Wagner Resource Group (1)

WakeMed Emergency Department (1)

Washington "Metro" (1)

Waukesha County (1)

Wayne J. Griffin Electric (1)

Weber Law Firm (1)

Weekly (3)

Weill Cornell Medical Center (1)

WellCare Health Plans (1)

WellPoint (2)

Wells Fargo and Company (2)

Wendy's International (1)

Wesleyan University (1)

West Penn Allegheny Health System (1)

Western Carolina University (1)

Western Connecticut State University (1)

Wheeler's Moving Company (1)

Williamson County Schools (1)

Williamsville Central School District (1)

Willis North America (1)

WiseBuys Stores (1)

Wolters Kluwer (1)

Wolverhampton City PCT (1)

Workers Compensation Fund (1)

Wuesthoff Health System (1)

Wyndham Hotel Group (1)

XL Global Services (1)

Yahoo! (1)

Yale University (1)

York County (1)

YWCA Retirement Fund (1)

Sou

rce

: w

ww

.bre

achb

log

.com

DLP solutions:Costly and Complex?

• A total DLP solution need to install a DLP agent in endpoints, servers and in the Gateway

• Installing agents in the PC and notebooks is costly, intrusive and requires the training of the users and a heavy previous consultancy

• But… is it really required? According with the last reports most of the data leaks happends through the gateway.

• A DLP solution deployed in the gateway is protecting against more than 60-70% of the data leaks but it has a cost several times lower than an endpoint DLP solution.

ROI investing in DLP

0

5

10

15

20

25

30

0 1 2 3 4 5 6 7 8 9 10 11 12

$

Sec.

Lev

el

Sec

Where and what information is lost?

Source: Ponemon Institute based upon publicly reported leaks

2 in 3 losses (>66%)

via Email or Web 2 in 3 losses (>66%)

via Email or Web

Where’s the Data Leaked?What types of Data Leak?

Introduction - Clearswift Data Loss Prevention (DLP) today

Clearswift already offers -Multiple protocols || Common policy and management || Bi-directional protection || DLP & Boundary hygiene

……………………………………………………......….……………….………………………………………………………..………………..……………………………………………………......….……………….………………………………………………………..………………..

……………………………………………………......….……………….………………………………………………………..………………..……………………………………………………......….……………….………………………………………………………..………………..

……………………………………………………......….……………….………………………………………………………..………………..……………………………………………………......….……………….………………………………………………………..………………..

……………………………………………………......….……………….………………………………………………………..………………..……………………………………………………......….……………….………………………………………………………..………………..

MIMEsweeper DLP includes: • Enhanced deep content inspection• True file/data type recognition• Lexical analysis• Managed & User defined lists for HIPAA, SOX, SEC, Stock Trading• Profanity, harassment, paedophilia control• Image control

• Templates to detect PII and PCI data• Lexical expressions and scripts• IPR protection • Whole document checksum controls (SMTP)• Sender, recipient, direction, size, file-type• And more….

What is Clearswift CONTENTsafe™?

• An extension to MIMEsweeper’s data loss prevention capabilities

• Designed to allow ‘line of business’ staff to easily identify and protect their highly confidential information

• Providing a central repository for protected document checksums

• With the checksums used to deliver policy driven security control over documented information and all of its constituent parts

• Integrates with any MIMEsweeper e-mail or web* gateway security solution

* MIMEsweeper Web & Email appliances by mid-2009

What additional data loss capabilities does CONTENTsafe™ provide?

• Universal identification of sensitive content

• Protocol agnostic content detection

• Mapping of individual user network locations for sensitive information

• Creation of checksums with a guaranteed 150 character match rate

• Automatic scanning of file & document locations for new documents & changes to existing documents

• Document protection expiry rules & dates

• Granular roles based user access & user delegation

• Multi-language and multi-byte character support

• White-listing to minimize false positives

How does CONTENTsafe™ work?

101101

001001

101110

Match

Status

Data Creator

101101

001001

101110

User Mail / Web Appliance

CONTENTSafe Appliance

What file types are protected by CONTENTsafe™?

• Uses MIMEsweeper deep content inspection so can extract documents from zip, tar, TNEF etc.

• Able to checksum/fingerprint content from: – CDA, HTML, Ichitaro, MS Excel, Outlook file attachment, MS

PowerPoint, MS Project, MS Word, Open document text, Open document spreadsheet, Open document presentation, Open document formula, Open document drawing, Open document master, PDF, PEM message if not encrypted, PGP message if not encrypted, RTF encoded HTML, text, XML, Script

What is the performance of CONTENTsafe?

• A single CONTENTsafe appliance is designed to protect up to 500,000 documents

• A single CONTENTsafe appliance is able to process 1 million e-mail queries per day with negligible impact on e-mail throughput

• The average time to check a message from SMTP is less than 50ms + any network latency

* These results were obtained via simulation as part of the ongoing development testing

How is CONTENTsafe™ available?

500,000 document capacity500,000 document capacity

Hardened 64bit Linux applianceHardened 64bit Linux appliance

Global & UserManagement/Auditing/Reporting

Global & UserManagement/Auditing/Reporting

Business roles administrationBusiness roles administration

• Whole document detection• Document extract detection• Document extract white-listing

• Whole document detection• Document extract detection• Document extract white-listing

Violation alertingViolation alerting

Document registration via:• Network locations,• Uploaded documents• Pasting text fragments

Document registration via:• Network locations,• Uploaded documents• Pasting text fragments

Individual user areasIndividual user areas

Questions?

Clearswift Overview