Sophos Email Security and Data Protection 3.4
March 01, 2010
- Ease of Use:
- Value for Money:
- Overall Rating:
- Strengths: This includes all the typical bells and whistles for email security and content management. Excellent focus on data leakage and compliance.
- Weaknesses: None that we could find.
- Verdict: Overall, a great product at a tremendous value for the money. We recognize this product as our Best Buy.
The Sophos Email Security and Data Protection solution is a hardware appliance that acts as an email security and content management gateway supporting downstream SMTP architectures. The appliance offers anti-spam, anti-virus, content filtering and encryption capabilities all controlled by policy triggers.
The appliance setup was as easy as it gets, with regard to getting an appliance up and running. From an overall feature and performance perspective, the Sophos solution was definitely one of the most impressive appliances at this particular price point.
The feature set includes all the typical anti-spam and anti-virus technologies, but there is a little bit of a different twist on message encryption. Gateway encryption via TLS comes standard; however, message encryption is handled a bit differently. When a policy flags a particular email, the message is handled by Sophos' SPX protection. This protection ultimately packages the message into a PDF file for the recipient. The goal of this mechanism is to eliminate key exchanges and other productivity obstacles with regard to most standard encryption architectures. Whether this is a good or bad thing is a subjective decision of the target buyer. Another unique feature that may seemingly be targeted for mid-sized company administrators is the ability to "auto detect" your LDAP or directory settings. Our test Active Directory LDAP information populated automatically after simply entering in a few fields of data.
What really impressed us is the Sophos approach to flagging sensitive content within email messages. The company uses CCL (content control lists), which come pre-packaged with an impressive and extensive dictionary of sensitive terms that can be flagged via policy. The ability to add your own dictionary and terms (although we're not sure you'll need to) is also present. Overall, the focus on data leakage is noticeable and Sophos does a great job with the flexibility that an administrator can apply to both inbound and outbound messages. Lastly, the appliance can be clustered for high availability as well.
Documentation on the appliance and the Sophos website are both top-notch. 24/7 phone and email support, plus remote monitoring of the appliance, is included in the price. Additional tiers (premium and platinum) are available as well.
Sign up to our newsletters
SC Magazine Articles
- Popular adult website XTube compromised, delivers malware
- Android vulnerability leaves apps open to malicious overwriting
- One in three of the top million websites are 'risky,' researchers find
- Orgs predict $53M risk, on average, from crypto key, digital cert attacks
- Hanjuan Exploit Kit leveraged in malvertising campaign
- Report: 71 percent of orgs were successfully attacked in 2014
- Self-deleting malware targets home routers to gather information
- 'PoSeidon' point-of-sale malware targets payment card information
- Amedisys notifies nearly 7,000 individuals of potential breach
- Report: More than 15,000 vulnerabilities in nearly 4,000 applications reported in 2014
- The best defense is a good offense: The importance of securing your endpoints
- British Airways says rewards accounts hacked, locked down
- Documents on NSA's zero-day policy provide little insight, EFF says
- GitHub on DDoS alert, efforts to curb its largest attack continue
- Shadow data: The monster that isn't just under your bed