Техническая Спецификация для Cisco Cisco Email Security Appliance X1050
© 2016 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information.
Page 3 of 9
Capability
Description
Outbreak filters
Outbreak filters defend against emerging threats and blended attacks. They can issue rules on any combination of six
parameters, including file type, file name, file size, and URLs in a message. As Talos learns more about an outbreak, it can
modify rules and release messages from quarantine accordingly. Outbreak filters can also rewrite URLs linked in suspicious
messages. When clicked, the new URLs redirect the recipient through the
parameters, including file type, file name, file size, and URLs in a message. As Talos learns more about an outbreak, it can
modify rules and release messages from quarantine accordingly. Outbreak filters can also rewrite URLs linked in suspicious
messages. When clicked, the new URLs redirect the recipient through the
y proxy. The website content is
then actively scanned, and outbreak filters will display a block screen to the user if the site contains malware.
Web interaction
tracking
tracking
A fully integrated solution allows IT administrators to track the end users who click URLs that have been rewritten by the
Email Security Appliance. Reports show:
Email Security Appliance. Reports show:
● Top users who clicked malicious URLs
● The top malicious URLs clicked by end users
● Date and time, rewrite reason, and action taken on the URLs
● The top malicious URLs clicked by end users
● Date and time, rewrite reason, and action taken on the URLs
The admin can also trace back to all the messages containing the particular URL.
Outbound
message control
message control
Email Security Appliances control outbound messages through DLP, email encryption. This control helps ensure that your
most important messages comply with industry standards and are protected in transit. Additionally, outbound antispam and
antivirus scanning, along with outbound rate limiting, can be used to keep compromised machines or accounts from getting
your company on email blacklists. New: The Email Security Appliance now supports Secure/Multipurpose Internet Mail
Extensions (S/MIME) encryption and signing in addition to Transport Layer Security (TLS).
most important messages comply with industry standards and are protected in transit. Additionally, outbound antispam and
antivirus scanning, along with outbound rate limiting, can be used to keep compromised machines or accounts from getting
your company on email blacklists. New: The Email Security Appliance now supports Secure/Multipurpose Internet Mail
Extensions (S/MIME) encryption and signing in addition to Transport Layer Security (TLS).
Forged Email
Detection
Detection
Forged Email Detection protects against spoofing attacks, which focus on executives also known as high-value targets.
Forged Email Detection helps you block these customized attacks with a dedicated content filter. This feature provides
detailed logs on all attempts and actions taken.
Forged Email Detection helps you block these customized attacks with a dedicated content filter. This feature provides
detailed logs on all attempts and actions taken.
The security appliances quickly block new inbound email viruses. Domain delivery queues keep undeliverable emails from
causing a backup of critical deliveries to other domains. This solution offers an industry-leading spam catch rate greater
than 99.9 percent and false positive rate of less than 1 in 1 million.
causing a backup of critical deliveries to other domains. This solution offers an industry-leading spam catch rate greater
than 99.9 percent and false positive rate of less than 1 in 1 million.
DLP
You can use one or more predefined policies (there are more than 100 to choose from) to help prevent confidential data
from leaving the network. If you prefer, you can use parts of those predefined policies to create your own custom policies.
The built-in RSA email DLP engine uses pretuned data structures along with your own optional data points such as words,
phrases, dictionaries, and regular expressions to quickly create accurate policies with few false positives. The DLP engine
scores violations by severity, so you can apply different levels of remediation to fit your needs.
from leaving the network. If you prefer, you can use parts of those predefined policies to create your own custom policies.
The built-in RSA email DLP engine uses pretuned data structures along with your own optional data points such as words,
phrases, dictionaries, and regular expressions to quickly create accurate policies with few false positives. The DLP engine
scores violations by severity, so you can apply different levels of remediation to fit your needs.
Low cost
A small footprint, an easy setup, and the automated management of updates mean savings for the life of your email security
solution. Cisco’s solution has one of the lowest TCOs available.
solution. Cisco’s solution has one of the lowest TCOs available.
Flexible
deployment
deployment
All Cisco email security solutions share a simple approach to implementation. The system setup wizard can handle even
complex environments and will have you up and protected in just minutes, making you safer, fast. Licensing is user based,
not device based, so you can apply it per user instead of per device to provide inbound as well as outbound email gateway
protection at no additional cost. This capability lets you scan outbound messages with antispam and antivirus engines to
fully support your business needs.
complex environments and will have you up and protected in just minutes, making you safer, fast. Licensing is user based,
not device based, so you can apply it per user instead of per device to provide inbound as well as outbound email gateway
protection at no additional cost. This capability lets you scan outbound messages with antispam and antivirus engines to
fully support your business needs.
The virtual appliance offers all the same features as the physical appliance, with the added convenience and cost savings of
a virtual deployment model. It offers instant self-service provisioning. With a Cisco Email Security Virtual Appliance license,
you can deploy email security gateways in your network without Internet connections. This license has purchased software
licenses embedded in it. You can apply licenses at any time to a new virtual image file stored locally. Pristine virtual image
files can be cloned if needed, giving you the ability to deploy several email security gateways immediately.
a virtual deployment model. It offers instant self-service provisioning. With a Cisco Email Security Virtual Appliance license,
you can deploy email security gateways in your network without Internet connections. This license has purchased software
licenses embedded in it. You can apply licenses at any time to a new virtual image file stored locally. Pristine virtual image
files can be cloned if needed, giving you the ability to deploy several email security gateways immediately.
You can run hardware and virtual email security solutions in the same deployment. So your small branch offices or remote
locations can have the same protection you get at headquarters without the need to install and support hardware at those
locations. You can easily manage custom deployments with the
locations can have the same protection you get at headquarters without the need to install and support hardware at those
locations. You can easily manage custom deployments with the
Solutions that fit
your business
your business
is a comprehensive and highly reliable service with software, computing power, and support.
The co-managed user interface is identical to that of the Cisco physical and virtual email security appliances. You therefore
get outstanding protection with little administrative overhead and no onsite hardware to monitor and manage. Microsoft
Office 365 customers can also get the same industry-leading protection with Cloud Email Security for Office 365. This
solution is easy to deploy, and you can count on guaranteed reliability through multiple resilient data centers for the highest
levels of service availability and data protection.
get outstanding protection with little administrative overhead and no onsite hardware to monitor and manage. Microsoft
Office 365 customers can also get the same industry-leading protection with Cloud Email Security for Office 365. This
solution is easy to deploy, and you can count on guaranteed reliability through multiple resilient data centers for the highest
levels of service availability and data protection.
The hybrid solution gives you advanced outbound control of sensitive messages on site while helping you take advantage of
the cost-effective convenience of the cloud.
the cost-effective convenience of the cloud.
You can also change the number of on-premises versus cloud users at any time throughout the term of your contract,
assuming the total number of users does not change. This allows for deployment flexibility as your organization’s needs
change.
assuming the total number of users does not change. This allows for deployment flexibility as your organization’s needs
change.
On-premises hardware and virtual appliances come ready to plug in. You can choose the model that works best for your
environment to protect inbound and outbound messages at your gateway.
environment to protect inbound and outbound messages at your gateway.