GateScanner - Smart made simple

WHAT IS CONTENT DISARM AND RECONSTRUCTION (CDR) TECHNOLOGY?

Also known as ‘file sanitization’ or ‘content sanitization’, Content Disarm and Reconstruction (CDR) is an advanced network security technology that achieves superior results in the prevention of file-based attacks – such as those utilized by APT’s, ransomware and zero-day attacks –  by effectively blocking the entry phase of these attacks
Content Disarm and Reconstruction applied to incoming content, such as email messages and attachments, portable media uploads, web downloads and cloud-shares –  generates for each incoming file, a fresh copy that is functionally identical yet completely devoid of foreign/malicious content, replacing the original file with a new one on the fly.

How DOES CONTENT DISARM AND RECONSTRUCTION (CDR) TECHNOLOGY WORK?

Content Disarm and Reconstruction dissects each incoming (or outgoing) file to its most elementary components and scans them with NextGen AI and multi-AV tools. It then proceeds to reconstitute the files in accordance with their original vendor specifications, disrupting any remaining, undetected (‘signature-less’) malware in the process (see our ‘Before & After CDR Processing‘ file samples page). 
A good CDR solution combines deep deconstruction/reconstitution resolution, coupled with high system throughput.

One major benefit for the network security team is that CDR eliminates the reliance on user judgement or user compliance, since all incoming content is disarmed directly upon entry, before users have an opportunity to interact with it.

An added benefit of CDR is the capacity to apply precision data redaction on the outgoing content stream, enabling the prevention of data exfiltration and data-loss (DLP), and to support data-protection and privacy compliance policies (GDPR/CCPA) .

Content Disarm and Reconstruction stages

  • File deconstructed to its elementary components
  • Deep threat detection ('deep CDR'): TrueType identification, highly optimized Multi-AV scans, NextGen AI detection, file signature verification - applied to each component
  • Proprietary file disarm of the components from any potentially harmful components like macros, scripts, embedded elements
  • Advanced file reconstruction, removing in the process undetectable weaponized content, exploits and all components that do not meet the designated security policy
GateScanner Content Disarm and Reconstruction (CDR) technology

Why GateScanner?

Excellence. We are certain that our CDR technology is practically impregnable. Our clients’ independent penetration tests repeatedly show up to 99.99 % success rates in the obstruction of unknown, embedded file-based threats, and that’s the bottom line  – but it’s not the whole story.

Modularity. Adding a new component to an existing system can be a major challenge, and flexibility is key to a successful implementation. With this in mind, we built GateScanner to be a modular, highly configurable and easily scalable system. Pick and choose any part of the CDR process you want to implement, select which channels to protect, and chain up to ten GateScanner engines on-the-fly to achieve virtually unlimited processing capacity.

Easily Integrated. Challenged to deliver unique solutions for a wide variety of client configurations, we developed an integration engine, enabling the insertion of GateScanner content sanitization at any point along the data flow, before or after any existing security tools, notching-up the entire security profile of the network.  

Customizable. For us, every client is an opportunity to get creative. Our highly dedicated development team works closely with each client to fulfill their most ambitious goals.
We look forward to creating your solution!


Experience. GateScanner is in continuous development since 2013. With a widely diverse client-base, ranging from government security agencies and defense contractors, through multi-national industries, critical infrastructure providers, to financial institutions and national healthcare providers, we have consistently proven our ability and maintained our clients’ trust as testified by their renewed commitments, year after year.

GateScanner features:

GateScanner achieves prevention levels of up to 99.99% for undetectable threats, protecting organizations from APT’s, Zero-days, ransomware and other file-based attacks.

CDR deep-scans of deconstructed files with multi antivirus tools, including Next-Gen AI/ML AV, reaching detection levels of up to 2.5 times the rate of detection for the original composite file scan.

Hundreds of file types supported including the entire suite of MS Office, PDF, media files (images, audio, video), AutoCad, Hanword (HWP), Archives, PST, .EML, installation files, XML, HTML, other text files, medical imaging files (DICOM), and customized files. (See “Before & After CDR processing” samples page).

Extreme flexibility – the GateScanner solution is modular, scalable and highly configurable
Built-in external-tools integration optimizes performance of all existing security tools

GateScanner implements CDR technology to protect email, portable media uploads, cross-network file transfers, safe browser downloads, Cloud-based file shares, computing appliances and to enable cross domain solutions with unidirectional gateways.

All processing is on the client side. No vendor involvement

Sasa Software is privately owned by Kibbutz Sasa, Israel, with the majority of profits channeled back into R&D.  

GATESCANNER Suite Datasheet

join the newsletter

Sasa Software

Providing  comprehensive CDR-based network security solutions.

  • US Government ITAR IT compliant
  • ISO 27001 & 27799 Certified
  • Approved by the Israeli and Singaporean Cyber Commands
Find out more
Facebook Youtube Linkedin Twitter
Facebook Youtube Linkedin Twitter
EULA
privacy
helpdesk
Blog

Copyright © 2021 – Sasa Software

Scroll to Top