Due to the fact that email is one of the main channels through which malware and spam are distributed nowadays, it is essential that an effective mail server security solution is in place. The new Kaspersky Security for Microsoft Exchange ensures world-class anti-malware and anti-spam protection of your Microsoft Exchange mail servers (including latest 2013 version) thanks to the new, powerful antimalware engine, comprehensive antimalware scanning of messages and intelligent spam detection. As a result, not only your mail servers, but also your corporate network stays malware- and spam-free while maximizing business productivity. Moreover content-aware DLP module is available* to deal with channel data leakages.
Powerful technologies enable increased scanning speed with reduced system resource consumption.
The application offers complete protection of Microsoft Exchange Server and is compatible with DAG (Database Availability Group).
Kaspersky Security for Microsoft Exchange offers flexible, user-friendly settings to ensure spam and anti-malware protection that meets your business security goals.
The application carries out anti-spam scanning of messages written in different languages, including Asian language sets.
Outgoing emails are analyzed and messages or attachments that contain confidential corporate data or sensitive information are automatically registered – and can also be automatically blocked. DLP module already contains predefined glossaries for main complainces including HIPAA and PCI DSS.
The engine ensures increased performance and stability with minimum memory requirements.
The application scans all messages for spam based on formal attributes such as the sender's email and IP address, the size of message and message header. In addition, the content of messages and attachments is analyzed using intelligent technologies including unique graphical signatures which detect spam in the form of images. Kaspersky Security for Exchange includes integration with Kaspersky Security Network (KSN) – to access Kaspersky’s cloud-based database and obtain real-time information about new spam.
You now have the option of using Reputation Filtering — an additional anti-spam scanning service that increases the accuracy of spam detection and reduces the probability of Anti-Spam false positives.
For additional protection against spam, messages are scanned using DNSBL lists of spammers' addresses and SURBL technology which detects spammer URLs in the message.
As administrator, you can configure separate processing rules for each category of unsolicited mail to prevent any loss of information. For instance, messages that are known to be spam can be blocked; suspicious mail can be directed straight to the Unwanted Mail folder; and formal messages such as message delivery and message read confirmations can go directly to the Inbox.
There is a facility for individual users to create their own trusted (white) and black lists by sender's SMTP or IP address. A white list can also be created using the receiver's SMTP address. Any message received from a white-listed sender is not scanned and is delivered straight to the recipient. However, if the address is black-listed the message it will be tagged with a special heading and processed according to the rules configured by you, the administrator.
The program detects and removes all types of viruses, worms, Trojans and other malicious objects from the stream of incoming and outgoing messages, including attachments in almost any format. It detects and removes not only known malware but also potentially dangerous programs.
All folders and messages stored on the server are subject to background scanning to ensure that all objects are processed using the latest version of the antivirus databases. This has minimal impact on server load.
Before deleting messages, the application makes backup copies so that it is possible to restore important information if attempts to treat an object result in failure or if a message was incorrectly categorized as spam. A wide range of search parameters make it easier for you to find objects in the backup storage area.
In addition to detecting specific types of data – such as personal details and payment card data – the application also scans emails for words or phrases that are contained in a range of pre-installed, themed glossaries, including ‘Finance’, ‘Administration Documents’ and ‘Offensive & Obscene Vocabulary’. This can be a valuable tool in helping businesses to protect sensitive information and achieve regulatory compliance.
Each of the standard glossaries is regularly updated. However, administrators can also set up their own custom glossaries that contain keywords and phrases that are relevant to their business or to specific projects. The application will then block outgoing emails that contain any of these words. Glossaries can also be created using query language.
Structured data can also be used as a search object. This enables the blocking of any message that contains a combination of specific data types – or the blocking of messages that contain data in complex arrays, such as customer databases.
A single administrative console (built into the Microsoft Management Console) with centralized reporting and backup to control all your Exchange servers.
You can configure the application based on your company's IT security policy and hardware capabilities. For example, you can exclude certain file types from scanning or configure the spam intensity level. You can also configure antivirus and anti-spam processing scenarios for different message categories, create white and blacklists by senders' or receivers' addresses, etc.
Updates to antivirus databases are available on demand or can be completed automatically according to a schedule. You can either download updates directly from the Kaspersky Lab website or from a local server. If required, you can update antivirus and spam recognition databases separately.
The administrative interface is based on the popular Microsoft Management Console with remote administration being an option.
You can monitor the operation of the application and the antivirus protection status using the detailed HTML reports or by viewing the Windows event log. You have complete control over the frequency with which reports are generated and the information to be included in them. All reports can be stored on the hard drive or sent via email.
As the administrator, you can receive notifications about any critical events in the application's operation, either by email or by viewing the Windows event log.
Whenever the application detects confidential information within an outgoing email or attachment – and blocks the message – the email sender’s manager will receive an alert about the potential breach of security. Administrators can also access detailed information about each email blocking incident.
Security management and the management of confidential information distribution can be assigned to different personnel or job roles.
The product supports the following versions of Microsoft Exchange Server:
The server must be running one of the following versions of Microsoft Windows:
The product requires SQL Server installed locally or remotely. The supported versions of Microsoft SQL Server are: