Real-Time Antivirus and Anti-Malware Scanning at the Gateway
Because the Antivirus and Anti-Malware Software Blade is installed at the gateway, it can stop infections before they have a chance to affect users. This eliminates the cost of remediation, work outages and sensitive data loss.
Continuous Download Scanning
Continuous download scanning analyzes files for infection as they are downloaded. If a virus is detected during the scan, file delivery to the client is immediately terminated, preventing the infection from taking hold. Specific file types can be excluded from continuous download scanning, if needed.
Inspect SSL Encrypted Traffic
Scan and secure SSL encrypted traffic passing through the gateway. When traffic is passed through, the gateway decrypts the traffic with the sender’s public key, inspects and protects, then re-encrypts, sending the newly encrypted content to the receiver.
Granularly define exceptions for SSL inspection to protect user privacy and comply with corporate policy. Some encrypted content passing through the gateway should not be inspected, and therefore can be bypassed with a simple administrator policy definition.
Scan By Direction
The scan by direction feature allows users to detect and scan files moving in a particular direction, such as to or from external networks or when crossing a demilitarized zone (DMZ). Configuration is done by direction, not by host, enabling security managers to enforce broader policies with simpler rules. Exceptions are also supported, allowing specific users or network devices to transfer files without constraints.
Centralized and Granular Policy Configuration and Enforcement
Network-wide policies can be configured centrally once and then applied across the entire security domain. These include highly granular policies that, for example, designate which specific network connections are to be scanned.
Archived File Support
As archived files flow over the network they are decompressed and scanned for viruses and malware in real-time. Archives, including nested archives, of any size are supported.
Integrated into Check Point Software Blade Architecture
The Antivirus & Anti-Malware Software Blade is integrated into the Software Blade Architecture. It can be easily and rapidly activated on existing Check Point Security Gateways saving time and reducing costs by leveraging existing security infrastructure.
Full integration into the modular Software Blade Architecture allows for rapid and easy activation on any Check Point security gateway.