Feeds

Mirapoint adds directory to email gateway

Local anti-spam checks mean less network load

Choosing a cloud hosting partner with confidence

Mirapoint has developed what it says is the first secure email gateway with a built-in directory and policy engine. According to the company, this increases security and lightens the load on the gateway because it no longer has to query the corporate directory server through the firewall for every incoming message.

The directory software is now a standard feature on Mirapoint's RazorGate appliances and will be a free upgrade to customers on support contracts, said Mike Dodson, the company's security accounts technical director.

He said that the Mirapoint directory software can copy email addresses and associated policies - but not more sensitive data such as passwords or user names - from a variety of LDAP servers, such as Active Directory, Domino or eDirectory. It also has features to detect and prevent directory harvesting, he added.

"Historically, the gateway would have a steady stream of traffic going back to the directory - checking for valid recipients, whether they can receive that type of attachment, and so on," he explained. "The problem is that spikes in email traffic are passed on to the directory servers.

"Also, email gateways are hardened, but if your gateway server were ever compromised, the attacker would be able to attack your directory. This way, the most they could get is a list of email addresses."

But doesn't the addition of policy enforcement increase the workload on the email appliance, reducing the amount of email it can handle? Dodson claimed not.

"Quite the opposite," he said. "Now when we query the directory it's process-to-process, not over the network, so it works in our favour. We actually get a marginal performance improvement."

He claimed that while the technology to replicate directory data is pretty standard in the metadata world, this is the first time it has been used in an email appliance.

The increasing importance of the directory in messaging means that Mirapoint's competitors are sure to follow suit, but Dodson suggested that integrating the replication technology and the directory into the email appliance, and providing the right management tools, would take them many months. ®

Intelligent flash storage arrays

More from The Register

next story
Regin: The super-spyware the security industry has been silent about
NSA fingered as likely source of complex malware family
Why did it take antivirus giants YEARS to drill into super-scary Regin? Symantec responds...
FYI this isn't just going to target Windows, Linux and OS X fans
Privacy bods offer GOV SPY VICTIMS a FREE SPYWARE SNIFFER
Looks for gov malware that evades most antivirus
Home Office: Fancy flogging us some SECRET SPY GEAR?
If you do, tell NOBODY what it's for or how it works
Patch NOW! Microsoft slings emergency bug fix at Windows admins
Vulnerability promotes lusers to domain overlords ... oops
HACKERS can DELETE SURVEILLANCE DVRS remotely – report
Hikvision devices wide open to hacking, claim securobods
'Regin': The 'New Stuxnet' spook-grade SOFTWARE WEAPON described
'A degree of technical competence rarely seen'
Syrian Electronic Army in news site 'hack' POP-UP MAYHEM
Gigya redirect exploit blamed for pop-rageous ploy
prev story

Whitepapers

Designing and building an open ITOA architecture
Learn about a new IT data taxonomy defined by the four data sources of IT visibility: wire, machine, agent, and synthetic data sets.
Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
5 critical considerations for enterprise cloud backup
Key considerations when evaluating cloud backup solutions to ensure adequate protection security and availability of enterprise data.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Managing SSL certificates with ease
The lack of operational efficiencies and compliance pitfalls associated with poor SSL certificate management, and how the right SSL certificate management tool can help.