As malware sandbox evasion techniques improve, the use of CDR at the email gateway, as a supplement or alternative to sandboxing will increase. CDR breaks down files into their discrete components, strips away anything that doesn’t conform to that file type’s original specs or company policies, and rebuilds a clean version that continues to the intended destination. This real-time process removes zero-day malware exploits without impacting business productivity.
GARTNER
Organizations should consider using Content Disarm and Reconstruction (CDR) technology to strip or neuter active content found in commonly used file types and documents.
GARTNER
CDR provides the highest security to limit the risk of malware upload.
GARTNER
It breaks down files into their discrete components, strips away anything that doesn’t conform to that file type’s original specification, ISO standard or company policy, and rebuilds a “clean” version. This near-real-time process is an effective and efficient approach to removing malware and exploits from files. Although sandboxing and almost all other techniques depend on detection, CDR protects against exploits and weaponized content that have not been seen before.
GARTNER
