NoSpamProxy Sandbox Service

32Guards Sandbox Service offers security

Effective anti-spam software, e-mail gateways and firewalls are now part of the basic configuration of any proper IT landscape. However, these conventional protection mechanisms are no longer sufficient: To enable comprehensive security, NoSpamProxy uses a cloud-based sandbox technology that reliably detects malicious files and quickly distributes this knowledge using comprehensive swarm intelligence. Intelligent spam filters also ensure that most threats are detected before sandboxing has to be used. The additional benefit: less time and resources required, as well as less strain on networks and infrastructures.

What does the 32Guards Sandbox Service do?

The 32Guards Sandbox Service analyzes files and the so-called command-and-control traffic, i.e. the data exchange between an infected computer and its "master" in the network. Before a file is uploaded to the sandbox by NoSpamProxy, NoSpamProxy creates a hash value and asks the sandbox whether it already knows the hash. If the hash is known, it also asks whether the hash is good or bad. This is referred to as level 1 (hash query) and level 2 (file upload). The files to be checked are transferred to the sandbox in encrypted form. To make the checking process as efficient as possible, an expected behaviour is predicted based on the file type (static analysis) and an environment optimized for this prediction is started up (dynamic analysis).

Advantages:

• Analysis of potentially harmful files in a secure environment
• Secure despite sandbox evasion
• Less time and resources required
• Relieved networks and infrastructures
• Fast defense against cyber attacks
• Available in the cloud and on the server