File Security Screener
File Security Screener
Importing files into secure environments poses a great security threat if the files are not properly sanitized before transfer. The File Security Screener is a high assurance Cross Domain Solution with malware security scanning and content disarm and reconstruction capabilities.
Secure file import
Transferring files between security domains pose risks to the integrity and confidentiality of the receiving system. Malware in your secret network may exfiltrate information, perform sabotage by altering or make information inaccessible by ransomware. To avoid above, all entry points must secure the data before it is imported. Advenica’s Cross Domain Solutions provide efficient and automated counter measures for malwares and at the same time assure separation for the connected networks.
Unidirectional assurance
Advenica’s File Security Screener is designed for the national security segment as well as other high security environments like critical infrastructure. The solution provides:
- Malware scanning by integrating to any third-party solution such as OPSWAT MetaDefender Core and sandboxing environments.
- High assurance protection from information leaks by using Advenica´s Data Diodes.
- High assurance separation between different import sources by the use of Advenica´s Data Diodes.
- Caching of data to be scanned, allowing service on the central equipment without data loss.
- Customizable import rules based on the source of the information and the file type.
- Scalable solution with ability to increase the number of connected source networks or increase throughput.
File sanitation
The File Security Screener is designed to automatically handle files and security scanning. Only allow-listed file types will be security scanned, sanitized and transferred. The degree of security scanning and sanitation required before importing a file may vary based on the trust of the source network. File Security Screener can be configured to act differently based on source, trust-levels and many other criteria. The File Security Screener provides an efficient, scalable and trusted solution for secure file import.
Configurable actions
The file transfer behaviour is controlled in the File Security Screener by a Ruleset. The Ruleset defines which actions that should be taken on a file depending on external source, file type and result from one or several qualification engines. The Ruleset also includes configuration for prioritisation of file types from one or more sources, archiving of transfered files and setting valid responses from third party scanning.
Third party scanning functions
Third party scanning functions can be e.g. antivirus, mathematical/statistical functions, custom sandboxes or CDR engines (Content Disarm and Reconstruction). In the normal setup of the solution, antivirus scanning is handled by third party software (OPSWAT MetaDefender Core). Interfaces to other third party functions can be supplied as addons through Advenica´s Professional Services. If interface to several third party scanning functions exist, the Ruleset allows you to define if one or several scanning functions shall be applied to a single file before allowing it to be imported.
