#25 TOP TIPfor Globalscape EFT Server
As part of an organisation’s IT security process, it is advisable to scan incoming and outgoing data for malicious content.
ICAP (Internet Content Adaption Protocol) delivers Antivirus (AV) and Data Loss Prevention (DLP) through an HTTP interface. EFT Enterprise supports connections to an ICAP Server using the Content Integrity Control (CIC) module. After version 7.4.7, which was released in May 2018, the CIC module now forms part of the Advanced Security Module (ASM).
ICAP servers accept requests in one of two ways. The primary way is in ‘Response’ mode. This simply replies to a file request with a Pass or Fail, usually as a numeric code. In this way the ICAP Scanner is acting as a checkpoint, approving files for processing or stopping them if they break rules defined by system administrators.
ICAP connections are configured as a server-wide profile and scans are usually executed as a part of an event rule.
Checking for incoming viruses
Checking outgoing files
- Trend Micro
In addition to these, EFT should be able to communicate with any solution which uses the ICAP protocol. Pro2col have also tested Clearswift, which has AntiVirus and DLP capabilities built into a single solution.
If you are interested in finding out more about ICAP scanning with EFT, or would like support getting it up and running in your organisation, please get in touch.