Access member only content, take part in discussions with comments on blogs, news and reviews and receive all the latest security industry news directly to your inbox. Join now for free.
A confirmation email has been sent to your email address - SUPPLIED EMAIL HERE. Please click on the link in the email to verify your email address. You need to verify your email before you can start posting.
If you do not receive your confirmation email within the next few minutes, it may be because the email has been captured by a junk mail filter. Please ensure you add the domain @scmagazine.com.au to your white-listed senders.
SoftScan services clients around the world, but while its support hours are European, 24x7 telephone support is available for a fee.
The service both supports TLS encryption for mail in transit, and offers integration with third-party mail encryption services — filtering even encrypted messages by forwarding encrypted/signed messages to a third party, then filtering on the unencrypted message returned.
Long-term archival is scheduled for immediate deployment, but was not live at the time of testing, and web proxy scanning is also due for rollout soon.
SoftScan’s GUI is probably the most aesthetically pleasing web interface to an email MSSP we have seen, very Spartan and showing only options relevant to the task currently displayed.
While some users might prefer a more persistent menu to be always available, we quite liked the simplicity of SoftScan’s approach. It was slow to load some pages, though, even with such a lightweight interface.
We particularly liked a facility that checked on the operational status of any scanning “towers” assigned to the account.
The service allows for complex rules to be set up, filtering against any part of the message headers and optionally demanding TLS to be used. More simple score-based rules complement these well, although no message body filtering is provided, making the service rather limited in terms of policy management.
Reporting is simple, but good enough, and we liked the ability to generate daily or weekly reports analyzing rule behavior, and have these sent by email. This would be particularly useful for managers tracking particular policy enforcement.
Per-user quarantine is available, and the service integrates with LDAP directories at the client end to ensure user lists are kept consistent and up-to-date. We liked the “invitation” approach, sending emails to invite users to configure their quarantine and tracking which have done so.
Overall, this is a better-than-average service providing what we would expect with a couple of omissions. The mail encryption support is very good and we would like to see other service providers stepping up in similar fashion with crypto-partners.
To begin commenting right away, you can log in below or register an account if you don't yet have one. Please read our guidelines on commenting. Offending posts will be removed and your access may be suspended. Abusive or obscene language will not be tolerated. The comments below do not necessarily reflect the views or opinions of SC Magazine, Haymarket Media or its employees.