Antivirus & Anti-Malware Software Blade
Network security at the gateway stops threats before they spread
- Continuous scanning analyzes files for infection as they are downloaded
- Includes scan by direction and archived file decompression and scanning
- Protects against threats transmitted through HTTP, FTP, SMTP, POP3 protocols
Simplified configuration with low management overhead
- Configure network policies once – apply across the entire security domain
- Continuous updates protect against emerging threats in real-time
- Familiar Check Point interfaces ease management – policies, logging, monitoring
Integrated into Check Point Software Blade Architecture
- Activate antivirus and anti-malware on any Check Point security gateway
- Saves time and reduces costs by leveraging existing security infrastructure
Real-Time Antivirus and Anti-Malware Scanning at the Gateway
Because the Antivirus and Anti-Malware Software Blade is installed at the gateway, it can stop infections before they have a chance to affect users. This eliminates the cost of remediation, work outages and sensitive data loss.
Continuous Download Scanning
Continuous download scanning analyzes files for infection as they are downloaded. If a virus is detected during the scan, file delivery to the client is immediately terminated, preventing the infection from taking hold.
Continuous download scanning analyzes files for infection as they are downloaded. If a virus is detected during the scan, file delivery to the client is immediately terminated, preventing the infection from taking hold. Specific file types can be excluded from continuous download scanning, if needed.
Inspect SSL Encrypted Traffic
Scan and secure SSL encrypted traffic passing through the gateway.
Scan and secure SSL encrypted traffic passing through the gateway. When traffic is passed through, the gateway decrypts the traffic with the sender’s public key, inspects and protects, then re-encrypts, sending the newly encrypted content to the receiver.
Granularly define exceptions for SSL inspection to protect user privacy and comply with corporate policy. Some encrypted content passing through the gateway should not be inspected, and therefore can be bypassed with a simple administrator policy definition.
Scan By Direction
The scan by direction feature allows users to detect and scan files moving in a particular direction, such as to or from external networks or when crossing a demilitarized zone (DMZ).
The scan by direction feature allows users to detect and scan files moving in a particular direction, such as to or from external networks or when crossing a demilitarized zone (DMZ). Configuration is done by direction, not by host, enabling security managers to enforce broader policies with simpler rules. Exceptions are also supported, allowing specific users or network devices to transfer files without constraints.
Centralized and Granular Policy Configuration and Enforcement
Network-wide policies can be configured centrally once and then applied across the entire security domain. These include highly granular policies that, for example, designate which specific network connections are to be scanned.
Archived File Support
As archived files flow over the network they are decompressed and scanned for viruses and malware in real-time. Archives, including nested archives, of any size are supported.
Integrated into Check Point Software Blade Architecture
The Antivirus & Anti-Malware Software Blade is integrated into the Software Blade Architecture. It can be easily and rapidly activated on existing Check Point Security Gateways saving time and reducing costs by leveraging existing security infrastructure.
Full integration into the modular Software Blade Architecture allows for rapid and easy activation on any Check Point security gateway.
Specifications
| Feature | Details |
|---|---|
| Antivirus Protection Protocols | Protects HTTP, FTP, POP3 and SMTP |
| Anti-Spyware Blocks | Pattern-based spyware blocking at the gateway |
| Antivirus and Anti-Spyware Protection Updates | Centralized, daily updates; automatic and manual updates |
| Granular Scanning by File Types | By more than 70 different file types that are constantly updated |
| Options | File-based AV or protocol-based AV |
| Supported Appliances |
Check Point 61000, 21400, 12000, 4000, and 2200 Appliances |
| Supported Operating Systems | SecurePlatform |
- Products A-Z
- Appliances
- Appliances Overview
- 2200 Appliances
- 4000 Appliances
- 12000 Appliances
- 21400 Appliance
- 61000 Security System
- SecurityPower
- Power-1
- UTM-1
- Series 80
- UTM-1 Edge
- IP Appliances
- VSX-1
- DLP-1
- IPS-1
- Safe@Office
- Smart-1
- Smart-1 SmartEvent
- Integrated Appliance Solution
- IAS Bladed Hardware
- Software Blades
- Software Blades Overview
- Security Gateway
- Firewall
- IPSec VPN
- IPS
- Mobile Access
- Application Control
- Identity Awareness
- DLP
- Web Security
- URL Filtering
- Anti-Bot
- Antivirus & Anti-Malware
- Anti-Spam & Email Security
- Advanced Networking & Clustering
- Voice over IP (VoIP)
- Security Management
- Network Policy Management
- Endpoint Policy Management
- Logging & Status
- SmartWorkflow
- Monitoring
- Management Portal
- User Directory
- SmartProvisioning
- SmartReporter
- SmartEvent
- Multi-Domain Security Management
- Virtualization Security
- Security Gateway Virtual Edition
- Cloud Security
- Virtual Appliance for Amazon Web Services
- Security Systems
- Security Systems Overview
- Endpoint Security
- Endpoint Security
- Full Disk Encryption
- Media Encryption
- Anti-Malware & Program Control
- Remote Access VPN
- Firewall & Compliance
- Check Point WebCheck
- Check Point GO
- Solutions
- Remote Access
- Consumer Products
- ZoneAlarm Antivirus
- ZoneAlarm ForceField
- ZoneAlarm Internet Security Suite