Advanced Email Security

Efficient protection against spam, viruses, and intruders.

Install Silverlight

Exchange 2010 makes it easier to protect both your data and messaging system. With Exchange 2010, you get:

  • Automatic encryption at both the channel and message levels to help control access to data and ensure trusted communications both inside and outside the network
  • Multi-layered anti-spam filtering comes with continuous updates to help guard against increasingly sophisticated spam and phishing threats
  • To protect against malware, leading anti-virus solutions can be integrated throughout the Exchange 2010 network
  • For premium protection, Microsoft Forefront Online Protection for Exchange and Forefront Protection 2010 for Exchange Server offer multiple virus-scanning engines and multi-layered antispam protection for your online or on-premises email environment.

Key features

All channels used to transmit messages within an organization are automatically encrypted by default. Transport Layer Security (TLS) encryption is used for server-to-server traffic and Secure Socket Layer (SSL) is used for client access traffic (Outlook Web App and Exchange ActiveSync).
For mail sent outside the organization, Exchange 2010 will automatically establish secure connections with SMTP hosts that support TLS encryption. Exchange 2010 also supports mutual TLS authentication where each server verifies the identity of the other server by validating a certificate provided by the other server. Messages that have successfully traveled over the secured path from an authenticated sender are displayed to users as Domain Secured in Outlook and Outlook Web App.
When used with Active Directory Rights Management Services (AD RMS), Exchange 2010 enables users to compose, read, and reply to IRM-protected messages using Outlook Web App and Exchange ActiveSync. Exchange 2010 also enables an administrator or delegated user to create policies that automatically apply IRM protection to email (including Office and XPS attachments) using transport rules. Additionally, IRM-protected messages can be searched, filtered and decrypted for journaling purposes.
Secure Multipurpose Internet Mail Extensions (S/MIME) enables users to send signed and encrypted email to one another from a variety of devices, including Outlook, Outlook Web App, and Windows Phone using Exchange ActiveSync.
Designed to minimize the attack surface, the Edge Transport server is deployed as a standalone server at the network perimeter and handles all Internet-facing mail flow. It also comes with built-in anti-spam agents and runs anti-virus solutions including its own anti-virus defense mechanisms.
Exchange 2010 can collect data from users’ anti-spam Safe Recipients Lists, Safe Senders Lists, Blocked Senders Lists and make this data immediately available to the anti-spam agents. This can help reduce instances of false-positives and enable more aggressive filtering.
The Edge Transport server role includes a tiered system of anti-spam filtering agents that filter at the connection, sender, recipient, and content levels of a message. Administrators can customize each agent and incorporate real-time block and allow lists. Exchange 2010 also includes support for Sender ID, an email industry initiative designed to verify the legitimacy of email addresses and prevent phishing scams. To effectively protect against worms delivered via email, the administrator can also filter and strip Microsoft Office system files.
Exchange 2010 comes with the online Forefront Online Protection for Exchange (FOPE) and the on-premises Forefront Protection 2010 for Exchange Server (FPE) through the Enterprise Client Access License (ECAL). Forefront Protection products offer multi-engine, multi layered anti-virus and antispam protection along with 24x7 support at no additional cost. FOPE also comes with five financially backed SLAs for 100% known viruses, 98% spam and 99.999% uptime.
With Forefront Protection 2010 for Exchange and Forefront Online Protection for Exchange, Exchange 2010 is the only leading messaging solution to offer multiple scanning engines in a single solution. Multiple-engine scanning is proven to promote faster detection rates of new threats than single-engine solutions (AV-Test.org).
Leading anti-virus solutions including Forefront Protection 2010 can be integrated at both the SMTP and routing levels of the Edge and Transport servers. Solutions can also be installed directly on mailbox servers using the advanced Virus Scanning API (VS API). This helps to catch viruses that may have evaded scanning or entered the network via PCs or other devices without anti-virus software installed.
Each scanned message is stamped with an Anti-virus Transport Stamp in Exchange 2010 to ensure that if a message is scanned once at an Edge or Hub server it does not need to be scanned again later in the pipeline, making virus scanning more efficient.
As a reactive defense mechanism, Edge Transport rules provide a layer of protection before anti-virus signature updates become available. Administrators can filter on known text patterns in malware carriers and drop the connection.

Why Microsoft?

Built-in, multi-layered, anti-spam filtering

Built-in, multi-layered, anti-spam filtering

Multi-engine anti-virus protection

Multi-engine anti-virus protection

Hosted and on-premises protection with a unified management console

Hosted and on-premises protection with a unified management console

For more reasons why click here
For more reasons why click here

Next Steps

Product Details
Downloads
Contact Us

Related Sites