Spamina

Technology

SPAMINA EMAIL FIREWALL and SPAMINA EMAIL SERVICE FIREWALL

SPAMINA EMAIL FIREWALL / SPAMINA EMAIL SERVICE FIREWALL is an email security solution with form of appliance or service which can be integrated into the most recognized hardware platform in the market. Together with HD, SPAMINA provides an extremely efficient protection for company’s email.

SPAMINA is based on dynamic multi-layered systems which combine different filters and protection mechanisms. These filters are updated, motorized and modified continuously, carefully in order to optimise the system’s performance in every moment. The aim of SPAMINA is to achieve the best filtering system, minimizing the time that administrators and users spend on solving spam problems. To accomplish that, the proper technologies (trust list, registering by promotion…) and improved standard technologies (RBLs, Bayesian nets, black and white lists, grey listing…) are put into practice. To achieve this aim, we update daily and automatically all of our services and products with the latest anti-malware technological advances.

Thanks to this combination of the best technology in the market, SPAMINA makes possible to reduce the load on the client’s server. It eliminates spam, virus and phishing so that the final server only receives the validate email which normally occupy less than 10% of the total received emails.


Filters applied by SPAMINA:

  • White /Black lists: A difference in comparison to other anti-spam filter systems, SPAMINA can firstly put into application the IP white / black lists. In this way, it can assure clients only receive emails from the specific servers although they would have been marked as servers with bad reputation.
  • IPs reputation: The second filter layer is for IP and RBLs. It checks the origin server’s reputation from studying its historical and actual performance. This layer can categorize  email and eliminate nearly 90% of spam. This process does not only reduce a huge amount of spam but also cut the connection efficiently with spammer even before receiving his email. When spammer notices this rejection, he will abandon the attacks on this server. Furthermore, in order to avoid the false positive, SPAMINA won’t delete any email in, at least, 2 of the checked 6 RBLs.
  • White /Black lists of email address o domain: In order to avoid the false positive, either adminitrator or user can upload validate email addresses and domains.
  • Trust list: The trust lists are formed automatically with the validate email addresses received regularly by users. These lists are personalized and also generated automatically according to a proper algorithm that SPAMINA guarantees the reliability of the email accounts. Thanks to the trust lists,  the false positive can be avoided with any user’s intervention.
  • SPF: The Sender Policy Framework guarantees the server’s from which SPAMINA receives emails are authorized to send email to other specified domains. With this technology, spoofing or identity stolen can be prevented. But in order to use SPF, the origin servers should be configured correctly.
  • SenderDomval: Verifies the existence of sender’s domain in order to eliminate inward email from nonexistent domains.
  • SenderCallout: Verifies the existence of sender’s account in order not eliminate this inward email.
  • GreyListing: Email is categorized according to the possibility of being validated or not. If an email receives low score shows that it does not assure about its legislate status, the greylisting will be applied and it will give a temporarily error to the sender’s server. If it is spam server, normally it won’t intend again; but if the email is validate, its server has the obligation (if it is correctly configured) to re-send it again.
  • Delay: Email is categorized according to the possibility of being validated or not. If an email receives low score shows that it does not assure about its legitimate status, a connection delay will be applied to penalise the sender’s server. If it is a spam server, losing time will not be interested and the connection between will be stopped.
  • Content Filter: It is allowed to create a personalized filter systems by administrator and individual users. These systems can be created by companies or users by analyzing email based on its content or words, performing as the correspondent configuration from the web interface.
  • Bogofilter and SpamAssassin: SPAMINA uses Bogofilter and SpamAssassin. These are based on different anti-spam technique which passes from the Bayesian filters to the DNS exam and Data Base search. Rules and tests are included in these two systems and depend on the spam type, they are always being adjusted to obtain an optimized capacity of anti-spam.
    • “Headers” inspection: “Headers” o headlines contain important information about the message itself.
    • Message analysis: By searching the key words or message structure, SpamAssassin is able to read the text and the title.
    • Bayesian / Probabilistic analysis: Once the initial standards are set up, probabilistic analysis will be made in order to bring out the similarities among inward messages and the ones were previously marked as spam.
    • “Hash” list / Email signature: Since a spam message is usually sent to thousands of people at the same time, every message structure is identical in all forms, this causes and unequivocal hash. SpamAssasin will search the “Hashes” list of known messages.
  • Antivirus: The virus analysis is applied to all the incoming emails, regardless of whether they are validated or spam. The anti-virus updates automatically. It is also possible to deactivate the antivirus filter from the control panel.
  • SPAMINA Footprinting: Detects if the message is sent by SPAMINA using a special signature within the email.
  • Out-going Filter: SPAMINA not only filters the inward email but also the outward emails. There is also possibility of configuring a maximum number of addressees: users, domains o companies, for whom the sending emails are forbidden.

Once the email is marked validated, the anti-virus can work independently. All depend on the option selected by administrator o user when they want to personalize their own filter system.


AUTOMATIC FILTER MODE

This technology is based on Open-Source systems (SpamAssasin and Bogofilter) where apply the Bayesian filter and DNS-based exam or external data bases search. In order or guarantee the efficiency, more than 600 rules are applied.

These two systems provide rules and tests which are constantly adjusted in order to obtain the best performance against all types of spam. Without having user’s interfere, these two systems can satisfy the needs, optimize the system’s efficiency and avoid false positive at the same time.

GUARANTEED FILTER MODE

Existence of sender addresses will be verified if it is on the white list, and is the verification is positive, this message will be delivered immediately. If not, the message will be sent to the original sender explaining that an anti-spam service is being used on the side of receiver and the sender must click a link to verify his domain o account. Once the sender finished the validation, the message will be delivered to the destination and all future messages from this address will be accepted. In case the sender does not proceed validation, it is allows for the receiver validate manually in order not to lose any messages. SPAMINA follows recommendation of REC3834 to prevent collateral spam generation.

Filter Diagarm

Filter Diagarm


OTHER FEATURES

High Availability

We offer solutions with high availability based on cluster mode “active-active”. This system is different from other products. It allows us not only support the traffic point in doble server, but also during this process, there will be no lost of information in case of incidence.  These information will be stored externally so there will no over load and externally instalation of  HW on the side of users. It is also no necessary to have a exclusive server dedicated to the cluster control which could causes the limitation on the HW.

Email continuity

In case of the user’s server shutdown, SPAMINA will continue receiving email externaly and store it for  the delivery later as soon as the server is recovered. In this way, no emails will be rejected. Meanwhile, users can access and work in their accounts through webmail o control panel.

Flexibility for registration

In order to have more flexibility, SPAMINA offers 4 different registration modes for users to choose.

Manual registration: Administrator is in charge of registrating each user account manually. This option is recommended only in case they want to reduce number of users.

Auto-registration for SMTP call out or LDAP: SPAMINA does auto-registration when users start to receive emails but before that, SPAMINA will check if the receivers’ email addresses exist in the final server or not. This check can be carried out directly against the SMTP server o a LDAP server. Afterwards, create the user’s account if the address existed, if not, reject his email.

Registration for promotion: This mechanism designed by SPAMINA allows the final users decide whether they want to protect their email accounts. This mechanism of promotion will be activated when an email is sent for users who have not registered but his address belong to a domain which is protected by SPAMINA. Together with this email, an invitation will be sent also to the final users for them to decide if they want to protect their account against spam:

> Activate: protects email account against spam, virus and phishing.
> Reject: Users who have this registration accounts only has the basic filter but not the quarantine nor the content filter.


Access to email content

SPAMINA gives administrator power to access to all the email content passed through the filters system. This option will be configured by the SPAMINA technician if the system refuse the administrator access to his users’ email.

Deliver lines and independent email storage

SPAMINA has two lines to deliver and save emails in an independent way. This means, in case of problem on email storage in one line, this message delivery won’t be affected and vice versa. It gives a big convenience to users to access to their email account all time long.


Integration

Either in the service or the appliance mode, SPAMINA is working independently from our clients’ email server. Also it offers possibility to use the corporate LDAP  for email validation and user authentification.


Virtualization

VMware has a virtual system of software. It is a program simulated a physical system (one computer, one hardware) with the characteristics of a certain hardware (eg: SPAMINA EMAIL FIREWALL) and also offers a simulated working environment with all the effect which can offer a computer.

Our experiences and collaboration with VMware allow our appliance solution mode can be adapted in virtualized platforms and out users can enjoy the benefits from both of our products. One of the major benefits is cost reduction, flexibility, efforts and portability of the logical resources pool.

Meanwhile in traditional systems, it is necessary to focus the efforts separately; on the contrary, in this new system, administrator can accomplish a completely centralized administration (maintenance, back-up or contingency plans) of the resources. Also, it is possible to separate the resources from the base of the operation system from the one dedicated to our product or other running applications. Furthermore, any failure or detention in any of the virtual process does not affect the others.

The monitorization will be the only physical system which assigns the load and the necessary configuration fro every virtual machine in a dynamic way without any penalization. It is necessary that the scalability of this architecture allows, easily, expanding the dedicated recourses without changes in the hardware.

For these reasons, concerning its architecture design of the email security, the virtualized SPAMINA EMAIL FIREWALL is the unique that no administrator can ignore.