February 01, 2006
ca. $1.85 per user per month for 5,000 users
- Ease of Use:
- Value for Money:
- Overall Rating:
- Strengths: Supports outsourced mail encryption.
- Weaknesses: No help facility in the GUI and no message-body scanning.
- Verdict: A good service, average in some areas, surprisingly impressive in others.
SoftScan services clients around the world, but while its support hours are European, 24x7 telephone support is available for a fee.
The service both supports TLS encryption for mail in transit, and offers integration with third-party mail encryption services — filtering even encrypted messages by forwarding encrypted/signed messages to a third party, then filtering on the unencrypted message returned.
Long-term archival is scheduled for immediate deployment, but was not live at the time of testing, and web proxy scanning is also due for rollout soon.
SoftScan’s GUI is probably the most aesthetically pleasing web interface to an email MSSP we have seen, very Spartan and showing only options relevant to the task currently displayed.
While some users might prefer a more persistent menu to be always available, we quite liked the simplicity of SoftScan’s approach. It was slow to load some pages, though, even with such a lightweight interface.
We particularly liked a facility that checked on the operational status of any scanning “towers” assigned to the account.
The service allows for complex rules to be set up, filtering against any part of the message headers and optionally demanding TLS to be used. More simple score-based rules complement these well, although no message body filtering is provided, making the service rather limited in terms of policy management.
Reporting is simple, but good enough, and we liked the ability to generate daily or weekly reports analyzing rule behavior, and have these sent by email. This would be particularly useful for managers tracking particular policy enforcement.
Per-user quarantine is available, and the service integrates with LDAP directories at the client end to ensure user lists are kept consistent and up-to-date. We liked the “invitation” approach, sending emails to invite users to configure their quarantine and tracking which have done so.
Overall, this is a better-than-average service providing what we would expect with a couple of omissions. The mail encryption support is very good and we would like to see other service providers stepping up in similar fashion with crypto-partners.
SC Webcasts UK
Information Security Manager
Infosec People - Hammersmith, West London
Information Security Risk Manager, £45-55k + bens
Infosec People - West Midlands, England, Coventry
SOC Analyst, Aldershot, £55-63k + benefits
Infosec People - England, Aldershot, Hampshire
Security Architect, Cardiff - to £70k Basic
Infosec People - Cardiff, Wales
Interim CISO (Chief Information Security Officer) - Cyber Security Director
CYBER EXECS - London (Central), London (Greater)
Sign up to our newsletters
SC Magazine UK Articles
- Gooligan ad fraud malware infects 1.3M Android users, installs over 2M unwanted apps
- Met Police grab suspect with phone unlocked to get hold of data
- Cyber-security must reflect risk not just regulation
- Data centres are on the move - where will they end up?
- Same fate befalls Post Office broadband as hit DT?
- SC Awards Europe 2016 winners announcements!
- ISIS radicalises 'lone wolves' through strong social media presence
- Updated: How will Brexit affect the cyber-security industry in UK and Europe?
- 9.2 million medical records for sale on darkweb
- Microsoft Office 365 hit with massive Cerber ransomware attack, report
- Former Expedia IT employee admits to hacking execs from the inside
- Cyber-insurance: What will you be able to claim for and is it worth it?
- Levelling the playing field against targeted attacks
- India Supreme Court calls on tech giants to curb sexual assault, cyber-crime
- IoTSF conference: EU should become de facto regulator