Content security policy

You define your content policy from the Policy Center Home Page.

Tell me about...

• Content rules

  Content rules are the email processing rules of your content security policy. Each content rule states that if a message meets a specified set of conditions, the Policy Engine will perform a specified set of actions.

  When you configure content rules in your ARgon Server, you set What to look for? clauses and What to do? actions for each rule.

• Policy references

  Policy references are items that can be referenced when you define your security policy. For example, you can add the Informs reference to your policy route to send notifications when specific content rule conditions are met.

  For a list of policy references and what action they perform, see the About Policy Reference topic.

• Email Address lists

  An Email Address List is a grouping of email addresses of one or more users to whom you want to apply a common policy. Such groupings typically represent users who share a common link within your organization, for example:

  • Functional groupings, for example, a Sales department or regional office
  • Role-oriented groupings, for example, managers
  • Relational groupings, for example, company partners

  For more information, see the About Email Address Lists topic.

• Mail policy routes and how they relate to Email Address lists

  A mail policy route defines a "From" and "To" list of addresses. You configure these address lists from within your ARgon Server UI.

  A policy route must reference two Address Lists to define the mail route on which the policy route will be applied. One Address List supplies the sender address, and the other Address List supplies the recipient address.

  Your ARgon Server starter policy contains My Company and Anyone address lists.

  You apply a default decryption, delivery, and disposal action for messages that are matched with the route. You can, if required, apply content rules to the route to provide extra flexibility to the route.

  For more information, see the About Policy Routes topic.

• How the ARgon Server processes messages

  Your ARgon Server is typically located inside your organization's DMZ. It receives incoming mail for your organization, and outgoing mail from your mail servers, and processes each message according to your content security policy. The main policy outcome for each message may be 'deliver', 'hold' (place in a message area), 'non-deliver', 'drop' (delete), or 'relay to another server'.

  If the policy outcome for an incoming message is 'deliver', Clearswift ARgon Server typically sends the message to your internal mail server. If the policy outcome for an outgoing message is 'deliver', Clearswift ARgon for Email typically routes the message using DNS, or sends it on to your external mail server.

  For detailed steps describing the processing of incoming mail, see the How Clearswift ARgon Server Processes Messages topic.

• Adaptive redaction and sanitization

  With Adaptive Redaction you can detect and manage sensitive data from information that flows through your ARgon Server. For example, a credit card number identified in a communication can be obscured before it is viewed by the recipient. Adaptive redaction can apply to documents, attachments and media types. For more information on using this feature, see Adaptive redaction.

  You use Sanitization to detect and remove active content, embedded content, URLs or hyperlinks, scripts or macros and document properties from communications. Sanitization purges potential harmful content from documents, attachments and media types. For more information on using this feature, see Sanitization.

See also...

• How Policy is Applied to Routes