The document discusses threats from spam, phishing, and malware emails and outlines solutions from KVH MailScan MX. KVH MailScan MX provides a secure email filtering service operated within Japan that filters emails through advanced techniques with over 99.9% accuracy. It reduces security risks and costs compared to on-site email security systems while maintaining full control and visibility through a customizable portal.

6. KVH MailScan MX Functions Inbound email filtering Filter emails which may be harmful including malware, spam or phishing fraud etc. to block them before being received, thus protecting corporate systems and improving operational efficiency Outbound email filtering If a large number of spam mails are sent from your email address, your address might be registered to Real-time Blackhole List (RBL) and blocked from operation for several days. KVH MailScan MX avoids such events by filtering emails sent for virus and spam Portal Administration Advanced portal site enables you to read the sent/received email report and filtered email list. Customized tuning is also available by setting policies (whitelist/blacklist) or customized email rules SmartRules filtering Inbound or outbound emails can have customized rules to block file types, redirect emails to other users etc. An infinite range of rules can be created including data loss prevention (DLP) to limit emails with sensitive company data leaving your network

7. KVH MailScan MX Filtering Model

8. KVH MailScan MX Filtering Details RBL Realtime Blackhole LIsts (RBLs) are lists of IP addresses used by known spammers, open mail relays and botnet-infected networks. MailScan MX uses RBLs from a commercial provider. IP Rate Limiting IP rate limiting ensures incoming SMTP connections do not send excessive amounts of email to the MailScan MX platform. These rate limits are managed by MailScan MX's operations staff. RFC Enforcement This classifier ensures that incoming SMTP connections conform to Internet standards. SMTP connections that don't conform to RFCs are treated as dirty and we refuse service to these connections. "Received:" Headers Verification This classifier verifies the "Received:" headers inside an email to check whether the email has traversed spammer or low reputation networks. Envelope Rate Limiting Envelope rate limiting refers to limiting the number of times a sending host can change the sending domain in any single SMTP session. Hosts that frequently change their sending domain are likely to be spoofing the domain. SPF Sender Policy Framework is a set of IP addresses or hostnames that can send email from that domain. These records are stored as TXT records in DNS and are a great way to prevent spoofing attacks. User Authentication The user authentication layer verifies incoming emails against lists of known users at the customer's site. This prevents emails destined for non-existent users being sent to the customers mail server. MailScan MX SmartRules MailScan MX's SmartRules product is a powerful email content manipulation engine. It allows site administrators to define complex rules about what type of content is allowed to enter or leave their site. It also allows for lists of common content types such as attachment names, MIME (AKA file) types, groups of users and or email content. MailScan MX Policy Classifier This classifier allows for simple whitelisting and blacklisting to be performed on email entering or leaving a customers site. Email policies can be set on incoming as well as outgoing mail and can apply to email addresses, domain names, IP addresses and certain headers.

10. System Configuration Internet Internet Primary Site MailScan MX One-Stop-Solutions combining KVH Internet Access or KVH’s EtherMAN network services are also available to fit your business needs Secondary Site MailScan MX KVH MailScan MX is built on carrier-grade redundant infrastructure