What is Content Disarm and Reconstruction?
Content Disarm and Reconstruction (CDR) is a process for cleaning incoming files from potentially malicious content before delivering them to the end user. It is also known as ‘data sanitation’.
The CDR process is as follows:
With CDR, when a user downloads a file, only the clean file is delivered, with any potentially malicious code removed. In conjunction with RBI, CDR provides comprehensive malware protection for both web browsing activities and files downloads.
Learn How to Protect Networks Against Malicious Code Hidden in Files
CDR protects the end user computer from all kinds of malware, even zero-day threats, because it removes all unexpected content from a file. This is in contrast to traditional anti-malware software that relies on detecting malware based on a database of known threats.
As CDR doesn’t rely on a database, no time-consuming, frequent updates are needed to keep it working effectively. There are also fewer security incidents as malware infections are prevented to begin with.
A good CDR solution will work quickly in the background, as files are downloaded. Users can continue working undisrupted while CDR works in real-time to prevent malware infection. Organizations can also allow their users more freedom to access content, with less restrictive Internet policies, when CDR is used.
CDR works to protect an organizational network from cyber threats that originate in files from many sources, including: