Page 3 of 3

Because DHS uses the part of the message that the malicious senders have the least control over, the message headers, it catches their antics, regardless of content, language or presentation tricks.

Because DHS scans a bounded fraction of each message, it can operate very quickly, regardless of message size. Without lies to slow them down, valid messages are generally processed faster than malicious ones, effectively giving them preferential processing treatment. A relatively inexpensive server can screen 75 message headers per second for signs of deception.

Finally, DHS requires far less maintenance than other tools because of the constancy of deception in malicious e-mail.

DHS supplies the missing piece in the puzzle of traditional filtering: the e-mail protocol layer. By understanding the structure of e-mail messages and separating the deceptive from the truthful, DHS can nearly eliminate the remaining e-mail-borne threats to an enterprise.

With this level of protection, the load on antivirus servers drops by nearly half, and the risks to desktop systems, and their users, are dramatically reduced.

Richardson is vice president of development for MessageGate.

---