Working on the perimeter, the Policy Engine Guard acts as an application layer proxy performing deep content inspection and applying configurable content policies to pass/block/quarantine or modify content in email, Web, Web application and file transfers.



Advanced content security policies –

by source, destination, user, group, content type, label, phrase, signed and/or encrypted content.

Data type identification –

application of policy according to data type.

Labelling –

identification of unstructured (user-defined text) and structured X.841 security labels and application of policy determining how data with different labels is treated, based on clearances.

Lexical analysis –

detection of words or phrases wherever they are embedded within content.

Authentication –

Address validation rule checks (email) NTLM Authentication of users (Web).

Integrity –

validation of S/MIME signed messages (email).

Secrecy –

deep content inspection of encrypted messages (email) and Web browsing.

Enforcing Checks

The Policy Engine Guard uses Deep Content Inspection to examine content for both inbound threats and outbound data loss. A market leader in enforcing checks on clearances and security labels in content, it is used by some of the most security-conscious organisations in the world.


Request a demo Contact us




X.400 Military Messaging 


Office formats (Microsoft Office, PDF, etc.)

Image formats

Structured data (JSON, XML, etc.)



  • Physical

  • Virtual


The Policy Engine Guard can be deployed on a Linux or Solaris server. For systems that face the most sophisticated attackers, the Engine Guard can be deployed on Deep-Secure’s Bastion platform, utilising Oracle’s Solaris 10 Trusted Extensions operating system to maintain physical network separation.


Request a demo Contact us 

Content Transformation means removing every threat without relying on detection or isolation, guaranteeing safe content with exceptional user experience.

Dr Simon Wiseman


Digital Purity with 100% efficacy

Contact Us