Working on the perimeter, the Web Guard acts as an application layer proxy performing deep content inspection and applying configurable content policies to allow, deny or modify requests/reponses to/from a Web server.



Deep content inspection –

examines requests and responses for the presence of known threats and the possibility of accidental data loss

Granular policy rules –

block, pass or modify requests and responses based on source, destination, user, group, content type, data type, label or phrase

Market leading protection –

for protectively marked content, including support for document labels carried in header/footer and document properties

Scans encrypted traffic –

checking the content of HTTP(s) communication and files shared over DSFSP for potential threats and policy violations

Enforcing Checks

Web Guard uses Deep Content Inspection to examine content for both inbound threats and outbound data loss. A market leader in enforcing checks on clearances and security labels in content, it is used by some of the most security-conscious organisations in the world.


Request a demo Contact us




Deep Secure File Sharing Protocol DSFSP


Can apply policy rules to over 200 file formats including:

Office formats (Microsoft Office, PDF, etc.)

Image formats

Structured data (JSON, XML, etc.)



  • Cloud

  • Physical

  • Virtual


Web Guard can be deployed on a Linux or Solaris server. For systems that face the most sophisticated attackers, the Web Guard can be deployed on Deep-Secure’s Bastion platform, utilising Oracle’s Solaris 10 Trusted Extensions operating system to maintain physical network separation.


Optionally, it can also be deployed alongside a GX Appliance to add threat removal to Web browsing, or be deployed alonside an iX appliance to add threat removal to a file sharing application.


Request a demo Contact us