Reflexion offers powerful and effective capabilities not found in any other solution on the market.
1. Wide range of capabilities and blended defense provide maximum user control
Email users often have a favorite method of dealing with unwanted content and senders. Some people like the precision of Allow / Block Lists to authorize or block specific senders or domains (often called "whitelisting" and "blacklisting"); others prefer the simplicity of content filtering; still others like the added effectiveness of challenge-response methods. A similar range of preferences exists for handling the messages classified as spam – some users want a daily email summary of blocked email, others want to examine their spam quarantine folder directly, still others may choose to divert their daily quarantine summary to an assistant for checking, while some may not want to be bothered with checking spam folders at all, and elect to have any offending mail vaporized.
Reflexion's service has the versatility to accommodate all of these preferences, and more. Importantly, capabilities can be blended to provide more effective protection than can be achieved by using any one technique independently. In particular, customer experience shows that by combining content-independent techniques, such as Protective Addresses, with content-based filtering techniques, Reflexion yields dramatic improvements in user control over inbox access.
2. Address-on-the-Fly™ Assures Delivery and Protects the User's Primary Address.
Address-on-the-Fly (AOTF) provides users with a unique, liberating capability for disclosing email aliases as an alternative to their primary address. Its simple implementation, which does not require any user interaction with the service, spares the use of one's primary address from public or uncontrolled disclosures that may result in new sources of spam. All AOTFs automatically resolve to the user's single inbox.
This popular capability, which is one implementation of Reflexion's Protective Address technology, provides an effective means of controlling inbox access, blocking spam, making phishing attacks immediately self-evident, and preserving the long-term integrity of the user's primary email address.
The technical email community has long recognized the value of using multiple email addresses, and general awareness is growing. In fact, many consumers now employ multiple addresses, although by maintaining separate email accounts. AOTF brings the power of the technique to a single inbox, in a fully automated fashion.
3. In-Message Control Panel Informs and Empowers Users.
Reflexion's unique in-message control panel provides a simple and intuitive means for bi-directional communication between the user and the service. Reflexion uses the control panel to identify the envelope To address, to bring out information about the message, for example, that one party apparently shared the recipient's address with another party, and to present the user with message-specific options for controlling inbox access. Reflexion users employ the control panel to communicate with the service, amending their access policies for a specific sender and address.
Experience confirms that users find the control panel to be simple, helpful and effective. It is easy for users to understand, the choices are intuitive, and most of all, users like the ability to take concrete, immediate action to squash a spammer. Some users also employ the control panel as a safe alternative to the unsubscribe function in many emails, which some consumers no longer trust out of fear that it merely confirms a valid address and alerts a spammer to a "live" recipient.
Control panels are available in English, Spanish, French, German, Brazilian Portuguese, Dutch, Italian and Chinese, with Russian and Hebrew on the way.
4. Outbound Email Auditing Helps Protect One's Brand and Avoid Email Disruptions
No legitimate correspondent or domain owner ever wants to be in the position of inadvertently sending out spam and viruses. It's not only embarrassing, but can damage one's reputation or brand. It can also lead to severe operational disruptions if one's email server gets "blacklisted," as this dreaded outcome prevents the delivery of all mail, good and bad, to all recipient's at domains that utilize the specific blacklist to preemptively block senders deemed to be abusive or careless. This can be especially bad for Internet Service Providers (ISPs), as a blacklisted server affects all domains supported by that server, whether responsible for the outgoing spam or not.
Reflexion Outbound Mail Auditing (ROMA) addresses these serious concerns by inspecting outbound messages using pattern matching, statistical heuristics, and fingerprint filtering and scanning techniques. As outbound mail is received by Reflexion's servers, each message is passed through a series of checks to determine conformance with message size and volume limits, to identify message type (for example, to isolate bounce messages to avoid "blowback spam"), and to scan for spam and viruses. Each outbound message is then routed according to its categorization. For example, policy-offending or suspicious mail is placed in a quarantine queue, while non-delivery receipts are routed through a server that is dedicated to such traffic, so that if that server becomes blacklisted, it won't jeopardize one's operations. Messages found to be spam or to contain viruses are also placed in the quarantine.
When a message fails a security or policy check, the network administrator is automatically alerted to the offending or suspicious content. These alerts specify the reason for placing the message in the quarantine, for instance, because the message content exceeded a size or "spamminess" threshold set by the originating domain, or it contained a virus, or the volume of mail from the specific sender exceeded a specified message-rate-over-time threshold. These alerts can be customized, as appropriate for one's specific policies. From these alerts, administrators can take several actions, such as releasing a specific message for delivery, vaporizing the message, or logging into the Reflexion administration console to dispatch multiple messages. In addition to alerting, Reflexion provides an optional branded bounce notification to the end-user, to inform him or her of a violation of policy, or in the case of an ISP, of a contractual stipulation, such as a limit on the amount of email that can be sent during a 30 day trial period.
ROMA provides the capability to implement rate limiting for individual users, blended with content and domain filtering, and controlled through a user interface. For example, if a user sends 20,000 messages in a specified time period, x% of which exceed a pre-set content-scoring threshold, Reflexion will queue those message as suspicious and send an automated alert to the email administrator or ISP for review. Reflexion will also profile the standard email usage patterns of individual users and compile a report. This report can help to identify suspect senders or zombie PCs so that remediation can begin, or so that an ISP can take necessary steps, such as contacting and/or canceling the customer in order to avoid any damage to its IP addresses.