Content Disarm and Reconstruction

Content Disarm and Reconstruction (CDR) removes malicious content from a document or image.

Forcepoint's Zero Trust CDR removes any potential malicious content from a document or image file by removing executable content (like Macros) and sanitizing images to prevent steganography and links to external content. This "disarms" the file in a preventative manner. CDR does not rely on detection — all potential threat vectors are disarmed. The file is reconstructed to resemble the original file as closely as possible before it is delivered to the end user. File Downloads are disabled by default; however, CDR is the default action when File Downloads are enabled.

Supported File Types: For the most up-to-date list of supported file types, see the Deep Secure FAQ.

For file types that are not supported, Forcepoint RBI falls back to an AntiVirus scan of the file. A patience page is displayed while a file is been processed by CDR. The original file is not stored or accessible to customer within an RBI session.

CDR scan is supported for both File Upload and download.