Forcepoint Advanced Malware Detection detects advanced threats by analyzing the behavior of files in the a restricted
operating system environment.
Two types of sandbox servers are available for Forcepoint Advanced Malware Detection:
Table 1. Sandbox servers for Forcepoint Advanced Malware Detection
Type of server |
Description |
Cloud Sandbox — Forcepoint Advanced Malware Detection |
Files are analyzed externally on a cloud sandbox server. |
Local Sandbox — Forcepoint Advanced Malware Detection |
Files are analyzed locally on a Forcepoint Advanced Malware Detection appliance. |
File filtering using Forcepoint Advanced Malware Detection follows this process:
If the same file is transferred again, the sandbox server returns the stored file reputation for the file.