Views:

Smart Feedback

Smart Feedback shares anonymous threat information with the Smart Protection Network, allowing Trend Micro to rapidly identify and address new threats.

 
Disabling Smart Feedback prevents the mentioned data from being sent to Trend Micro, but affects the ability of IMSVA to rapidly identify and address new spam.
 
Data collected
  • Email headers
  • Subjects
  • Email message contents
Console locationAdministration > Smart Protection Network
Console settings
  • Enable Trend Micro Smart Feedback (recommended)

smart feedback

Back to top

Virtual Analyzer

Virtual Analyzer is a sandbox designed for analyzing suspicious applications, files, and scripts. Sandbox images allow observation of application, file, and script in an environment that simulates endpoints on your network without any risk of compromising the network.

 
Disabling Virtual Analyzer prevents the mentioned data from being sent to Trend Micro, but severely affects the ability of IMSVA to detect advanced malware in files.
 
Data collected
  • Suspicious applications and executable files
  • Suspicious scripts
  • Suspicious documents with macro
  • Other suspicious files from Trend Micro Advanced Threat Scan Engine
Console locationPolicy > Virtual Analyzer > Virtual Analyzer Settings
Console settings
  • Submit email messages to Virtual Analyzer

virtual analyzer

Back to top

Web Reputation

IMSVA leverages Trend Micro Web Reputation Services to scan URLs to detect malicious URLs based on their reputation scores or categories.

 
Disabling Web Reputation prevents the mentioned data from being sent to Trend Micro, but severely affects the ability of IMSVA to detect malicious URLs.
 
Data collected
  • URLs in email bodies
Console locationPolicy > Policy List > Antispam Rule Name > And scanning conditions match > Edit
Console settings
  • Web Reputation settings

web reputation

Back to top

Time-of-Click Protection

IMSVA leverages Trend Micro’s Time-of-Click Protection service to provide the ability to rewrite URLs in the email message body during scanning, and analyze the URLs at the time when the message recipient clicks on these URLs.

 
Disabling Time-of-Click Protection prevents the mentioned data from being sent to Trend Micro, but severely affects the ability of IMSVA to detect malicious URLs.
 
Data collected
  • URLs in email bodies
Console locationPolicy > Policy List > Antispam Rule Name > And scanning conditions match > Edit > Web Reputation settings
Console settings
  • Enable Time-of-Click Protection

TOC protection

Back to top

Email Reputation

IMSVA leverages Trend Micro Email Reputation Services to verify IP addresses of email messages using one of the world's largest, most trusted reputation database, along with a dynamic reputation database to identify new spam and phishing sources, stopping even zombies and botnets as they first emerge.

 
Disabling Email Reputation prevents the mentioned data from being sent to Trend Micro, but severely affects the ability of IMSVA to detect and block spam from known and emerging spam sources.
 
Data collected
  • Connected IP address of email messages
Console locationSender Filtering > Overview
Console settings
  • Email reputation

email reputation

Back to top

IntelliTrap

IntelliTrap provides heuristic evaluation of compressed files that helps reduce the risk that a virus in a compressed file will enter your network through email.
By default, this feature is disabled.

Data collected
  • Message attachments containing compressed executable files
Console locationPolicy > Policy List > Antivirus Rule Name > And scanning conditions match > Edit
Console settings
  • Send the IntelliTrap samples to TrendLab

intellitrap

Back to top

Trend Micro Control Manager Integration

Trend Micro Control Manager is a software management solution that gives you the ability to control antivirus and content security programs from a central location regardless of the program’s physical location or platform. This application can simplify the administration of a corporate virus and content security policy.
IMSVA synchronizes various log messages such as virus, spam, Web Reputation, content filtering logs to Control Manager.

 
Disabling MCP Agent prevents the mentioned data from being sent to Trend Micro Control Manager, but severely affects the ability of IMSVA to detect threats.
 
Data collected
  • Email headers
  • Subjects
  • URLs in email bodies
Console locationAdministration > IMSVA Configuration > Connections > TMCM Server
Console settings
  • Enable MCP Agent

tmcm integration

Back to top

Email Encryption

This feature requires a separate activation code to enable.

Data collected
  • Entire email messages
Console locationPolicy > Policy List > Antivirus Rule Name > Then action is > Modify
Console settings
  • Encrypt message

email encryption

Back to top

Cloud Pre-Filter Conditions

IMSVA will synchronize sender information and LDAP account information to Cloud Pre-Filter. Cloud Pre-Filter will use LDAP mail addresses to check whether mail recipients belong to a customer. In addition, Cloud Pre-Filter will check if senders belong to the Approved Sender List or Blocked Sender List.
By default, this feature is disabled and requires a separate activation code to enable.

Data collected
  • Domain names
  • IP addresses and/or FQDNs of incoming mail servers
Console locationCloud Pre-Filter > Domain Name > Conditions
Console settings
  • Approved Sender List
  • Blocked Sender List
  • Enable Valid Recipient check

cloud pre-filter conditions

Back to top

Keywords: data collection notice IMSVA 9.1,IMSVA 9.1 collected data