Lab test: BorderWare Security Platform
BorderWare boasts high accuracy and excellent content management features, but is plagued by false positives and difficult LDAP configuration
On the upside, the BorderWare interface is clean and easy to navigate, with context-sensitive help that is generally useful. The content management features were extensive and capable, with pre-built lists of phrases available in several categories and the capability of applying weights so that it takes three or more offensive words from one list, or two or more from another list to trigger the filter, for instance. The SP-800 can also inspect zip archives and hold encrypted e-mail for inspection. The integrated URL filter intended to stop phishing and spyware by blocking downloads and access to malicious sites worked reasonably well, but blocked legitimate sites while allowing access to some bad ones. It stopped 77 percent of phishing messages and blocked 8 legitimate messages from banking sites.
BorderWare offers extensive enterprise-class features such as access control by user, group, or domain; good reporting and notification controls; policy-based encryption; centralized management of multiple devices; clustering; IM protection; policy-based rules; and the capability to integrate with F5 load balancers.
Pricing for the SP-800 is at the high end of the field, although not out of line for the rich feature set. However, considering the middling filtering accuracy and high rate of false positives, most administrators will want to look at some of the alternatives first.