Zero-trust file protection

Discover the simple way to protect against sophisticated file-based threats with Glasswall CDR (Content Disarm and Reconstruction)

Try CDR nowTry CDR now
Watch demo
Glasswall Meteor logo small

Glasswall Meteor

View product
Watch the video

Detection-based security
can’t keep up

Organizations across the globe deploy detection-based solutions, such as antivirus and sandboxes. These security methods can only protect against what they have seen before – falling short when protecting against zero-day threats.
Discover the risks


of businesses suffered a ransomware attack in 2022


average cost of a malware attack that resulted in a data breach


of ransomware files are everyday Windows-based executables
Discover the risks

Glasswall zero-trust CDR

CDR stands for “Content Disarm and Reconstruction.”

Rather than attempting to detect and block files that are known or suspected to be malicious, CDR rebuilds files and documents into a safe, clean and visually identical ‘known good’ standard, that are free from the risks of malware.
Learn more about zero-trust file protection

What our clients say

"Glasswall CDR is a part of Oracle Cloud Infrastructure's (OCI) approach to implementing zero-trust protection principle. This solution can help OCI securely transfer unstructured documents between physically separated networks of varying security and classification levels."

Oracle logo

Industry-leading CDR capabilities
and sub-second performance


Protect Mode

The core capability of the Glasswall Embedded Engine, developed to disarm malicious files, returning them to their manufacturer’s known good file specification.

Analysis Mode

Analysis mode provides security teams with detailed reporting of all content discovered while the Glasswall Embedded Engine is inspecting a file.

Transform Mode

Glasswall can transform complex data formats (documents, images, media, and binary files) into more simple/verifiable ones (SISL/XML) and reconstitute them. This capability exposes a file’s internal structure, enabling third parties to carry out hardware/software syntactic and semantic verification.

File Type Identification Mode

Glasswall’s ability to determine file types ensures that malicious and/or risky files masquerading as safe files are detected during processing.

Word Search and Redact

Gives security teams the capability to specify forbidden words – the Embedded Engine then analyses a file and identifies forbidden words, and then enacts the user defined policy.

Glasswall Lens

Employs AI models to detect harmful content and sensitive information. Glasswall presents this information in the form of a probability rating and provides administrators with the ability to block files containing such content.



Glasswall Halo is Kubernetes-based, allowing our range of CDR solutions to scale to match business need. It can be deployed in minutes, on-premises, within air-gapped environments, or both public and private clouds as we adhere to open standards.

Sub-second processing

Recent performance tests of our industry-leading zero-trust CDR solution uncovered that with five workload nodes in a Kubernetes cluster, users are able to process files in just 815ms with a 99.999% success rate.

NSA perfomance testing

Our zero-trust CDR technology has passed extensive LBSA testing by the NCDSMO – gaining an approved status for Glasswall CDR to be deployed into the US Government networks cross domain solutions and file protection mechanisms.

DHS performance testing

Data from The United States Department of Homeland Security performance testing indicates that a security solution containing Glasswall CDR reduces the risk posed by malicious files by 98%.

Use cases

Cross Domain Solutions (CDS)

Supercharge CDS deployments by removing the reliance on detection and enable compliance as used by all the leading cross domain vendors.


The world’s first CDR technology with native Hardsec support. Eliminates the risk of malicious files from reaching vulnerable software applications.

File upload portals

Our sanitization capability can be established at various integration points to protect against malicious file uploads.

Cloud migration

The core capability of the Glasswall Embedded Engine, developed to disarm malicious files, returning them to their manufacturer’s known good file specification.

Air-gapped networks

Glasswall doesn’t rely on updates – ensuring maximum isolation for secure networks.

Industry compliance

Enable compliance with industry guidelines such as the NCSC’s Pattern for Safely Importing Data and the NSA’s Raise the Bar Initiative.


Defense and intelligence

Mission-critical zero-trust file protection solutions built for, and adopted by, defence and intelligence communities around the world.

Cloud Service Providers

Zero-trust file protection solutions developed to help make the delivery of cloud services, easier, faster and safer.

Critical infrastructure

Protection against zero-day and complex file-based threats for organizations delivering critical services to governments and civilians around the world.

Financial services

Fast, scalable and easily deployable zero-trust file protection that guards banks and other financials organizations against malicious file uploads and file-based threats while enabling compliance with regulatory guidelines.


Patented CDR file protection for Managed Security Service Providers that superchargers their service offering and protects their clients against even the most complex file-based threats.

Book a demo

Talk to us about our industry-leading CDR solutions

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
By clicking “Accept All Cookies”, you agree to the storing of cookies on your device to enhance site navigation, analyze site usage, and assist in our marketing efforts. View our Privacy Policy for more information.