What is Content Disarm and Reconstruction (CDR)?

Content Disarm and Reconstruction (CDR) is an advanced cybersecurity technology designed to neutralize threats, such as malware and ransomware, within files.

CDR works by disassembling files (documents, images, etc.) and removing any potentially malicious elements. Advanced CDR solutions, such as Glasswall CDR technology, are able to retain a document’s original functionality and appearance – providing seamless protection to the end user.

Advantages of CDRTech comparisonHow CDR works

The advantages of CDR

Content Disarm and Reconstruction plays a crucial role in enhancing an organization’s cybersecurity strategy. Here are 4 reasons why CDR is considered one of the most effective file protection solutions:

1. CDR removes threats from files

CDR is a zero-trust data filter that rebuilds files and documents into a safe, clean standard, free from the risks of malware. CDR prevents malicious files from entering a network and is used for secure file transfer across trust boundaries.

2. CDR is more secure than antivirus and sandboxing

Unlike detection-based solutions, CDR doesn’t try to identify malicious code – it simply removes the ability for it to exist altogether. This zero-trust approach disarms often overlooked advanced persistent threats, such as zero-day malware, high-risk active code and anomalies within a file’s structure.

3. CDR retains file functionality

Many conventional data filters flatten files (turn them into images) for use in high risk environments. Files cleaned by CDR are visually identical and fully functional, meaning you get your report – not a pancake.

4. CDR helps teams manage risk

CDR offers organizations comprehensive analysis of the threats within files, empowering security teams to remove or manage high-risk content according to their risk appetite.

CDR vs other technologies

While our recommendation is that CDR should be used as one component of a wider cybersecurity strategy, it is helpful to understand the significant advantages CDR has over other file protection technologies.

Glasswall CDR

  • Protects against unknown (zero-day) threats
  • Files are secured instantly with usability maintained
  • Doesn’t require an internet connection or updates

Antivirus

  • Relies on signatures and known indicators to detect threats
  • Files are held or quarantined
  • Requires constant database updates

Sandboxing

  • Can be evaded by malware with delayed detonation
  • Files are held or quarantined
  • Needs updating to protect against the newest threats

EDR

  • Can be evaded by targeted malware that falsifies information
  • Files are held or quarantined
  • Needs updating to protect against the newest threats

File flattening

  • Vulnerable to image steganography attack
  • Files are turned into images at the cost of functionality
  • Often antiquated systems require updating
Read more comparisons

How our CDR works

Glasswall CDR employs our patented 4-step approach to protect government agencies and organizations against file-based threats. Unlike other cybersecurity solutions, we don’t try to identify the malicious code – we simply remove the ability for it to exist in the file altogether.

Watch explainer (0:45)

View documentation

Arrow in a box, showing you will be redirected to another page to learn more about the topci

1. Inspect

Breaks down the file into its constituent components. Validates the file’s structure against its specification

2. Rebuild

Unknown and invalid file structures are repaired in-line with the file’s specification

3. Clean

Removes high-risk file structures that contain active content, based on configurable policy

4. Deliver

Semantic checks ensure the file’s integrity. The safe and fully functional file is now ready to use

Try Glasswall CDR
in your web browser

Try cleaning a file

More insights on CDR

Screenshot about the what is CDR page on Glasswall documentation site
Documentation

What is CDR and how does it work

Glasswall CDR (Content Disarm and Reconstruction) employs our patented 4-step approach to protect organizations and individuals against file-based threats...
US flag with the capitol
Blog

Guardians of the government – the battle to secure the public sector

The recent news that a payroll system used by the UK Ministry of Defence (MoD) had been hacked by a “malign actor” underlines the continuing cybersecurity risks facing government departments...
Glasswall CDR demo video
Video/demo

Why Glasswall CDR

Glasswall CDR (Content Disarm and Reconstruction) is the simple way to protect against sophisticated file-based threats.
Whitepaper

The key role of CDR in a zero-trust cybersecurity model

The zero-trust security model is based on the premise that, by default, nothing interacting with IT infrastructure is trusted...
Illustration about zero day vulnerabilities
Blog

Zero-Day vulnerabilities – understanding their impact and how to protect against them

Among the many cybersecurity risks organizations face on a daily basis, zero-day vulnerabilities are particularly dangerous because – until they are patched – they are unknown to technology vendors and their users.
Blog

Debunking the myths: understanding CDR and cybersecurity

In the evolving world of cybersecurity, accurate information is crucial for making informed decisions to protect against new threats...

Talk to us
to strengthen your security

Eliminate malware before it reaches your network and ensure your files are always safe and secure with Glasswall’s Zero Trust and intelligent file protection.

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.