OPSWAT MetaDefender · CDR · Kiosk · ICAP Gateway · Multi-Engine Scan

OPSWAT MetaDefender — Disarm Every File Before It Crosses Your Boundary

OPSWAT MetaDefender protects airgap boundaries, critical infrastructure, and high-security networks from file-based threats using Content Disarm and Reconstruction (CDR) — eliminating active content from every file, regardless of whether malware has been seen before. Ogma deploys MetaDefender Core, Kiosk, and ICAP Gateway for India's most security-sensitive environments.

OPSWAT Authorized Partner 30+ AV Engines 100+ CDR File Types GST Invoice
CDR
Zero-Day Proof File Transfer
30+
Simultaneous AV Engines
100+
Supported File Types
Kiosk
Secure USB Boundary Control

Why Ogma for OPSWAT?

Ogma is an authorized OPSWAT partner with experience deploying MetaDefender in defence, power utility, financial, and manufacturing environments where file-based threats pose existential risk and signature-based tools are insufficient.

  • OPSWAT authorized reseller and integration partner
  • MetaDefender Core — CDR + multi-engine scan deployment
  • MetaDefender Kiosk — physical USB scanning station installation
  • ICAP integration with email gateways and web proxies
  • CDR policy design per file type, user role, and business process
  • SIEM integration — MetaDefender scan logs to QRadar/Sentinel/Splunk
CDR Technology
Disarm files, not detect threats
Kiosk Deployments
Physical media boundary control
Multi-Engine Scan
30+ AV engines simultaneously
ICAP Integration
Email, proxy, file transfer

MetaDefender Deployment Services

Full MetaDefender product family deployment — Core, Kiosk, ICAP Gateway, and Vault — tailored to your airgap and boundary security architecture.

MetaDefender Core

CDR and multi-engine malware scanning server. Ogma deploys Core on-premises or in your private cloud, configures 20+ simultaneous scan engines, and defines CDR policies per file type with sanitisation rules that match your operational file formats.

MetaDefender Kiosk

Physical workstation deployment at airgap entry points. Ogma installs, configures, and tests Kiosk units — setting scan policies, encryption requirements, user authentication, and SIEM event forwarding. Includes physical installation and cabling.

ICAP Gateway Integration

MetaDefender ICAP integration with your email security gateway, web proxy, and file transfer systems. Transparent CDR and multi-engine scan on all file traffic without user workflow changes. Policy configured by source, destination, file type, and user group.

MetaDefender Vault

Secure file repository with built-in CDR on every upload and download. Role-based access control, audit logging, and integration with your existing LDAP/AD. Ogma deploys Vault as a secure drop-zone for cross-domain file exchange.

SIEM & Audit Integration

MetaDefender scan event forwarding to your SIEM (QRadar, Splunk, Sentinel). Custom dashboards for scan volumes, CDR hit rates, detected threat types, and Kiosk usage. Monthly compliance report generation.

Ongoing Managed Service

Engine definition updates, CDR policy tuning as new file types are introduced, Kiosk hardware maintenance, and L2 incident support. SLA-backed with monthly health review and threat summary reports.

Frequently Asked Questions

CDR does not try to identify malware — it assumes every file is potentially hostile and reconstructs it from scratch. It deconstructs the file into components, discards everything that is not required by the file specification (macros, embedded objects, JavaScript, active content, non-standard structures), and rebuilds a clean, functional file. Antivirus uses signatures and heuristics — it cannot catch zero-day exploits. CDR eliminates the threat category entirely by removing all active content, making signature evasion impossible.

MetaDefender Core CDR supports 100+ file types: Office documents (DOCX, XLSX, PPTX, ODS), PDF, images (JPEG, PNG, TIFF, SVG), archives (ZIP, 7Z, RAR, TAR), CAD files, HTML, XML, and many more. Each file type has a specific disarm profile. Ogma configures per-use-case CDR policies — a process engineer uploading a PLC program file gets a different CDR policy than a user submitting a PDF report.

MetaDefender Kiosk is a physical workstation placed at airgap boundaries — outside the secured zone — where users scan removable media (USB drives, CDs, SD cards) before carrying them into the secure area. The kiosk runs multi-engine malware scanning and CDR on every file, encrypts approved content, and logs every scan event with user identity, device ID, and file hash. No unscanned media enters the secured zone.

MetaDefender Core can run simultaneous scanning with up to 30+ anti-malware engines from different vendors — increasing detection coverage dramatically over single-engine solutions. Each engine has different heuristic signatures and detection algorithms, so a sample that evades one engine is likely caught by another. Ogma configures the engine mix based on your threat profile and performance requirements.

Yes. MetaDefender ships ICAP server support — it integrates with any ICAP-compatible email gateway (Proofpoint, Mimecast, Cisco ESA), web proxy (Blue Coat, Zscaler), or file transfer system. Files are sent to MetaDefender for CDR and multi-engine scan transparently. Ogma configures the ICAP integration and sets scanning policies per traffic type and user group.

Yes. MetaDefender integrates with DLP solutions and can enforce removable media policies: block unscanned USB insertion, enforce encryption on all outbound media, generate SIEM alerts on policy violations, and produce audit logs for compliance. Ogma deploys MetaDefender as part of a broader removable media governance programme aligned with CERT-In and ISO 27001 A.8.3 requirements.