Proofpoint, Inc.
From Wikipedia, the free encyclopedia
Contents |
[edit] History
Proofpoint, Inc. | |
---|---|
Type | Private |
Founded | 2002 |
Headquarters | Sunnyvale, California, United States |
Key people | Chairman: Eric Hahn CEO: Gary Steele CTO: Marcel DePaolis |
Industry | Security software |
Products | E-mail filtering Anti-spam |
Website | www. proofpoint.com |
Proofpoint, Inc. is an email security and data loss prevention solution vendor based in Sunnyvale, California. The company was founded in June 2002 by Eric Hahn, formerly the CTO of Netscape Communications. It officially launched July 21, 2003, after raising a $7 million series A funding round, releasing its first product, and lining up six customers as references, and was backed by venture investors Mohr, Davidow Ventures, Benchmark Capital), and Stanford University [1]. An additional $9 million in Series B funding led by New York-based RRE Ventures was announced in October, 2003 [2]
The company’s first product was the Proofpoint Protection Server for medium and large businesses. It incorporated what was described as “MLX Technology”, proprietary machine learning algorithms applied to the problem of accurately identifying spam email using 10,000 different attributes to differentiate between spam and valid email. The company joined dozens of other anti-spam software providers[3] in a business opportunity fueled by an exponential increase in spam volume that was threatening worker productivity, making spam a top business priority [4]. According to Information Week’s 2004 National Technology Readiness Survey, the cost of spam in terms of lost productivity had reached $21.58 billion annually[5].
The first Proofpoint Protection Server product upgrade was announced in November 2003 and expanded the number of spam detection attributes to more than 50,000 [6]
In December 2003, Forrester Research announced the winners of the sixth annual Emerging Technology Showcase awards. Proofpoint was awarded for “Identifying And Dealing With Threats And Nuisances To The Enterprise”[7].
In 2004, strict new regulations governing financial disclosures and the privacy of health care data prompted Proofpoint to begin developing new products that would automatically identify and intercept outbound email containing sensitive information[8].
In March, 2004, Proofpoint introduced its first hardware appliance, the P-Series Message Protection Appliance (later renamed Proofpoint Messaging Security Gateway), using a hardened Linux kernel and Proofpoint's Protection Server 2.0 software[9]. It was tested by Infoworld and found to stop 94% of spam[10].
Another product introduction in November, 2004 included Protection Server 3.0, with Email Firewall and MLX-based Dynamic Reputation Analysis, and the Content Security Suite, plug-in modules designed for scanning outbound messages and their attachments to assist in compliance with data protection regulations such as Sarbanes-Oxley, HIPAA, and Gramm-Leach-Bliley. In combination, this was known as the Proofpoint Messaging Security Gateway Appliance. It was reviewed by ChannelWeb[11], which observed that it used a “combination of technologies: policy-based management, a spam-filtering engine and adaptive learning technology”. Implemented by Brown University, in the first 24 hours the Proofpoint system saved 447 Mb of email storage space by blocking 90,000 spam messages[12]. Infoworld reported that a number of companies were broadening their products to address other messaging issues besides spam, such as compliance violations, phishing scams, and viruses[13].
The University of Illinois at Urbana-Champaign incorporated Proofpoint software into their CITES Spam Control system with positive results[14]. Government Computer News reported that their GCN Lab found the Proofpoint P800 Gateway offered “Maximum control for administrators; highly configurable; optional module prevents e-mailing of classified documents”[15].
Proofpoint introduced a new product, the Network Content Sentry, as an add-on appliance to the Content Security Suite in August, 2005[16]. Designed to monitor online messaging other than email, the appliance monitors Web mail, message boards, blogs and FTP-based communications. Proofpoint also introduced policy-based email encryption features, using identity-based encryption technology licensed from Voltage Security[17].
At about the same time, the Zero-Hour Anti-Virus software module was released. It was specifically designed to detect and block new computer viruses before their “signature” is formally identified[18].
As part of a continuing product expansion related to regulation monitoring, in November, 2005, the Healthcare Privacy Bundle was released as add-on to Messaging Security Gateway appliance[19].
Proofpoint Messaging Security Gateway V4.0 was released in March, 2005, with additional capabilities such as directory harvest attack prevention features and enhancements to the Proofpoint MLX Dynamic Reputation software[20].
In a step towards simpler operational requirements, the Proofpoint Messaging Security Gateway Virtual Edition was released in April, 2007. The product runs as a virtual appliance on a host running VMware's virtual server software[21]. Moving a dedicated hardware appliance to a virtual server eliminates problems associated with proprietary hardware and reduces upgrade costs[22], though it does require knowledge of VMware's virtual server architecture.
Proofpoint Messaging Security Gateway V5.0 was released in June, 2007, and was based on a new, integrated architecture, combining all its capabilities into a single platform[23]. It could be run either as a dedicated appliance, virtual appliance, or software suite.
ICSA Labs, an independent division of Verizon Business, announced in April, 2007, that it had certified six anti-spam products under their new testing program, one of which was the Proofpoint Messaging Security Gateway. The goal of ICSA Labs' anti-spam product testing and certification is to evaluate product effectiveness in detecting and removing spam. The guidelines also address how well the products recognize e-mail messages from legitimate sources[24].
Moving into the software-as-a-service business, Proofpoint introduced Proofpoint on Demand, a hosted version of its email security and data loss prevention offerings[25]. In May, 2008, the company’s hosted offerings were expanded with the introduction of Proofpoint on Demand—Standard Edition[26]. The product is targeted at small-to-medium size businesses that need email security but do not run their own servers or have on-site IT personnel.
[edit] Overall Timeline
- Jun 2002 Proofpoint, Inc. founded by Eric Hahn
- Jul 2003 Raises $7 million series A funding round
- Oct 2003 $9 million in Series B funding led by New York-based RRE Ventures
- Oct 2003 Stuart Ellman, RRE Ventures general partner, joins Proofpoint's Board of Directors
- Mar 2005 Strategic partnerships with four email encryption vendors
- Mar 2006 Additional $20 million raised in venture capital
- May 2006 Sydney, Australia, office opens
- Feb 2008 Additional $28 million raised from DAG Ventures
[edit] Technology Timeline (product releases)
- Jul 2003 Launches first product, Proofpoint Protection Server software
- Nov 2003 Product upgrade incorporates MLX Learning Technology
- Mar 2004 Introduces first appliance, P-Series Message Protection Appliance
- Nov 2004 Protection Server 3.0 with Email Firewall and MLX-based Dynamic Reputation Analysis
- Nov 2004 Content Security Suite, plug-in modules for digital asset security and regulation monitoring
- Mar 2005 Proofpoint provides hosted anti-spam services
- Aug 2005 Network Content Sentry introduced as add-on appliance to Content Security Suite along with Secure Messaging (email encryption) software module
- Sep 2005 Zero-Hour Anti-Virus software module released
- Nov 2005 Healthcare Privacy Bundle released as add-on to Messaging Security Gateway appliance
- Mar 2006 Proofpoint Messaging Security Gateway V4.0 released
- Apr 2007 Messaging Security Gateway Virtual Edition is released
- Jun 2007 Proofpoint Messaging Security Gateway V5.0 released
- Aug 2007 Proofpoint on Demand is released
- May 2008 Proofpoint on Demand—Standard Edition is released, Proofpoint Secure File Transfer software module released
[edit] Description of Products and Services
Proofpoint’s product line is available in four different deployment form factors:
Proofpoint Messaging Security Gateway messaging security appliance, available in a variety of models for both large enterprises and SMBs
Proofpoint Messaging Security Gateway Virtual Edition messaging security virtual appliance for VMware Infrastructure.
Proofpoint Protection Server software for Linux
Proofpoint on Demand hosted email security and data loss prevention service
Add-on modules that address various email security or data loss prevention issues include:
Proofpoint Spam Detection for defense against spam, adult content and phishing attacks. For connection management, Proofpoint Dynamic Reputation and netMLX technology are also offered.
Proofpoint Virus Protection™ defends against email-borne viruses, worms, trojans and other forms of malicious code.
Proofpoint Zero-Hour Anti-Virus protects against emerging viruses before anti-virus signatures are available
Proofpoint Content Compliance for defining and enforcing acceptable use policies for message content and attachments
Proofpoint Digital Asset Security for protecting sensitive digital assets and confidential information from leaking outside the organization via email.
Proofpoint Regulatory Compliance for detecting protected health information, protected financial information and other sensitive content in outbound messages
Proofpoint Secure Messaging for policy-based encryption functionality.
Proofpoint Network Content Sentry extends Proofpoint’s content security and policy enforcement features to web-based email, blog and message board postings, FTP and other message streams.
Proofpoint Smart Search is a separate appliance that adds message tracing, forensics and log analytics features
Proofpoint Secure File Transfer adds secure, large file transfer capabilities.
[edit] Sources
(1) San Jose Business Journal, Jul 18, 2003
(2) San Jose Business Journal, Oct 14, 2003
(3) San Jose Business Journal, Jul 18, 2003
(4) InformationWeek Research's Outlook 2004 Survey
(5) Information Week, Feb 3, 2005
(6) Network World, Nov 3, 2003
(7) Forrester Press Release, Dec 12, 2003
(8) Technology Review, Mar 2004
(10) InfoWorld, May 2004
(11) ChannelWeb, Nov 2004
(12) Brown Daily Herald, Apr 2008
(13) Infoworld, Nov 2004
(15) Government Computer News, Apr 2005
(16) eWeek, Aug 2005
(17) Network World, August 2005
(19) CMP TechWeb Compliance Pipeline, Nov 2005
(20) Information Week, Mar 2006
(21) ChannelWeb, Apr 2007
(23) CMP ByteandSwitch, Jun, 2007
(25) NetworkWorld, August 2008
(26) ebiz, May 2008