About Glasswall Halo
    • PDF

    About Glasswall Halo

    • PDF

    Article summary

    Glasswall Halo is built upon powerful cloud-native architecture using scalable Kubernetes. Our CDR technology removes potential threats from unknown files in less than a second, without compromising the file’s contents.

    Traditional antivirus solutions don't provide complete protection because newer threats still evade detection. Sandboxes are often better at addressing malware compared to antivirus solutions, but this often affects user experience by interrupting productivity.

    Glasswall can enable organizations to deploy our solution into their own environments. The Glasswall API endpoints are provided as standard, to ensure that integration is as friction-less as possible.

    What is CDR?

    CDR stands for Content Disarm & Reconstruction.

    Glasswall’s CDR technology works by:

    • Inspecting a file’s digital DNA
    • Cleaning risky content according to a set policy
    • Rebuilding to ‘known good’ standard
    • Delivering a safe & visually identical file

    Compared to traditional sandboxing and antivirus solutions which fail to detect zero-day threats, our CDR technology provides an on average 18-day protection advantage.

    Key Features

    • Kubernetes-based architecture deployed via managed services such as AKS, EKS, and OKE.
    • Terraform deployment scripts and Helm charts to support managed Kubernetes services.
    • Content management policies controlled dynamically via the API.
    • Intuitive REST-API endpoints which help developers devise the most effective integration approach to meet their needs.
    • Cloud APIs compliant with OpenAPI v3.x specifications, allowing development teams to rapidly create client software integrations using codegen tools.
    • Over 85+ supported file formats and counting.

    Glasswall Halo APIs

    Synchronous API

    Glasswall's synchronous REST API endpoints enable security teams to present file analysis and rebuild requests to Glasswall Halo – securing files in under a second. In addition, the REST API facilitates policy management actions – enabling security teams to match the processing of file components with their organizations risk appetite.

    Asynchronous API

    While the Synchronous API effectively meets the need for handling substantial volumes of data, certain client architecture patterns will require the incorporation of an asynchronous mode.

    With Glasswall Halo's Asynchronous API, requests can be handled via a two-stage process. Initially, a UUID is generated for a request, which can subsequently be used to retrieve the processing outcome. This enables the client to continue at its own convenience, eliminating the requirement to wait for file processing.

    Policy Management API

    The Policy Management API gives security teams the capability to configure content management policies to match their organizations risk appetite, allowing them to govern the treatment of files and their contents during the CDR process. Users are able to create, update, delete or reset content management policies for Glasswall Halo.

    License Management API

    This is an API used to manage active licenses and can be accessed via the main entry point into the cluster. The License Management service focuses solely on license storage and does not impact the application of licenses within the cluster.

    Menlo Security Platform API

    The Glasswall-Menlo API enables security teams with Menlo Security Platform deployments to seamlessly harness the power of Glasswall zero-trust CDR technology. It instantly processes web content traffic and downloads encountered by the Menlo Security Platform – ensuring users can safely browse the internet.

    ICAP Profile Management API

    The Glasswall ICAP integration provides users with a robust tool for customizing file processing by an ICAP server and managing Content Disarm and Reconstruction (CDR). The ICAP Profile Management API allows for the creation and modification of these profiles, streamlining the management and optimization of file processing workflows. Additionally, the API supports the simultaneous activation of multiple ICAP Profiles, offering flexible and precise control over file security measures.


    Glasswall Halo is built using scalable Kubernetes (k8s). This is a technology that automates deployment, scaling, and management of containerized applications. Containers within an application are grouped into logical units for easy management, and Kubernetes provides a way to schedule and deploy those containers. It also scales them to your desired state and manages their life cycle.

    Learn more about Kubernetes.

    Was this article helpful?