We’re excited to announce the launch of our brand-new Content Disarm and Reconstruction (CDR) API!

The CDR API tears down risky files and rebuilds them as safe, usable documents from scratch. This API is designed to work seamlessly in conjunction with the Cloudmersive Advanced Virus Scan API as an alternative to deleting or quarantining files when they receive a “CleanResult”: False scan result.

Much like the Advanced Virus Scan API, the CDR API also supports nearly 200 unique file formats and offers real-time performance capabilities.

Why secure document sanitization matters

File uploads continue to be a major attack vector. When file upload threats are detected, it’s critically important to mitigate those threats immediately by either removing them or sanitizing them.

For much of the past few decades, the most common and realistic strategies for mitigating file threats have involved deleting files outright or quarantining files for later analysis. While these options remain valid threat mitigation strategies, CDR presents a valuable third option: removing the threatening portion of a file while keeping the remainder of the document intact.

Real-time file sanitization

CDR sanitization is intended to occur immediately after files are uploaded. During the CDR process, files are:

1. Torn down into safe components.
2. Stripped of unsafe elements (e.g., scripts, macros, or risky links).
3. Rebuilt from scratch as clean, usable versions of the original file – or, depending on customer preferences, rebuilt PDF versions of the original files.

This process results in a seamless user experience with safe files.

Integration with the Advanced Virus Scan API

The CDR API works best when paired with the Advanced Virus Scan API in a file upload security workflow.

As the Advanced Virus Scan API filters our irrecoverable malware, the CDR API removes recoverable threats and rebuilds safe versions of those files. Together, the CDR and Advanced Virus Scan APIs offer layered security for enterprise file uploads.

Flexible deployment models

As always, Cloudmersive customers have the option to deploy the CDR API following several unique deployment models:

• Managed Instance deployments leverage dedicated, managed infrastructure with SLAs, customizable deployment, and security.
• Private Cloud deployments can take place on the customer’s premises or in a cloud platform of their choice.
• Public Cloud deployments leverage Cloudmersive’s multi-tenant public cloud offering.
• PaaS deployments take advantage of Azure App Service or Azure Kubernetes Service offerings.
• Government Cloud deployments take place in a specified government cloud region, suiting the data governance requirements of government entities.

Learn more

To learn more about the CDR API, please feel free to visit our CDR home page or contact a member of our team.