Protection against XML viruses

XML virus (X-Virus) protection protects against XML viruses in message attachments and to prevent message attachments from being buffered on the DataPower® Gateway.

XML virus protection defines how a service handles the following types of attacks in attachments.

XML virus attacks
XML encapsulation attacks
Payload-hijack attacks
Binary injection attacks

First, determine whether to process attachments.

If you process attachments, define an antivirus action to check attachments for viruses.
If you do not process attachments, you can define flow control behavior for the attachments.

For message formats that are not passed through the DataPower Gateway, configure how to process attachments.

To configure a service for XML virus protection, provide the following inputs.

Request attachment processing mode: Specifies the processing mode for attachments in client requests.
Response attachment processing mode: Specifies the processing mode for attachments in server responses.

Flow control for message attachments helps prevent attachments from being buffered on the DataPower Gateway when the client and server have different transmission rates for message attachments.

To configure flow control for attachments, provide the following inputs.

Request attachment flow control mode: Specifies whether to enable flow control on attachments in requests to servers when the processing mode for request attachments is unprocessed.
Response attachment flow control mode: Specifies whether to enable flow control on attachments in responses to clients when the processing mode for response attachments is unprocessed.