EN
Contact Sales Request a PoC
CUSTOMERS · 2026 EDITION

100+ organizations run on
SecuLetter every day

47 government agencies, 28 financial institutions, 25 defense and manufacturing enterprises — named references, industry threat data, certifications, and procurement records on a single page. Built to drop straight into your audit, procurement, and security review.

  • 100+organizations in production
  • 10+ yrspurpose-built CDR (since 2015)
  • 0service outages
  • 100%migration completion rate
CERTIFICATIONS · 01

Evidence that holds up
in audits.

From the Common Criteria, TTA GS, and government procurement listings that public-sector approvals require, to the KISA and Gartner evaluations behind finance security programs — six external proofs stand behind every deployment.

  • K100
    Security Evaluation

    KISA APT Evaluation

    First vendor to hit 100% detection
  • GS·1
    Quality Standard

    TTA GS Grade 1

    12.027s average across 200,000 files
  • CC
    International

    Common Criteria (CC)

    EAL2 certified
  • G2B
    Public Procurement

    Government Procurement Listed

    Direct public-sector purchase
  • GTN
    Analyst Coverage

    Gartner Email Security

    Featured in Market Guide research
  • R&D
    Patents · R&D

    Industry-leading CDR patent portfolio

    20+ R&D engineers, building since 2015
Full certifications page
REFERENCES · 02

Named references, by industry.

Operational references organized across government, finance, and defense. Each case includes deployment scale, the buying trigger, and measured operating outcomes.

Network-separation programs, cross-network file transfer, and public-portal upload gateways for national ministries and agencies.

47 agencies in production · as of April 2026
  • Ministry of Science and ICT (MSIT)
  • Ministry of Trade, Industry and Energy
  • Ministry of Culture, Sports and Tourism
  • National Health Insurance Service
  • National Pension Service
  • Korea Internet & Security Agency
  • Korea Electric Power Corporation
  • Korea Post
  • Korea Institute of Energy Technology Evaluation
  • National Tax Service
  • Korean National Police Agency
  • Public Procurement Service
CASE · 01

National health insurance agency

SLF · SLCDR
Scale
16,000 users — 100,000 inbound citizen documents per day
Issue
Ransomware attempts arriving as PDF and HWP (Hangul Word Processor) attachments through the public-service portal.
Trigger
Required analysis throughput 5x faster than incumbent vendors with zero processing delay.
Implementation
Dual SLF appliances fronting the portal gateway, with SLCDR sanitization running in parallel.
  • 100,000/day citizen documents inspected
  • 5x faster in head-to-head testing
  • 2+ yrs uninterrupted production
CASE · 02

Korea Internet & Security Agency (KISA)

SLF · SLCDR
Scale
800 users — government network-separation zone
Issue
Mandatory network separation required hardened controls on every cross-network file transfer.
Trigger
Needed high detection, sub-12-second analysis, and unlimited file size — all at once.
Implementation
SLF on the cross-network gateway, validated against the agency's own APT evaluation with 100% detection.
  • 100% detection in APT evaluation
  • Unlimited file-size handling
  • 12s average analysis
CASE · 03

National postal information center

SLF · SLCDR
Scale
37,000 users — year-end tax PDF transfer across networks
Issue
Tax season — 30,000 staff push PDFs across networks at the same time, and any delay halts the agency.
Trigger
Full inspection of large PDFs with zero processing delay.
Implementation
SLF cluster on the cross-network gateway with auto-scaling for peak traffic.
  • 30,000users concurrent PDF analysis
  • 0 processing delays
  • 37Kusers production footprint
CASE · 04

Korea Electric Power Corporation (KEPCO)

SLE · SLF
Scale
2,339 users — HQ plus regional sites
Issue
Rising ransomware attempts against power infrastructure, with document attachments as the primary vector.
Trigger
OT-adjacent environment — needed to stop sandbox-evasion attacks that behavior-based tools miss.
Implementation
SLE mail gateway plus internal SLF — structural-level analysis extends down to non-executable attachments.
  • 2,339users protected
  • 0 ransomware incidents
  • 24/7 uninterrupted production
CASE · 05

National energy R&D evaluation agency

DISARM · SLE
Scale
134 users — remote-first workforce
Issue
Increased remote and travel exposure expanded the external-email attack surface.
Trigger
Rollout in days with no MX change, covering all cloud mailboxes.
Implementation
DISARM deployed through the Microsoft 365 API, with retroactive scanning of historical mail in parallel.
  • 5days company-wide rollout
  • 100% BEC impersonation blocked
  • 0 user impact
EVIDENCE · DETECTION COMPARISON

13 samples, same environment,
different results.

Benchmark test at a major commercial bank, 2019 — identical samples, identical environment. Across 13 non-executable attachments, the behavior-based solution flagged 1; SecuLetter flagged 12.

CATEGORY · A

Behavior-based sandbox vendor

Same environment · same samples
1 /13

Sandbox-based — detonates the file in a virtual environment and observes behavior. Non-executable files with no runtime behavior are, by design, undetectable. Detection drops further the moment evasion techniques — VM detection, time delays, user-trigger gating — come into play.

  • Non-executable attachments missed by design
  • 3–5 minute sandbox latency — mail delivery delays
  • Low accuracy on document-borne formats
CATEGORY · B

SecuLetter SLF (MARS engine)

Same environment · same samples
12 /13 92% detection

Reverse-engineering based — disassembles the file structure for static analysis. Identifies structural anomalies without executing the code. Non-executable attachments, evasion techniques, and document-borne formats are caught at the same accuracy.

  • Non-executable files analyzed at the structural level
  • 12-second average — no mail delays
  • Full coverage of HWP, HWPX, and PostScript document formats

Benchmark test at a major commercial bank, 2019, identical samples. Comparisons reference behavior-based and sandbox-based detection vendors as a category.

ALL CUSTOMERS · 04

47 government, 28 finance, 25 defense and manufacturing

A subset is shown here. For audit response or RFP review, reach out to your account manager for the full named-organization list.

NHIS NHIS
NPS NPS
KISA KISA
KEPCO KEPCO
Korea Post Korea Post
KOTRA KOTRA
KOICA KOICA
KETEP KETEP
MSIT MSIT
Ministry of Trade, Industry and Energy Ministry of Trade, Industry and Energy
Ministry of Culture, Sports and Tourism Ministry of Culture, Sports and Tourism
KAMCO KAMCO
KB Securities KB Securities
Korea Investment & Securities Korea Investment & Securities
Daishin Securities Daishin Securities
BNK Busan Bank BNK Busan Bank
DB Insurance DB Insurance
eBest Securities eBest Securities
KSD KSD
LIG Nex1 LIG Nex1
HD Hyundai Oilbank HD Hyundai Oilbank
Samsung Electronics Sales Samsung Electronics Sales
Seoul Semiconductor Seoul Semiconductor
NHIS NHIS
NPS NPS
KISA KISA
KEPCO KEPCO
Korea Post Korea Post
KOTRA KOTRA
KOICA KOICA
KETEP KETEP
MSIT MSIT
Ministry of Trade, Industry and Energy Ministry of Trade, Industry and Energy
Ministry of Culture, Sports and Tourism Ministry of Culture, Sports and Tourism
KAMCO KAMCO
KB Securities KB Securities
Korea Investment & Securities Korea Investment & Securities
Daishin Securities Daishin Securities
BNK Busan Bank BNK Busan Bank
DB Insurance DB Insurance
eBest Securities eBest Securities
KSD KSD
LIG Nex1 LIG Nex1
HD Hyundai Oilbank HD Hyundai Oilbank
Samsung Electronics Sales Samsung Electronics Sales
Seoul Semiconductor Seoul Semiconductor
Seoul Semiconductor Seoul Semiconductor
Samsung Electronics Sales Samsung Electronics Sales
HD Hyundai Oilbank HD Hyundai Oilbank
LIG Nex1 LIG Nex1
KSD KSD
eBest Securities eBest Securities
DB Insurance DB Insurance
BNK Busan Bank BNK Busan Bank
Daishin Securities Daishin Securities
Korea Investment & Securities Korea Investment & Securities
KB Securities KB Securities
KAMCO KAMCO
Ministry of Culture, Sports and Tourism Ministry of Culture, Sports and Tourism
Ministry of Trade, Industry and Energy Ministry of Trade, Industry and Energy
MSIT MSIT
KETEP KETEP
KOICA KOICA
KOTRA KOTRA
Korea Post Korea Post
KEPCO KEPCO
KISA KISA
NPS NPS
NHIS NHIS
Seoul Semiconductor Seoul Semiconductor
Samsung Electronics Sales Samsung Electronics Sales
HD Hyundai Oilbank HD Hyundai Oilbank
LIG Nex1 LIG Nex1
KSD KSD
eBest Securities eBest Securities
DB Insurance DB Insurance
BNK Busan Bank BNK Busan Bank
Daishin Securities Daishin Securities
Korea Investment & Securities Korea Investment & Securities
KB Securities KB Securities
KAMCO KAMCO
Ministry of Culture, Sports and Tourism Ministry of Culture, Sports and Tourism
Ministry of Trade, Industry and Energy Ministry of Trade, Industry and Energy
MSIT MSIT
KETEP KETEP
KOICA KOICA
KOTRA KOTRA
Korea Post Korea Post
KEPCO KEPCO
KISA KISA
NPS NPS
NHIS NHIS
DEPLOYMENT GUIDE · 05

Evaluating an adoption?

Network-separation mapping, procurement steps, PoC execution checklist, procurement-ready templates — the complete guide buyers attach to security review and procurement workflows.

  • 01 Requirement-to-control mapping by clause
  • 02 Two-week parallel-run PoC measurement checklist
  • 03 Adoption timelines for three reference deployments
  • 04 Procurement document template (DOCX)
Open the Deployment Guide Browse the resource center
NEXT STEP · 06

Join the 100+ organizations
already protected.

PoC, benchmark testing, architecture review, migration — the further outside the catalog, the more directly our engineers respond. Average response within 0.8 business days for government, finance, and defense buyers.

Request a PoC Contact us
  • 100+organizations adopted
  • 10 yrspurpose-built CDR
  • 0service outages
  • 0.8business-day response