OpenEFA®

Email security that explains every decision.

Intent-based detection for Microsoft 365, Google Workspace, and any on-premise mail server — with human-readable reasoning behind every verdict.

We catch what legacy filters trust: fully authenticated phishing, first-time senders, and behavioral anomalies. Then we show you exactly why.

Get Started Request a Demo Customer Login
REPORT The State of Spam & Security 2026 — Our first annual research report. From Indicators to Intent. Read now →

Deploy in Minutes

  • ✓ No hardware required
  • ✓ Fully managed cloud platform
  • ✓ 99% F1 accuracy
  • ✓ 18/7 live support + 24/7 emergency
  • ✓ Point MX to mx1.openefa.com
  • ✓ Manage via mailguard.openefa.com

Email Security Experts Serving US & International Clients

Processing Thousands of Emails Daily Years of Proven Experience Global Protection

Trusted by Law Firms, Publishing Companies, Insurance Agencies & More

Chipotle Publishing

Phoenix Defence

RD Johnson Law

Esudo Law

Safe and Sound Insurance

Segue Logic LLC

With Love & Co.

...and more

ANNUAL RESEARCH REPORT

The State of Spam and Security in the Modern Communication Era

From Indicators to Intent: The Evolution of Email Defense

Our first annual report examines how email threats have evolved from bulk nuisance into sophisticated AI-assisted deception — and why the industry must shift from indicator-based detection to intent-aware, behavioral defense. 24 pages of research, predictions, and actionable recommendations.

Read Online Download PDF

Published March 2026 • By OpenEFA Research

What Our Customers Say

"We switched from Barracuda and the difference was immediate. False positives dropped to near zero, and the transparency into why emails are blocked is something we never had before."

— IT Director, Law Firm

"Setup took five minutes. We pointed our MX records and it just worked. The AI catches phishing attempts that our previous filter missed completely."

— Managing Partner, Insurance Agency

"The flat-rate pricing made budgeting simple. No surprises as we added mailboxes. Support has been exceptional — real people who understand email security."

— Operations Manager, Publishing Company

Advanced Cloud Email Security for Modern Businesses

Email is still the most targeted attack vector.

OpenEFA Cloud provides a fully managed, AI-enhanced security layer between the internet and your mail system—ensuring only safe, legitimate messages reach your users.

🛡️
Stronger Protection

Dramatically fewer false positives than legacy spam filters

☁️
Cloud-Hosted

Fully managed platform with instant deployment

🔗
Universal Integration

Works with all cloud email services (MS 365, Google, Zoho, etc.) and on-premise servers

📊
Full Transparency

Explainable filtering decisions with detailed scoring

OpenEFA makes enterprise-grade email security easy, affordable, and reliable.

THE GAP IN LEGACY EMAIL SECURITY

Why Authentication Isn’t Enough

Legacy filters rely on reputation, signatures, and authentication. Modern attackers pass all three — and legacy filters deliver the mail.

🔓
Authenticated phishing

An attacker compromises a real Microsoft 365 mailbox. SPF, DKIM, and DMARC all pass. Sender reputation is clean.

LEGACY FILTERS

Deliver. “It’s signed, it’s from a trusted tenant.”

OPENEFA

Flag. Intent classifier detects financial urgency, first-contact relationship, and BEC patterns.

👤
First-time sender

Fresh domain, no sender reputation, no blocklist hits. The target has never received a message from this address.

LEGACY FILTERS

Deliver. “No negative signals to score against.”

OPENEFA

Score. Relationship graph shows zero prior contact; behavioral baseline raises the threshold.

Black-box verdict

A legitimate invoice gets quarantined. The admin opens the vendor console and gets a single opaque risk score.

LEGACY FILTERS

“Score: 8.4. High risk.” No breakdown. No tuning.

OPENEFA

Full rule breakdown — signals fired, weights, reasoning. Tune per-domain in one click.

How OpenEFA Filters Email

Four layers of analysis, running in sequence on every message. Signals that pass Layer 01 still face Layers 02, 03, and 04 — which is how we catch attacks legacy filters miss.

MESSAGE FLOW
LAYER 01
Signal

Authentication, reputation, and known-bad lookups.

SPF · DKIM · DMARC validation · Real-time threat intelligence · RBL checks · URL risk scoring · Attachment antivirus

LAYER 02
Behavioral

Sender relationships and organizational patterns.

Sender relationship graph · First-contact detection · Volume & timing anomalies · Display-name analysis · Per-domain baselines

LAYER 03
Intent

What is the message actually trying to do?

NLP intent classification · Urgency markers · Credential harvesting cues · Financial & wire language · Business Email Compromise (BEC) patterns

LAYER 04
Decision

Explainable scoring — with every weight visible.

Machine-learning ensemble · Per-rule contribution · Human-readable verdict · Per-domain tuning · Full audit trail

99%

F1 Accuracy

99%

Precision

<2s

Processing Time

1.02%

False Positives

(Industry avg: 15-25%)
View Full Performance Report
🔒OpenEFA®
Privacy-First AI

Most email security vendors send your messages to third-party cloud AI platforms for analysis—exposing your confidential communications, client relationships, and business intelligence to external systems.

OpenEFA is different. Our proprietary machine learning runs entirely within our controlled infrastructure. Your email data never leaves to train external AI models or feed cloud ML services. Your business relationships, client contacts, and sensitive communications remain private—not shared with big tech AI projects.

Enterprise-grade protection. Zero data exposure.

THE OPENEFA DIFFERENCE

Every decision, explained.

When a message is quarantined, blocked, or delivered, OpenEFA shows exactly why — down to the rule, the weight, and the evidence.

  • Readable reasoning. No opaque risk scores. You see the signals that fired and the relationships that matched.
  • Per-domain tuning. Adjust thresholds, override rules, and whitelist signal patterns — without emailing support.
  • Defensible verdicts. When a user asks “why was this blocked?”, you have a paper trail, not a shrug.
QUARANTINED msg_8f2a1c · 10:14:02 UTC
score 9.2 / 10

FROM

ceo@acme-corp.co

SUBJECT

Urgent: wire transfer needed before 2pm

Signals that fired

First-contact sender
Zero prior messages from acme-corp.co
+3.4
Lookalike domain
acme-corp.co vs. known acme-corp.com (edit distance 1)
+2.8
Financial intent + urgency
NLP: wire_transfer (0.94), urgency_marker (0.87)
+2.4
Display-name impersonation
Header name doesn’t match domain records
+1.6
SPF / DKIM / DMARC
All pass — no credit to legacy trust signals
−1.0

Illustrative verdict breakdown from mailguard.openefa.com

Why Businesses Choose OpenEFA for Email Security

1. Cloud-Hosted for Maximum Simplicity

No appliances, patches, or maintenance. Just point your MX records to mx1.openefa.com and your organization is protected instantly.

Setup time: Under 5 minutes

2. Full Transparency (No Black Box Filtering)

Every filtered email includes:

  • Exact reason for quarantine
  • AI score and rule breakdown
  • Full message headers
  • Intent analysis and risk details

You see exactly why a message was blocked or delivered.

3. Works with Any Email System

Cloud-hosted email services:

  • Microsoft 365 / Exchange Online
  • Google Workspace
  • Zoho Mail, Rackspace, FastMail
  • Any cloud email provider

On-premise mail servers:

  • Exchange, Zimbra, Xeams
  • Postfix, Dovecot, Exim
  • Sendmail, Qmail, and more

4. Lower Cost, Higher Protection

Simple per-user pricing from $5/user/month. No long-term contracts, no vendor lock-in. Archiving included in higher tiers — not a costly add-on.

Alternative to: Barracuda, Mimecast, Proofpoint at a fraction of the cost

See the migration guide →

OpenEFA Cloud: The Recommended Deployment

Most customers choose our cloud-hosted email security service

Fully Managed Infrastructure

We handle all server maintenance, updates, and monitoring

Real-Time Threat Updates

Continuous threat intelligence updates protect against emerging attacks

High Availability

99.9% uptime with redundant infrastructure

Automatic Upgrades

Filtering engine improvements deployed automatically

Global Threat Intelligence

Shared learning across all protected domains

Web-Based Portal

Manage quarantine, whitelist, and train AI at mailguard.openefa.com

This is the fastest, easiest, most powerful version of OpenEFA.

Get Started with Cloud

On-Premise Appliances & Private Deployments

For organizations with regulatory compliance, data residency, or security requirements—we deploy OpenEFA at your location while we handle all management, updates, and monitoring:

On-Premise Appliance

Physical hardware deployed at your location for regulatory compliance—fully managed and updated by OpenEFA remotely.

  • Meets data residency requirements
  • No data leaves your network
  • Still fully managed by OpenEFA
  • Automatic updates and monitoring
  • Zero IT burden on your team

Private Cloud Deployment

OpenEFA deployed in your private cloud infrastructure—managed remotely by our team:

  • Your AWS, Azure, or GCP account
  • VMware, Proxmox, Hyper-V
  • Your own data centers
  • Data stays in your environment
  • Managed by OpenEFA remotely

Air-Gapped Installations

Isolated systems for maximum security—with on-site or secure remote management:

  • Government agencies
  • Defense contractors
  • Financial institutions
  • Healthcare organizations
  • Complete network isolation
  • Secure update mechanisms
OpenEFA adapts to your environment—not the other way around.

All deployment options include full management by OpenEFA.

You get the compliance and data residency you need, without the IT overhead. Contact us to discuss on-premise or private deployment options.

Email Security Solutions for MSPs and IT Teams

A powerful, scalable platform designed for multi-tenant environments

🏢
Multi-Domain Management

Manage multiple customers from a single interface

🔐
Role-Based Access

Granular permissions and customer isolation

⚙️
Custom Rules & AI Tuning

Per-customer filtering policies and learning

🔌
API Integration

Automate provisioning and management

📈
Automated Reporting

White-label reports for clients

💰
Flat-Rate MSP Pricing

Predictable costs as you grow

Simple, Transparent Pricing

No hidden fees. No long-term contracts. Cancel anytime.

OpenEFA Secure
$5

per user / month

Full AI email security
No archiving

Most Popular
OpenEFA Protect
$6

per user / month

Everything in Secure
+ 1 year email archiving

OpenEFA Comply
$8

per user / month

7 year retention
Legal hold & compliance

OpenEFA Vault
$10

per user / month

Indefinite retention
Full compliance suite

View Full Pricing & Features

Frequently Asked Questions

OpenEFA® is an AI-powered email security platform that filters spam, phishing attacks, and advanced threats across cloud and on-premise environments. We use machine learning, natural language processing, and real-time threat intelligence to provide enterprise-grade protection. The "Open" in OpenEFA stands for our commitment to transparency — open about how we filter, open about how we score, and open about how we operate.

"Open" means transparent. OpenEFA is a proprietary, commercial platform — but we believe security works best when customers can see exactly what's happening to their email. That means:

  • Open filtering decisions — every blocked or delivered email includes the exact reason, AI score, and rule breakdown
  • Open scoring — full visibility into how each message is scored, with no black-box filtering
  • Open module architecture — we document how our filtering modules work (SPF/DKIM/DMARC, BEC detection, NLP analysis, intent classification, and more)
  • Open communication — honest, direct relationships with our customers through our User Forum and dedicated support
  • Open operations — transparent pricing, no hidden fees, and published performance metrics

Most email security vendors operate as a black box — you hand them your email and hope for the best. OpenEFA takes the opposite approach: we show you everything.

OpenEFA works with all email systems. Most customers use it with cloud-hosted services like Microsoft 365, Google Workspace, Zoho Mail, Rackspace Email, and FastMail. We also support all on-premise mail servers including Exchange, Zimbra, Xeams, Postfix, Dovecot, Sendmail, and more. Simply point your MX records to mx1.openefa.com and we'll filter mail before it reaches your mail server.

No. The cloud-hosted version requires no hardware and deploys within minutes. For organizations with regulatory, compliance, or data residency requirements, we offer managed on-premise appliances—physical hardware at your location that's still fully managed, monitored, and updated by OpenEFA remotely.

OpenEFA is a commercial email security platform with transparent per-user pricing. Plans start at $5/user/month for full AI email security (OpenEFA Secure), with archiving tiers available: Protect ($6/user) adds 1-year archiving, Comply ($8/user) adds 7-year retention with legal hold and compliance tools, and Vault ($10/user) provides indefinite retention. We also offer on-premise appliances and managed services. Visit our Pricing & Services page for details, or join our User Forum to learn more.

We offer 18/7 live support (phone, chat, screen sharing) plus 24/7 emergency support via email and text. Multiple support tiers are available including dedicated support for enterprises and MSPs. View support plans.

All customers access the web-based portal at mailguard.openefa.com to release quarantined emails, whitelist/blacklist senders, train the AI, view statistics, and customize filtering rules.

Get Started With Secure Cloud Email Filtering

OpenEFA delivers a modern, flexible, and transparent alternative to legacy email security gateways.

✓ Deploy in Minutes
✓ Improve Accuracy
✓ Reduce False Positives
✓ Strengthen Security
View Pricing Request a Demo Talk to Sales

Get in Touch

Interested in a demo, pricing information, or deploying OpenEFA? Let us know below.

Please enter your name (2-100 characters, letters only).
Please enter a valid email address.
0 / 5000 characters
Please enter a message (10-5000 characters).
This form is protected against spam and abuse. Your information will only be used to respond to your inquiry.

OpenEFA provides advanced AI-powered email security, cloud-hosted spam filtering, phishing protection, and threat detection for businesses of all sizes. Our platform integrates with all cloud-hosted email services including Microsoft 365, Google Workspace, Zoho Mail, Rackspace Email, FastMail, and any email provider. We also support all on-premise mail servers including Exchange, Zimbra, Xeams, Postfix, Dovecot, Sendmail, Exim, Qmail, and more. As a modern alternative to legacy email security gateways like Barracuda, Mimecast, and Proofpoint, OpenEFA delivers higher accuracy, better transparency, and flexible deployment options including cloud, on-premise, and private infrastructure. With support for DMARC, SPF, DKIM validation, AI-based filtering, NLP analysis, and real-time threat intelligence, OpenEFA ensures reliable protection against modern email-borne threats including spam, phishing, business email compromise (BEC), malware, and spoofing attacks.