CSE communicates with the Microsoft Exchange Server through the Microsoft Messaging Application Programming Interface (MAPI) to receive notifications when messages arrive and to perform various pre-concerted actions on messages that are determined to be spam.
Email arrives at the Exchange Server.
CSE computes a unique fingerprint — which does not contain message content and cannot be decoded — for each message.
CSE sends the fingerprints to the Cloudmark Global Threat Network for evaluation.
The Cloudmark Global Threat Network sends a response to the CSE server indicating whether the message is spam or legitimate.
Depending on how you've configured CSE, it either tags the message as spam, moves it to a designated spam folder, or deletes it.
Cloudmark Server Edition does not block the regular flow of messages, so its operation has no impact on throughput.