In fact, CA Mobile API Gateway doesn't help you with malware scanning for attachments send via Microsoft ActiveSync. It can help you with:
- building custom APIs with help of Policy language;
- establishing a mutual TLS connection between mobile devices and MAG server that hosts your custom APIs;
- abstracting away mobile authorization and authentication complexity by handling OAuth2 and OpenID Connect token exchange;
- enhancing API security with second factor authentication
- enabling Single SignOn between native, hybrid and web applications on your mobile device
You can find more information about CA Mobile API Gateway here: Mobile API Gateway Home - CA Mobile API Gateway - 3.2 - CA Technologies Documentation
For the client-side SDK information please refer to the mobile developer site: mas.ca.com