Upload
ronald-shepherd
View
277
Download
3
Tags:
Embed Size (px)
Citation preview
KasperskyKaspersky ®
OpenSpace SecurityOpenSpace SecurityKasperskyKaspersky
® OpenSpace SecurityOpenSpace Security
Christian RunteBiodata
What makes a Great AV solution?What makes a Great AV solution?
Detection RatesDetection Rates
Response TimeResponse Time to New Threatsto New Threats
Minimum of Minimum of False PositivesFalse Positives
1st
How We RateHighest Ranking Using Independent Tests*
How We RateHighest Ranking Using Independent Tests*
Note: Weighted Average calculated by summing all test scores for each vendor and then dividing by the number of tests in which they participated
Number of 1st
Place Awards
SUSE Linux WinXP
Vista x64
Netware 6.5 Win2k
Security Suites Detection On-Demand
Retrospective OVERALL RATING
False Positive/ Alarms
Proactive Detection
Detection in Real-Life
EnvironmentSecurity Suites
Self Protection
Treatment of Active Infections
Weighted Average
Company Apr-07 Jun-07 Aug-07 Oct-07 Dec-07 Nov-07 Nov-06 Aug-07 Nov-07 Nov-07 Nov-07 Mar-07 Dec-07 Sep-07 Sep-07
Kaspersky 1 2 1 1 2 2 7 3 1 3 5 1 1 1 1 2.13
Symantec 1 1 1 1 1 1 6 2 2 2 8 4 2 2 2 2.40
McAfee 1 1 1 1 1 3 14 9 2 6 9 4 2 7 6 4.47
Trend Micro 1 3 5 5 16 3 2 9 7 5.67
Microsoft 1 1 1 22 10 2 4 8 6 2 14 6.45
Sophos 1 1 1 2 3 25 12 11 7.00
*Based on minimum participation in 8 of 15 independent tests
Premium proactive protectionPremium proactive protection
• Behavior-based proactive defense module
• In recent tests by AV-Comparatives, Kaspersky Anti-Virus 6.0 provides exceptionally effective proactive protection - detecting 99% of the AV-Comparatives collection
• Unique suite of proactive technologies (heuristic, generic and behavioral) for zero hour detection of unknown malicious programs with maximum accuracy
• Also works at the gateway
• Behavior-based proactive defense module
• In recent tests by AV-Comparatives, Kaspersky Anti-Virus 6.0 provides exceptionally effective proactive protection - detecting 99% of the AV-Comparatives collection
• Unique suite of proactive technologies (heuristic, generic and behavioral) for zero hour detection of unknown malicious programs with maximum accuracy
• Also works at the gateway
Heuristic scanning
Protection from spyware and adware
Protection from spyware and adware
• Integrated best-of-class protection from spyware, adware, rootkits, backdoors, dialers, key loggers, password stealers and other malicious code.
• Unified scanning engine and database for performance, security and ROI benefits: 1 scanner, 1 database, 1 update routine
• Hourly scheduled updates for antivirus and anti-spyware signatures
• Integrated best-of-class protection from spyware, adware, rootkits, backdoors, dialers, key loggers, password stealers and other malicious code.
• Unified scanning engine and database for performance, security and ROI benefits: 1 scanner, 1 database, 1 update routine
• Hourly scheduled updates for antivirus and anti-spyware signatures
Largest number of supported formats
Largest number of supported formats
• Antivirus solutions should be able to scan objects, no matter how or how many times they have been compressed, packed, archived or embedded into installers
• Kaspersky Anti-Virus supports more than 2,000 different types of packers, archives and installers – all of which can potentially contain malicious code
• Thus we have included support for ISO files and other uncommon formats
• Antivirus solutions should be able to scan objects, no matter how or how many times they have been compressed, packed, archived or embedded into installers
• Kaspersky Anti-Virus supports more than 2,000 different types of packers, archives and installers – all of which can potentially contain malicious code
• Thus we have included support for ISO files and other uncommon formats
ZIP GIF
DOC RAR CAB
ARJ MSISYS
EXEBMPJPEG AVIMP3ZIP
TXT PTT
Email (MIME)
What makes a Great AV solution?What makes a Great AV solution?
• Premium proactive technologies
• Rapid response with emergency updates
• Most frequent and small regular updates
• Best-of-class protection from spyware, adware, rootkits and other hostile programs
• Largest number of supported formats
• Protection from mobile malware included
• Top disinfection support + changes rollback
• Mobile policy
• Certified local service
• Premium proactive technologies
• Rapid response with emergency updates
• Most frequent and small regular updates
• Best-of-class protection from spyware, adware, rootkits and other hostile programs
• Largest number of supported formats
• Protection from mobile malware included
• Top disinfection support + changes rollback
• Mobile policy
• Certified local service
Best Detection QualityDetection Qualitycombined with minimal false alarms
Kaspersky Lab todayKaspersky Lab today• One of the top internationally-recognized developers of secure content management
solutions that protect against viruses, Trojans, spyware, adware, spam and hacker attacks
• Over 250 million users worldwide protected by Kaspersky products and solutions; • Over 1,000 employees• Leading IT security experts• 17 years experience in the antivirus field• 10 years expertise in OEM business and customized solutions development for
integration into a wide range of hardware and software platforms; 80+ OEM/licensing partners world-wide
• 24x7X365 AV Lab and Support Centre (based in Moscow, Russia)• Over 200 000 virus definitions; hourly signature updates
• One of the top internationally-recognized developers of secure content management solutions that protect against viruses, Trojans, spyware, adware, spam and hacker attacks
• Over 250 million users worldwide protected by Kaspersky products and solutions; • Over 1,000 employees• Leading IT security experts• 17 years experience in the antivirus field• 10 years expertise in OEM business and customized solutions development for
integration into a wide range of hardware and software platforms; 80+ OEM/licensing partners world-wide
• 24x7X365 AV Lab and Support Centre (based in Moscow, Russia)• Over 200 000 virus definitions; hourly signature updates
Have Chosen Kaspersky Lab TechnologyHave Chosen Kaspersky Lab Technology
And international awards
And international awards
Thank youThank you
Full-scale protectionFull-scale protection
Kaspersky Open Space SecurityKaspersky Open Space Security
IntroducingKaspersky Administration Kit 6.0
IntroducingKaspersky Administration Kit 6.0
• Powerful and flexible tool designed for centralized security management
• Provides corporate IT security professionals with tools to efficiently protect network users from viruses and malicious programs
• Free administration tool included as part of Kaspersky Open Space Security
• Powerful and flexible tool designed for centralized security management
• Provides corporate IT security professionals with tools to efficiently protect network users from viruses and malicious programs
• Free administration tool included as part of Kaspersky Open Space Security
Kaspersky Open Space SecurityKaspersky Administration Kit 6.0
Kaspersky Open Space SecurityKaspersky Administration Kit 6.0
• Enforce enterprise security policies
• Remote rapid deployment
• Removal of third party AV software
• Manage anti-virus licenses
• Updates antivirus databases and program modules
• Reports on and analyze network statistics
• Administration Server Set-up
• Enforce enterprise security policies
• Remote rapid deployment
• Removal of third party AV software
• Manage anti-virus licenses
• Updates antivirus databases and program modules
• Reports on and analyze network statistics
• Administration Server Set-up
Administration Server
Network Agent
Administration Server
• Quick Start Wizard– Scans corporate network– Moves machines from Network
container to Administrative Groups container
• Scanning of Network– Only Admin Kit which scans via
Active Directory, IP subnets, and Workgroups
– Symantec and Trend consoles only scan by IP subnets
• Quick Start Wizard– Scans corporate network– Moves machines from Network
container to Administrative Groups container
• Scanning of Network– Only Admin Kit which scans via
Active Directory, IP subnets, and Workgroups
– Symantec and Trend consoles only scan by IP subnets
Admin Server Set-upKaspersky Administration Kit 6.0Admin Server Set-up
Kaspersky Administration Kit 6.0
Administration Server
Domain 1
Domain 2
• Quick and Easy Deployment– Use of wizards to create tasks– Deployment of third party software
• Centralized Anti-Virus Installation Methods– Push install using Windows Networking– Login script– Third party management console
• Scheduling– On demand– Automatic deployment to new computers (Only Kaspersky and Trend)
• Wake-on-LAN/Shut Down – Remotely turn on client computers to perform scheduled tasks and shut them down
(Only Kaspersky)
• Quick and Easy Deployment– Use of wizards to create tasks– Deployment of third party software
• Centralized Anti-Virus Installation Methods– Push install using Windows Networking– Login script– Third party management console
• Scheduling– On demand– Automatic deployment to new computers (Only Kaspersky and Trend)
• Wake-on-LAN/Shut Down – Remotely turn on client computers to perform scheduled tasks and shut them down
(Only Kaspersky)
Kaspersky Anti-Virus DeploymentKaspersky Administration Kit 6.0
Kaspersky Anti-Virus DeploymentKaspersky Administration Kit 6.0
• Removes over 100 applications with built-in scripts
– Symantec (12 versions)– McAfee (25 versions)– Trend Micro (5 versions)
(Deployed through Administration Kit)
• Removes over 100 applications with built-in scripts
– Symantec (12 versions)– McAfee (25 versions)– Trend Micro (5 versions)
(Deployed through Administration Kit)
Administration Server
Anti-Virus RemovalKaspersky Administration Kit 6.0Anti-Virus RemovalKaspersky Administration Kit 6.0
VPNVPN
Admin KIT
Admin KIT
Admin KIT
Admin KIT
Performance - one server can support thousands of computers
Scalability and Hierarchy - any number of servers can co-exist on one logical network
Connectivity – support for any network configuration and topology including FW, VPN, PFW, proxies etc.
Admin Server Set-upKaspersky Administration Kit 6.0Admin Server Set-up
Kaspersky Administration Kit 6.0
• Manages seven real-time protection components– File Anti-Virus– Mail Anti-Virus– Web Anti-Virus– Proactive Defense– Anti-Spy– Anti-Hacker Firewall– Anti-Spam
• Anti-Virus update source
• Scan scope
• User interface and notifications
• Mobile user policy (only Kaspersky and Symantec)
• Manages seven real-time protection components– File Anti-Virus– Mail Anti-Virus– Web Anti-Virus– Proactive Defense– Anti-Spy– Anti-Hacker Firewall– Anti-Spam
• Anti-Virus update source
• Scan scope
• User interface and notifications
• Mobile user policy (only Kaspersky and Symantec)
Anti-Virus Policy ManagementKaspersky Administration Kit 6.0
Anti-Virus Policy ManagementKaspersky Administration Kit 6.0
• Special pre-configured “Mobile” policy activated when the laptop user is “out-of-office” • No scheduled AV scans when running on a battery power
Future plans:• Roaming users support• NLA (Network Location Awareness)
Mobile PolicyProtection on the Road Mobile Policy
Protection on the Road
Cisco Network Admission Control technology now featured in Kaspersky Lab products
All computers that have reconnected to the network after an absence are first checked for compliance with applicable security policies
NACReturning Laptops and Security Policy Compliance
NACReturning Laptops and Security Policy Compliance
• Easy-to-create Reports:– Virus/Malware Activity– Network Attacks– Anti-Virus Database Versions– External Anti-Virus Applications– Virus Protection Coverage– Licensing– Kaspersky Software Version– Custom Reports
• Easy-to-create Reports:– Virus/Malware Activity– Network Attacks– Anti-Virus Database Versions– External Anti-Virus Applications– Virus Protection Coverage– Licensing– Kaspersky Software Version– Custom Reports
ReportingKaspersky Administration Kit 6.0
ReportingKaspersky Administration Kit 6.0
• Suspension of scanning in case of increased user activity
• We have one of the most powerful proactive defense module, including keyloggers and rootkits advanced detection techniques
• PDM’s rollback technology is really powerful and unique
• Our Anti-Hacker module is very powerful and provide a very good protection against leaktests (~ZA, Oupost; better than Symantec, MacAfee, Panda,…)
• Intrusion prevention subsystem contains constantly updatable up-to-date database and shows much better results than competitor’s subsystems Advanced self-protection
• Web-antivirus which provides additional powerful level of protection
• Unique SSL-traffic scanning
• Rescue CD tool (you need only XP SP2 and free PEBuilder)
• Network iSwift
• Suspension of scanning in case of increased user activity
• We have one of the most powerful proactive defense module, including keyloggers and rootkits advanced detection techniques
• PDM’s rollback technology is really powerful and unique
• Our Anti-Hacker module is very powerful and provide a very good protection against leaktests (~ZA, Oupost; better than Symantec, MacAfee, Panda,…)
• Intrusion prevention subsystem contains constantly updatable up-to-date database and shows much better results than competitor’s subsystems Advanced self-protection
• Web-antivirus which provides additional powerful level of protection
• Unique SSL-traffic scanning
• Rescue CD tool (you need only XP SP2 and free PEBuilder)
• Network iSwift
Full list of unique features
Thank youThank you