The Evolution of the Kaspersky Lab Approach to Corporate Security

idleheadedceleryΚινητά – Ασύρματες Τεχνολογίες

10 Δεκ 2013 (πριν από 3 χρόνια και 6 μήνες)

70 εμφανίσεις

The Evolution of the Kaspersky Lab Approach
to Corporate Security

Petr
Merkulov, Chief Product
Officer, Kaspersky Lab

Kaspersky
Lab Cyber
Conference, Cancun, February 5
-
9, 2012

Global IT
Trends….


….bring additional
c
ustomer IT security challenges


Cloud
&Virtualization

Growing malware

Compliance

IT
Infrastructure
C
omplexity

Growing digital data

Consumerization

&
Mobility

Increasing

Security

Demand

Sensitive
data
leakage/loss

External
threats

Diversity of devices

Deploymen
t
/

Management

Diversity of devices

External
threats

Sensitive
data
leakage/loss

Deployment/

Management

Kaspersky Endpoint Protection

Platforms/

environments

Dynamic
multi
-
layer
security

Data
Protection

Manageability

….from Customer challenges to product directions


Enhancing depth of protection

Evolution of multi
-
layered security

2,000,000

1,000,000

0

3,000,000

5,000,000

4,000,000

70,000

Signatures

67
mln

samples

2005

2006

2007

2008

2009

2010

2011


Signatures

Traditional Heuristics

Emulation

HIPS

KSN

Whitelisting

Our response to a growing threat

Dynamic multi
-
layer protection

I Penetration

1.
Malware and phishing
f
iltering

2.
Script heuristics

3.
Web
-
AV/Control

4.
Device Control

IV Execution

9.
Application control

III Run attempt

6.
Cloud whitelisting/blacklisting

7.
Emulator heuristics

8.
Security rating (patented)

II Store

5
.
Signatures scanner

Maximum Usage of Security Cloud

The
Kaspersky
Security
Network

Your Office

Kaspersky Global Users

Global
cloud distributed
intelligence
network


Kaspersky
Security Network




More than 300

mln
.

t
rusted
f
iles

Whitelisting as an essential part of
A
pplication
C
ontrol

Whitelisting is crucial because there are too many files out there to
be checked by traditional scanning approach

Kaspersky Endpoint Protection

Platforms/

environments

Dynamic
multilayer
security

Data
Protection

Manageability

….from Customer challenges to product directions: Data Protection


Kaspersky Endpoint Protection

Data Protection evolution

Complexity of deployment

Successful Adoption rate

Content
aware DLP

Basic device control

Advanced device
control

Removable media &
full disk encryption

DLP
-
lite

Content aware DLP

Beyond

2012

2012

2011

2009

Device Control

Encryption

File
/folder
encryption

Endpoint Protection Philosophy and direction

Platforms/

environments

Dynamic
multi
-
layer
security

Data
Protection

Manageability

….from Customer challenges to product directions: Platform Support

Kaspersky Endpoint Security

Platform support evolution

PAGE
11



2009

2010

2012

Beyond
2012

Basic
virtualization
support (
VMWare

ready)

Macintosh, Linux

Symbian
, Android,
Windows Mobile

KSV (
vShield
)

MDM (agentless)

Hyper
-
V, Citrix,
etc

Advanced MDM
(agent based)


Works with VMware’s
vShield

Endpoint


Antimalware
functions
offloaded


Managed component of
Kaspersky Security Center

Kaspersky Security for Virtualization

Virtual

Appliance

VMware vShield

VMware ESX and
ESXi


VM

VM

VM

Physical Host

Endpoint Protection

Philosophy and direction

Platforms/

environments

Dynamic
multi
-
layer
security

Data
Protection

Manageability

….from Customer challenges to product directions: Manageability


Single
-
Pane for
administrators


Automatic recognition


Broad platform
coverage: Physical,
Virtual,
Mobile


Intuitive deployment,
management &
reporting

Kaspersky Endpoint Security

Smartphone

Agent Based
Virtual
Deployment

Agentless
Virtual
Deployment

Laptop

Desktop

Kaspersky Security
Center

Manageability philosophy




IT RISK
MANAGEMENT
AND
REPORTING







Patch management



Software deployment



License Management



Power management



OS deployment

& migration



Remote control



Antivirus



Host Intrusion
Prevention
System



Application control



Data protection



Security compliancy

Vulnerabilities

management

Repots and

dashboards

System management

Security

Kaspersky Endpoint Security

Manageability

evolution
:

systems & security management synergy

Software and
Hardware
discovery and
inventory



Kaspersky Endpoint Security

Manageability evolution: Mobile Device Management (MDM)

The Evolution of Kaspersky Endpoint Protection

Enabling
customers to
adopt advanced
technologies

Always staying
focused on
providing
immediate value

Thank You

Peter Merkulov, Chief Product
Officer, Kaspersky Lab

Kaspersky Lab Cyber Conference, Cancun, February 5
-
9, 2012