To secure more than merely the internal workstation or server, Kaspersky Lab has developed Kaspersky Open Space Security, available from local distributor Biodata IT.
Kaspersky Open Space Security is an approach to network security that extends protection beyond the workplace to reach remote users and an increasingly mobile workforce.
The product combines the highest quality signature-based protection with the most advanced proactive technologies, which can recognise the warning signs of malicious activity in good time, alert users to its presence and roll back any harmful changes made by malicious programs. It also includes special protection for mobile users.
Kaspersky Open Space Security uses a specially-created policy for laptop users, which automatically kicks in as soon as the laptop is disconnected from the administrative server.
The policy rules are carefully adapted to ensure the fullest protection for laptops cut loose from their home network, prescribing the source and frequency of updates, scanning schedules, firewall configuration, etc.
When the user connects to the corporate network, the data on the laptop and the administrative server is synchronised, providing the administrator with reports of anti-malware activity, while automatically updating the laptop with the most current corporate security policies.
This means protected users can work securely on any type of network, including WiFi, and remain invisible to hackers. As soon as the program connects to a new network, it asks the user whether the connection is to the Internet, Intranet or a trusted network, and chooses the firewall's operating mode accordingly.
The application saves a list of all networks accessed and offers the option of enabling/disabling invisible mode for each individual network.
When a connection to the administrative server is unavailable, Kaspersky Open Space Security ensures that protection is always up-to-date, by automatically switching to alternative update sources (via the Internet). Meanwhile, proactive technologies are always in the background to detect new threats, an extremely important feature for users who are not updated with the latest databases.
Policy compliance checks
When an employee reconnects to the network after taking their laptop away on business or on holiday, the security solution checks the system for compliance with applicable security policies, to safeguard other users on the network.
Cisco NAC (Network Admission Control) is supported by Kaspersky Open Space Security, enabling the solution to check computers that have reconnected to the network after an absence for compliance with applicable security policies. Furthermore, when the program detects an infected computer, it blocks any connections to it, enabling the administrator to track down the source of the infection.
Rootkit detection
Kaspersky Open Space Security uses anti-rootkit technology that detects any hidden processes in the system by:
1) Scanning of critical system areas. This task launches a scan of all areas of the operating system that are the most vulnerable to infection (conducting a scan of startup objects, for instance, can help prevent viruses from being launched when the system is booted and can detect rootkits.
2) Analysing all processes in the system, sending alerts to users when any dangerous, suspicious or hidden processes (eg, rootkits) are launched.
The new Kaspersky system uses heuristic algorithms that are specially designed to detect activity consistent with an attempt to steal passwords and dispatch data from the computer.
Together with a personal firewall, IDS and IPS closely monitor all network activity and prevent any intrusion into the system or data-leakage from it.
The technology tracks all suspicious activities in the system to identify malicious processes, removing the malicious program responsible and rolling back any harmful changes. Not only does the program remove any malicious programs it detects, but also rolls back any harmful changes they have made (this may involve restoring encrypted data).
Finally, Kaspersky Open Space Security includes a powerful set of administration tools - Kaspersky Administration Kit, which was expressly designed to meet the needs of networks of any size or complexity. This tool enables central administration of dynamic networks that number tens of thousands of nodes, extending to remote access and laptop users.
Biodata IT will display this innovative product at the Kaspersky stand during the ITWeb Summit to be held next week.
For more information on Kaspersky Open Space Security or any Kaspersky products, please contact Adrian Noble at Biodata, (011) 234 3650, or adriann@biodata.co.za. Detailed product information is available at www.kaspersky.co.za.
Share
Editorial contacts