Upload
alisha-hall
View
223
Download
0
Tags:
Embed Size (px)
Citation preview
The Evolution of the Kaspersky Lab Approach to Corporate Security
Petr Merkulov, Chief Product Officer, Kaspersky Lab
Kaspersky Lab Cyber Conference, Cancun, February 5-9, 2012
Global IT Trends….
….bring additional customer IT security challenges
Cloud &Virtualization
Growing malware
Compliance
IT Infrastructure
ComplexityGrowing digital data
Consumerization & Mobility
IncreasingSecurityDemand
Sensitive data
leakage/loss
External threats
Diversity of devices
Deployment/Management
Diversity of devices
External threats
Sensitive data
leakage/loss
Deployment/Management
Kaspersky Endpoint Protection
Platforms/environments
Dynamic multi-layer
security
Data ProtectionManageability
….from Customer challenges to product directions
Enhancing depth of protectionEvolution of multi-layered security
2,000,000
1,000,000
0
3,000,000
5,000,000
4,000,000 70,000
New Threats Every Day
Signatures67 mln samples
2005 2006 2007 2008 2009 2010 2011
Signatures
Traditional Heuristics
Emulation
HIPS
KSN
Whitelisting
Our response to a growing threat
Dynamic multi-layer protection
I Penetration1. Malware and phishing filtering2. Script heuristics3. Web-AV/Control4. Device Control
IV Execution 9. Application control
III Run attempt6. Cloud whitelisting/blacklisting7. Emulator heuristics8. Security rating (patented)
II Store 5. Signatures scanner
1 000 000new files added every day280 million file reputations
Maximum Usage of Security Cloud
50 mln users
Real-time information collection
The Kaspersky Security Network
The Kaspersky Security Network
Your Office
Kaspersky Global Users
Global cloud distributed intelligence network – Kaspersky Security Network
Browsers\Internet Explorer Add
3942
Browsers\Web Browsers 4201
Business Software 825
Business Software\Accounting
8098
Business Software\Billing 34
Business Software\Business Cards Software
31
Business Software\CRM System
84
Business Software\Marketing & Sales
66
Business Software\Planning, Management, Payroll
361
Business Software\Word Processing Software
2494
Communications\Chat 1146
Communications\Email Utilities
2672…
More than 300 mln.trusted files
Whitelisting as an essential part of Application Control
Whitelisting is crucial because there are too many files out there to be checked by traditional scanning approach
Kaspersky Endpoint Protection
Platforms/environments
Dynamic multilayer security
Data Protection
Manageability
….from Customer challenges to product directions: Data Protection
Kaspersky Endpoint ProtectionData Protection evolution
Com
plex
ity o
f de
ploy
men
t
Successful Adoption rate
Content aware DLP
Basic device control
Advanced device control
Removable media & full disk encryption
DLP-liteContent aware DLPBeyond
2012
2012
2011
2009
Device Control
Encryption
File/folder encryption
Endpoint Protection Philosophy and direction
Platforms/environments
Dynamic multi-layer
security
Data Protection
Manageability
….from Customer challenges to product directions: Platform Support
Kaspersky Endpoint SecurityPlatform support evolution
PAGE 11
✚
2009
2010
2012
Beyond 2012
Basic virtualization support (VMWare ready)
Macintosh, LinuxSymbian, Android, Windows Mobile
KSV (vShield)MDM (agentless)
Hyper-V, Citrix, etcAdvanced MDM (agent based)
• Works with VMware’s vShield Endpoint
• Antimalware functions offloaded
• Managed component of Kaspersky Security Center
Kaspersky Security for Virtualization
KSVVirtual
Appliance
VMware vShield
VMware ESX and ESXi
VM VM VM
Physical Host
Endpoint Protection Philosophy and direction
Platforms/environments
Dynamic multi-layer
security
Data Protection
Manageability
….from Customer challenges to product directions: Manageability
• Single-Pane for administrators
• Automatic recognition
• Broad platform coverage: Physical, Virtual, Mobile
• Intuitive deployment, management & reporting
Kaspersky Endpoint Security
Smartphone
Agent Based Virtual
Deployment
Agentless Virtual Deployment
Laptop
Desktop
Kaspersky Security Center
Manageability philosophy
IT RISK MANAGEMEN
T AND REPORTING
• Patch management
• Software deployment
• License Management
• Power management
• OS deployment & migration
• Remote control
• Antivirus
• Host Intrusion Prevention
System
• Application control
• Data protection
• Security compliancy
Vulnerabilitiesmanagement
Repots anddashboards
System management Security
Kaspersky Endpoint SecurityManageability evolution: systems & security management synergy
Software and Hardware
discovery and inventory
Kaspersky Endpoint SecurityManageability evolution: Mobile Device Management (MDM)
The Evolution of Kaspersky Endpoint Protection
Heuristics, Self
Defense, Emulators
Signature- and
Pattern-based
Detection
Vulnerability and Patch
Management
App. Control
and Whitelistin
g
Encryption, DLP
Cloud-assistedSecurity Network
s
Enabling customers to adopt advanced technologies
Always staying focused on providing immediate value
Thank You
Peter Merkulov, Chief Product Officer, Kaspersky Lab
Kaspersky Lab Cyber Conference, Cancun, February 5-9, 2012