The Evolution of the Kaspersky Lab Approach to Corporate Security

Petr Merkulov, Chief Product Officer, Kaspersky Lab

Kaspersky Lab Cyber Conference, Cancun, February 5-9, 2012

Global IT Trends….

….bring additional customer IT security challenges

Cloud &Virtualization

Growing malware

Compliance

IT Infrastructure

ComplexityGrowing digital data

Consumerization & Mobility

IncreasingSecurityDemand

Sensitive data

leakage/loss

External threats

Diversity of devices

Deployment/Management

Diversity of devices

External threats

Sensitive data

leakage/loss

Deployment/Management

Kaspersky Endpoint Protection

Platforms/environments

Dynamic multi-layer

security

Data ProtectionManageability

….from Customer challenges to product directions

Enhancing depth of protectionEvolution of multi-layered security

2,000,000

1,000,000

0

3,000,000

5,000,000

4,000,000 70,000

New Threats Every Day

Signatures67 mln samples

2005 2006 2007 2008 2009 2010 2011

Signatures

Traditional Heuristics

Emulation

HIPS

KSN

Whitelisting

Our response to a growing threat

Dynamic multi-layer protection

I Penetration1. Malware and phishing filtering2. Script heuristics3. Web-AV/Control4. Device Control

IV Execution 9. Application control

III Run attempt6. Cloud whitelisting/blacklisting7. Emulator heuristics8. Security rating (patented)

II Store 5. Signatures scanner

1 000 000new files added every day280 million file reputations

Maximum Usage of Security Cloud

50 mln users

Real-time information collection

The Kaspersky Security Network

The Kaspersky Security Network

Your Office

Kaspersky Global Users

Global cloud distributed intelligence network – Kaspersky Security Network

Browsers\Internet Explorer Add

3942

Browsers\Web Browsers 4201

Business Software 825

Business Software\Accounting

8098

Business Software\Billing 34

Business Software\Business Cards Software

31

Business Software\CRM System

84

Business Software\Marketing & Sales

66

Business Software\Planning, Management, Payroll

361

Business Software\Word Processing Software

2494

Communications\Chat 1146

Communications\Email Utilities

2672…

More than 300 mln.trusted files

Whitelisting as an essential part of Application Control

Whitelisting is crucial because there are too many files out there to be checked by traditional scanning approach

Kaspersky Endpoint Protection

Platforms/environments

Dynamic multilayer security

Data Protection

Manageability

….from Customer challenges to product directions: Data Protection

Kaspersky Endpoint ProtectionData Protection evolution

Com

plex

ity o

f de

ploy

men

t

Successful Adoption rate

Content aware DLP

Basic device control

Advanced device control

Removable media & full disk encryption

DLP-liteContent aware DLPBeyond

2012

2012

2011

2009

Device Control

Encryption

File/folder encryption

Endpoint Protection Philosophy and direction

Platforms/environments

Dynamic multi-layer

security

Data Protection

Manageability

….from Customer challenges to product directions: Platform Support

Kaspersky Endpoint SecurityPlatform support evolution

PAGE 11

✚

2009

2010

2012

Beyond 2012

Basic virtualization support (VMWare ready)

Macintosh, LinuxSymbian, Android, Windows Mobile

KSV (vShield)MDM (agentless)

Hyper-V, Citrix, etcAdvanced MDM (agent based)

• Works with VMware’s vShield Endpoint

• Antimalware functions offloaded

• Managed component of Kaspersky Security Center

Kaspersky Security for Virtualization

KSVVirtual

Appliance

VMware vShield

VMware ESX and ESXi

VM VM VM

Physical Host

Endpoint Protection Philosophy and direction

Platforms/environments

Dynamic multi-layer

security

Data Protection

Manageability

….from Customer challenges to product directions: Manageability

• Single-Pane for administrators

• Automatic recognition

• Broad platform coverage: Physical, Virtual, Mobile

• Intuitive deployment, management & reporting

Kaspersky Endpoint Security

Smartphone

Agent Based Virtual

Deployment

Agentless Virtual Deployment

Laptop

Desktop

Kaspersky Security Center

Manageability philosophy

IT RISK MANAGEMEN

T AND REPORTING

• Patch management

• Software deployment

• License Management

• Power management

• OS deployment & migration

• Remote control

• Antivirus

• Host Intrusion Prevention

System

• Application control

• Data protection

• Security compliancy

Vulnerabilitiesmanagement

Repots anddashboards

System management Security

Kaspersky Endpoint SecurityManageability evolution: systems & security management synergy

Software and Hardware

discovery and inventory

 

Kaspersky Endpoint SecurityManageability evolution: Mobile Device Management (MDM)

The Evolution of Kaspersky Endpoint Protection

Heuristics, Self

Defense, Emulators

Signature- and

Pattern-based

Detection

Vulnerability and Patch

Management

App. Control

and Whitelistin

g

Encryption, DLP

Cloud-assistedSecurity Network

s

Enabling customers to adopt advanced technologies

Always staying focused on providing immediate value

Thank You

Peter Merkulov, Chief Product Officer, Kaspersky Lab

Kaspersky Lab Cyber Conference, Cancun, February 5-9, 2012