Kaspersky Lab has taken out patents on three new technologies designed for business security solutions. These include a technology for proxy server-side antivirus scanning of data downloaded from the network, a method for reducing IT security risks on corporate computer networks, and a system for controlling access to network resources.
Patent 2449348, issued in the Russian Federation, describes a system and method for server-side antivirus scanning of data downloaded from the network. Kaspersky Lab experts have created a technology which analyzes the main parameters of the files being downloaded and assesses the legitimacy of the source of new data. If the data comes from a questionable source or has characteristics indicating the possible presence of malicious code, it will be fully downloaded to the proxy server, where it will be scanned for malware. The user will be shown information on scanning progress.
Conversely, if the assessment suggests there is little evidence of malicious components in the data being downloaded, scanning will be performed on the user’s computer. Compared to other solutions which provide antivirus scanning on a remote computer or server, the technology patented by Kaspersky Lab has the advantage of automatically selecting the scanning algorithm for the files being downloaded, making the security system more efficient and saving resources.
Patent number 8181253 was taken out by Kaspersky Lab in the USA. It describes a system and method for reducing IT security risks in computer networks. The technology provides a means of assessing potential hazards related to a user’s activity based on a number of parameters. These parameters include an employee’s activity on his or her workstation, connections between the employee in question and other employees, as well as other information. The results of the assessment can be used to set up a flexible information security policy, including antivirus module settings, access levels etc.
The third patent, number 8209740, was also issued in the USA. It describes a system and method for controlling access to resources on the corporate network or a specific segment of the network using an administration agent installed on a computer specially designated for the purpose. In the initial stage of its operation, the technology determines the corporate network’s topology and calculates each computer’s performance rating. The administration agent is installed on the machine with the highest performance rating and is used by the administration server to control access to resources on the corporate network. Hence, the technology helps to ensure that security policies are implemented on the corporate network in the most effective manner.
“Preventing cyber-attacks is acknowledged as the main goal of IT experts in most companies,” commented Kaspersky Lab Chief Technology Officer Nikolay Grebennikov. “We are continually developing and implementing new protection technologies in order to provide businesses with the most effective security solutions. Crucially, we develop anti-malware protection that meets our business customers’ requirements for scalability, ease of deployment and adaptation to corporate IT infrastructure. Some technologies also account for the potentially destructive activity of employees – whether this is by accident or design. One of the recently patented methods is designed to automatically change rules and restrictions for specific employees based on their behavior.”
Over 110 advanced technologies developed by Kaspersky Lab are currently protected by patents in Russia, the US, Europe and China. Patent authorities in different countries are currently considering over 160 patent applications filed by Kaspersky Lab.