Kaspersky Embedded Systems Security 2.2 (version 2.2.0.605): commercial release

Kaspersky Embedded Systems Security 2.2 was released on November 20, 2018. The full version number is 2.2.0.605.

What's new

• Support for new versions of Microsoft Windows operating systems.
  • Self-defense mechanisms based on ELAM and PPL technologies: now when the application is installed, it automatically registers an ELAM driver that makes it possible to start the Kaspersky Security service (kavfs.exe) with the Protected Process Light attribute. This makes it possible to bolster the application's self-defense and prevent a broad range of attacks. The functionality is available when the application is installed on computers running Microsoft Windows Server 2016 and higher.
  • Support for checking and processing cloud files stored in Microsoft OneDrive.
• Improved capabilities of the installation package control subsystem. Now you can indicate which installation files can pass the trusted installation package attribute for the entire chain of files extracted from them. This makes it possible to increase the stability of the software installation processes on a server with enabled Applications Launch Control, but it also increases the scope for a potential attack by increasing the number of authorized application launches. We recommend using the parameter during complex software deployments, including when the server must be restarted during the software distribution process.
• Integration with WMI tools. Now when the application is installed, a Kaspersky Security namespace is automatically created in the WMI root namespace on the local computer. You can use client solutions that support WMI queries to obtain data about the application and its components.
• The format for displaying information about the application and its components has been expanded with the KAVSHELL OMSINFO command. Now you can get information about the status of the Applications Launch Control task as well as information about installed critical updates of application modules.
• Improved capabilities for managing and monitoring application state using the Compact Diagnostic Interface.
  • Now you can review the statistics counters for installed components on the Statistics tab of the Compact Diagnostic Interface.
  • The password is not required upon accessing the Compact Diagnostic Interface, even if the password-protection feature is on: the application limits access to the information and control elements that are available in the Compact Diagnostic Interface basing only on the specified user permissions for the application management.
• The feature of basic protection during the operating system startup has been added. By default, the application does not work in the environment of the Safe Mode. For application to start automatically when the computer is booted in the Safe Mode, open the Windows Registry key: HKLM\SYSTEM\CurrentControlSet\services\klam\Parameters and change the value of the LoadInSafeMode parameter to 1. The application functions with limitations in the Safe Mode environment.
• Kaspersky Security Center reports about the applications blocked at startup and the status of Kaspersky Embedded Systems Security. Components have been improved.
  • Now you can view the statistics on the applications that were blocked at startup according to the Application Launch Control task, in the combined report of Kaspersky Security Center.
  • Now you can view the information about the status of the installed components for each managed computer in the Kaspersky Security Center console. The feature is available if you are using Kaspersky Security Center 11.
• Users’ permissions for changing the installation folder and editing critical registry branches of the application components have been restricted.

For more information about the release of Kaspersky Embedded Systems Security 2.2, see this article.