Kaspersky Security 3.0 Light Agent (versions 3.0.51.6061 and 3.0.63.4000) release notes

On April 15, 2014 Kaspersky Lab announces the commercial release of Kaspersky Security for Virtualization 3.0. The full version numbers are:

• 3.0.51.6061 forCitrix XenServer and Windows Server with the Hyper-V server role.  
• 3.0.63.4000 for VMware ESXi.  

Kaspersky Security for Virtualization 3.0 is an integrated solution that provides comprehensive protection for virtual machines powered by Microsoft Windows Server 2008 R2 Hyper-V, Microsoft Windows Server 2012 Hyper-V, Citrix XenServer, or VMware ESXi hypervisors against known and new threats, including network and phishing attacks.
Kaspersky Security for Virtualization 3.0 Light Agent protects virtual machines with Microsoft Windows server and desktop guest operating systems.

Components of Kaspersky Security for Virtualization 3.0 

Kaspersky Security для виртуальных сред 3.0 includes the following components:

• Protection Server. This component is supplied as an SVM image. A secure virtual machine (SVM) is a virtual machine with the Protection Server component deployed on a hypervisor. An SVM should be deployed on each hypervisor whose virtual machines need to be protected.
• Light Agent. This component is installed on virtual machines and virtual machine templates. A protected virtual machine is a virtual machine on which the Light Agent component is installed. Light Agent should be installed on all virtual machines that need to be protected. Light Agent is installed via the local interface on each virtual machine, remotely via Kaspersky Security Center, or via Active Directory Group Policies Editor.
• Kaspersky Security Center is a standalone application of Kaspersky Lab used for remote centralized management of the application.
• Network Agent This component supports interaction between the Administration Server of Kaspersky Security Center and virtual machines with the application installed. Network Agent should be installed on all virtual machines that need to be protected. Network Agent does not need to be installed on SVMs because this component is already included in the SVM image.

Key features of Kaspersky Security for Virtualization 3.0

1. File Anti-Virus protects the file system of the virtual machine against infiltration by malware. It can scan the activity of all applications in real time or on demand.

2. Mail Anti-Virus scans incoming and outgoing emails for viruses and other malware.

3. Web Anti-Virus intercepts and blocks execution of malicious scripts on websites. It protects data transmitted via the HTTP and FTP protocols, and blocks access to blacklisted (phishing or suspicious) URLs.

4. IM Anti-Virus protects information exchanged via instant messengers.

5. Firewall monitors and filters traffic according to the configured network rules.

6. Network Attack Blocker scans inbound network traffic for activity that is typical of network attacks.

7. Network Monitor provides information about current network activity of the virtual machine.

8. System Watcher collects data on the activity of applications on the virtual machine and passes this information to other components for more reliable protection of the virtual machine.

9. Application Startup Control runs on the protected virtual machine according to allow and block rules that are specified by the administrator of the local area network. Rules can be created on the basis of application categories that are provided by Kaspersky Lab or conditions that are specified by the administrator of the local area network.

10. Application Privilege Control blocks application activity on the protected virtual machine depending on the level of application danger and the reputation information that Kaspersky Lab provides.

11. Vulnerability Monitor detects vulnerabilities both in applications that are started on the virtual machine and in all applications that are installed on the virtual machine.

12. Device Control allows you to you set flexible restrictions on access to data storage devices and data transmission devices connected to the virtual machine.

13. Web Control allows you to limit or block users' access to web resources according to rules. Categories of web content, data types, and individual web addresses or their groups can be specified as rule parameters.

14. Protection has been improved through interaction with Kaspersky Security Network that provides up-to-date information on the reputation of files and web addresses.

15. Centralized management of application instances and database updates on protected virtual machine via Kaspersky Security Center using group policies and group tasks.

16. Faster scanning of protected virtual machines and reduced load on hypervisor's resources owing to the centralized cache of scan results.

17. Reduced load on the disk subsystem owing to intelligent scanning of files.

18. Monitoring of the execution of scan tasks and scan threads: limiting the number of simultaneous scan tasks running on a single protected virtual machine, configuring the number of Anti-Virus kernel scan threads on the SVM, and configuring the number of scan threads on the side of Light Agent.

19. Centralized storage of databases and optimized Light Agent databases' updates.

20. Automatic detection of the SVM by Light Agent.

21. Possibility to deploy the protection solution on a resource pool of Citrix XenServer hypervisors.

22. Possibility to deploy the protection solution on Windows Server 2008 R2 Hyper-V and Windows Server 2012 Hyper-V hypervisors in a cluster.

23. Support of disinfection scenarios that involve direct access to guest operating system's processes on the protected virtual machine.