Kaspersky Embedded Systems Security 4.0 offers the following features and improvements:
Significantly updated user interface of the Application Console and the plug-ins for managing the application using Kaspersky Security Center.
Support for Windows 11 24H2.
Now you can change the port that the Application Console uses to connect to a computer with the application installed.
In the Trusted zone, you can:
Configure trusted processes in a more granular way.
Use the trusted certificate store.
New settings for user and group rights to manage the application.
New Anti-Rootkit component. By default, the component is enabled if Real-Time File Protection is enabled. You can disable the component while installing the application, using the Change application components of Kaspersky Embedded Systems Security task, or in the properties of the application installation package.
In Exploit Prevention settings, the application can now automatically identify protected processes.
New Remediation Engine component.
The Network Threat Protection component can monitor network traffic to detect port scanning and high-intensity network requests.
The application is now compatible with the Windows Firewall. You no longer need to remove the Windows Firewall to install the application.
The Behavior Detection component monitors shared folders as well as local folders.
Reworked Applications Launch Control component:
Significant changes in the structure of component settings.
To specify Applications Launch Control rule triggering conditions and exclusions, you can now use the drive type, KL categories, KSN groups.
Reworked Device Control component:
By default, the Device Control component is configured to allow connection of all devices.
Wi-Fi Control is no longer a separate component and is now part of Device Control.
The possibility to control connected devices depending on the connection bus has been added.
Migration of settings for access to removable drives when upgrading from previous versions of the application to version 4.0 has been added.
The Firewall Management component has been reworked into the Firewall component, which, in addition to interfacing with the Windows firewall, now additionally functions as a firewall.
The functionality of the File Integrity Monitor and Registry Access Monitoring components has been merged into the new System Integrity Monitoring component. This improvement lets you efficiently track changes in the file system and Windows registry, increasing the protection against unauthorized modification of data.
The application does not support scheduling individual components. If the components are enabled, they keep running while the application is running.
Kaspersky Security Center Windows 15.1 is now supported.
Group tasks added:
Administration Server connection protection
Changing the set of Kaspersky Embedded Systems Security components
Baseline System Integrity Monitor instead of Baseline File Integrity Monitor
Update instead of Copying Updates, Application Database Update and Software Modules Update
Update rollback instead of Rollback of Application Database Update
Remove key
The application checks the configuration of control components before saving the settings. The check was added for the Applications Launch Control, Device Control, System Integrity Monitoring components. The application now displays a warning if the current settings of the control component may increase the load on the computer or cause system failures. For example, in the case of Applications Launch Control, if you selected the mode that blocks all applications except allowed ones, and you did not add any allow rule, the application displays a warning because such a configuration may cause system failures.
The possibility has been added to automatically create allowing rules for Applications Launch Control and to export these rules to a file. To do this, run the Rule Generator for Applications Launch Control task and enable the automatic creation of allowing rules based on running applications as well as the export of allowing rules. You can use the resulting file to inventory the software installed on the device.
New component, BadUSB Attack Prevention. The BadUSB Attack Prevention component prevents infected USB devices emulating a keyboard from connecting to the computer. When an USB device that the operating system identifies as a keyboard is connected to the computer, the application prompts the user to type on this keyboard to authorize the keyboard.
The Security level indicator has been added. The Security level Indicator is displayed at the top of the policy properties window and shows the degree of compliance of security settings with Kaspersky Lab recommendations. The Security level indicator allows you to quickly configure the policy and enable the required protection components.