Limitations and warnings

Kaspersky Fraud Prevention for Endpoints has a number of limitations that are not critical to operation of the application.

Warning about method used to store application operation reports

Reports on operation of the application are stored in encrypted form. If necessary, you can disable report encryption.

Website certificate check and file scan limitations

When checking a website certificate or scanning website files, the application may contact Kaspersky Security Network for information. If data from Kaspersky Security Network could not be retrieved, the application decides whether or not the file is infected and the certificate untrusted based on local application databases.

Warning about restrictions / issues when application settings are changed in a way that is not described in the documentation

Changing application settings by yourself in ways not described in the User Guide or recommended by Technical Support specialists can cause slowdowns and crashes of the operating system, reduce the protection level of your computer, and damage the availability and integrity of the processed information.

Encrypted connections scan limitations

Due to technical limitations of the implementation of scanning algorithms, scanning of encrypted connections does not support certain extensions of the TLS 1.0 protocol and later versions (particularly NPN and ALPN). Connections via these protocols may be limited. Browsers with SPDY protocol support use the HTTP over TLS protocol instead of SPDY even if the server to which the connection is established supports SPDY. This does not affect the level of connection security. If the server supports only the SPDY protocol and it is impossible to establish the connection via the HTTPS protocol, the application does not monitor the connection established.

Kaspersky Fraud Prevention for Endpoints monitors only those protected connection which it is able to decrypt. Scanning and decryption of encrypted traffic by default is performed when the user attempts to access online banking services and payment systems. The Anti-Phishing component also scans and decrypts encrypted traffic.

Kaspersky Fraud Prevention for Endpoints does not monitor the secure connection to the website if it was unable to retrieve the domain name of the website. In this case, the application does not check the website against the list of phishing websites.

Kaspersky Fraud Prevention for Endpoints decrypts encrypted traffic while the user is using the Google Chrome browser if the Kaspersky Protection extension is missing or disabled in this browser.

Restrictions applicable to settings of automatic processing of infected files

Infected files are processed automatically according to rules created by Kaspersky Lab specialists. You cannot modify these rules manually. Rules can be updated following an update of databases and application modules.

Specifics of infected file processing

By default, the application can delete infected files that cannot be disinfected. Removal by default can be performed during processing of infected files, during scan tasks, and upon detection of malicious activity of applications.

About personal data contained in report files

Application report files are stored locally on your computer. Path to report files: %allusersprofile%\Kaspersky Lab\SM4.0.0\Report\Database.

Reports are stored in the following files:

• reports.db
• reports.db-wal
• reports.db-shm (does not contain any personal data)

Report files are protected against unauthorized access if self-defense is enabled in Kaspersky Fraud Prevention for Endpoints. If self-defense is disabled, report files are not protected.

Report files can contain the following personal data:

• Online browsing history
• Versions of the browser and operating system
• Names of cookies and other files and paths to them

Kaspersky Fraud Prevention for Endpoints limitations under Microsoft Windows 10

Advanced Disinfection functionality is unavailable in the application installed on the Microsoft Windows 10 operating system. This restriction can be removed following an update of databases and application modules.

Kaspersky Fraud Prevention for Endpoints installed on a computer running Microsoft Windows 10 does not perform malware disinfection during installation, after the computer is restarted, and upon detection of malware loaded into computer memory, if the Device Guard mode is enabled in the operating system.