Using Kaspersky Security Network

The KSN functionality may not be available in the application in the territory of the USA.

To increase the protection of devices and user data, Kaspersky Industrial CyberSecurity for Linux Nodes can use the Kaspersky Security Network (KSN) cloud-based knowledge base to check the reputation of files, internet resources, and software. Using Kaspersky Security Network data ensures a faster response to various threats, high protection component performance, and fewer false positives.

Use of Kaspersky Security Network is voluntary. You can start or stop using KSN at any time.

Kaspersky Security Network infrastructure solutions

Kaspersky Industrial CyberSecurity for Linux Nodes supports the following infrastructure solutions to work with Kaspersky reputation databases:

• Kaspersky Security Network (KSN) – A solution that receives information from Kaspersky and sends data about objects detected on user devices to Kaspersky for additional verification by Kaspersky analysts and to add to reputation and statistical databases.
• Kaspersky Private Security Network (KPSN) – A solution that allows users of devices with Kaspersky Industrial CyberSecurity for Linux Nodes installed to access the reputation databases of Kaspersky, as well as other statistical data, without sending data to Kaspersky from their devices. KPSN is designed for corporate clients who can't use Kaspersky Security Network, for example, for the following reasons:
  • No connection of local workplaces to the Internet
  • Legal prohibition or corporate security restrictions on sending any data outside the country or the organization's local network

To use KPSN after activating a new application license, inform the service provider about the new license key. Otherwise, an authentication error will prevent data exchange with KPSN.

Kaspersky Security Network usage options:

There are two options for using KSN:

• Extended KSN mode – you can receive information from the Kaspersky knowledge base, while Kaspersky Industrial CyberSecurity for Linux Nodes automatically sends statistical information to Kaspersky Security Network that it obtained during its operation. The application can also send to Kaspersky for additional scanning certain files (or parts of files) that intruders can use to harm the device or data.
• In Basic KSN mode, you can receive information from the Kaspersky knowledge base, but Kaspersky Industrial CyberSecurity for Linux Nodes does not send anonymous statistics and data about the types and sources of threats.

You can select a different Kaspersky Security Network usage option at any time.

No personal data is collected, processed, or stored. Detailed information about the storage, and destruction, and/or submission to Kaspersky of statistical information generated during participation in KSN is available in the Kaspersky Security Network Statement and on Kaspersky's website. The file with the text of the Kaspersky Security Network Statement is included in the application distribution kit.

Cloud mode of Kaspersky Industrial CyberSecurity for Linux Nodes

Cloud mode is an operating mode of Kaspersky Industrial CyberSecurity for Linux Nodes that uses a lightweight version of the anti-malware databases. This lets you reduce the load on device memory.

Kaspersky Security Network facilitates the application's use of the lightweight anti-malware databases.

If you use KSN with the application, you can enable cloud mode for the application.

Kaspersky Industrial CyberSecurity for Linux Nodes switches to using a lightweight version of the anti-malware databases after enabling cloud mode and performing the latest update of the application databases and modules. If cloud mode is disabled, Kaspersky Industrial CyberSecurity for Linux Nodes downloads the full version of the application databases from Kaspersky servers during the next update of application databases and modules.

If you are not using KSN or cloud mode is disabled, Kaspersky Industrial CyberSecurity for Linux Nodes uses the full version of the application databases.

Cloud mode is disabled automatically if use of KSN is disabled.

Using the KSN Proxy service

User devices managed by Administration Server can communicate with KSN directly or via the KSN Proxy service.

A KSN proxy server provides the following capabilities:

• The user's device can query KSN and submit information to KSN, even without direct access to the Internet.
• A KSN proxy server caches processed data, thereby reducing the load on the external network connection and speeding up receipt of the information that is requested by the user's device.

The KSN proxy server settings can be configured in the Administration Server properties. For details about the KSN proxy server, refer to the Kaspersky Security Center Help.

In this Help section Configuring the use of Kaspersky Security Network in the Web Console Configuring the use of Kaspersky Security Network in the Administration Console Configuring the use of Kaspersky Security Network in the command line

Page top