To start the KSN Usage task, you must accept the KSN Statement.
If KSN data about an application’s reputation is used by the Applications Launch Control task, the KSN application reputation is considered a criterion for allowing or denying launch of that application. If KSN reports to Kaspersky Embedded Systems Security that an application is untrusted when the user attempts to launch the application, the application launch is denied. If KSN reports to Kaspersky Embedded Systems Security that the application is trusted when the user attempts to launch the application, the application launch is allowed. KSN can be used along with Applications Launch Control rules or as an independent criterion for denying launch of applications.
Using KSN conclusions as independent criterion for denying application launch
This scenario lets you securely control application launches on a protected device without requiring advanced configuration of the rule list.
You can apply KSN conclusions to Kaspersky Embedded Systems Security together with the only specified rule. The application will only allow the start of applications that are trusted in KSN or are allowed by a specified rule.
For such a scenario, we recommend that you set a rule allowing start of the application based on a digital certificate.
All other applications are denied in accordance with the Default Deny policy. Using KSN when no rules are applied protects a device from applications that KSN considers to be a threat.
Using KSN conclusions simultaneously with Applications Launch Control rules
When using KSN conclusions simultaneously with Applications Launch Control rules, the following conditions apply: