Kaspersky Industrial CyberSecurity for Nodes databases and modules update schemes

The choice of update source in update tasks depends on the update scheme for databases and software modules used in the organization.

Kaspersky Industrial CyberSecurity for Nodes databases and modules can be updated on the protected devices using the following schemes:

The update schemes listed are described below.

Scheme 1. Updating databases and modules directly from the Internet

To configure Kaspersky Industrial CyberSecurity for Nodes updates directly from the Internet:

on each protected device in the settings of the Database Update task and the Software Modules Update task, specify Kaspersky's update servers as the source of updates.

Other HTTP or FTP servers that have an update folder can be configured as the update source.

Scheme 1: Updating databases and modules directly from the Internet

Scheme 2. Updating databases and modules via one of the protected devices

To configure receiving updates for Kaspersky Industrial CyberSecurity for Nodes via one of the protected devices:

  1. Copy updates to the selected protected device.
    • Configure the Copying Updates task settings on the selected protected device:
      1. Specify Kaspersky's update server as the update source.
      2. Specify a shared folder to be used as the folder where updates are saved.

        We recommend to deny access to the shared folder for relaying updates to all user groups on the device with the shared folder, except for the Administrators and SYSTEM groups. We recommend to grant the Administrators group read, view, and run rights, and grant full access to the SYSTEM group.

  2. Distribute updates to other protected devices.
    • On each of the protected devices, configure the Application Database Update and Software Module Updates tasks.
      1. For the update source, specify a folder on the intermediate device's drive to which updates will be downloaded.
      2. Specify the folder where the updates will be saved.

        We recommend to deny access to the folder where updates are saved for all device user groups except for the Administrators and SYSTEM groups. We recommend to grant the Administrators group read, view, and run rights, and grant full access to the SYSTEM group.

Kaspersky Industrial CyberSecurity for Nodes will obtain updates via one of the protected devices.

Scheme 2: Updating databases and modules via one of the protected devices

Scheme 3. Updating databases and modules via Kaspersky Security Center Administration Server

If you are using Kaspersky Security Center to centrally manage antivirus protection for devices, you can download updates via the Kaspersky Security Center Administration Server installed on your local network.

Scheme 3: Updating databases and modules via Kaspersky Security Center Administration Server

In order to configure receiving updates for Kaspersky Industrial CyberSecurity for Nodes via the Kaspersky Security Center Administration Server:

  1. Install the Network Agent on each of the protected devices. The Network Agent is a software component included in the Kaspersky Security Center distribution kit. This ensures interaction between the Administration Server and Kaspersky Industrial CyberSecurity for Nodes on the protected device. Detailed information about Network Agent and its configuration using Kaspersky Security Center is provided in the Kaspersky Security Center Help.
  2. Download updates from Kaspersky update servers to Kaspersky Security Center Administration Server.
    • Configure the Retrieve Updates by Administration Server task for the specified set of protected devices:
      1. Specify Kaspersky's update server as the update source.
  3. Distribute updates to protected devices. To do so, perform one of the following actions:
    • On the Kaspersky Security Center configure an Anti-Virus database (application module) update group task to distribute updates to protected devices:
      1. In the task schedule specify After Administration Server has retrieved updates as the start frequency.

        Administration Server will start the task each time it receives updates (recommended method).

      The After Administration Server has retrieved updates start frequency cannot be specified in the Application Console.

    • On each protected device, configure the Database Update task and the Software Modules Update task:
      1. Specify the Kaspersky Security Center Administration Server as the update source.
      2. Configure the task schedule if necessary.

      If Kaspersky Industrial CyberSecurity for Nodes anti-virus databases are rarely updated (from once a month to once a year), the likelihood of detecting threats decreases and the frequency of false alarms raised by application components increases.

Kaspersky Industrial CyberSecurity for Nodes will obtain updates via the Kaspersky Security Center Administration Server.

Scheme 4. Updating application databases from a secure removable drive

To update Kaspersky Industrial CyberSecurity for Nodes databases from a secure removable drive:

  1. Connect a Rutoken removable drive to the protected computer.
  2. Add an allow rule to the Device Control task for the connected Rutoken removable drive.
  3. In the Application Console on the device for which the most up-to-date antivirus databases are available, start, configure, and run the Secure Application Database Copy task. Select a Rutoken removable drive as the secure removable drive.
  4. In the Application Console on the protected device where you need to update the application databases, start and run the Secure Application Database Update task. Select the connected Rutoken removable drive you copied the application databases to as the secure removable drive.

Kaspersky Industrial CyberSecurity for Nodes will receive the updated application databases from the Rutoken secure removable drive.

Page top