Security audit

The task can be run only if you have an active Kaspersky Industrial CyberSecurity for Node license key with an ICS Audit licensed object.

Security Audit tasks are group and local tasks intended to search for vulnerabilities on devices and assess devices' compliance with operating system standards. To perform a Security Audit task, Kaspersky Endpoint Agent uses databases in XML format supplied with the product or custom ones.

• To search for vulnerabilities on devices, the application uses rules written in the OVAL language.

  OVAL (Open Vulnerability and Assessment Language) is an open language for describing and assessing vulnerabilities.

• To assess device security and standards compliance for operating systems, the application uses rule configurations written in the OVAL and XCCDF languages.

  XCCDF (Extensible Configuration Checklist Description Format) is an XML-based format for describing checklists of security parameters.

The following task management options are available:

• Managing Security Audit tasks using Kaspersky Security Center.
• Managing Security Audit tasks using the command line interface.