Kaspersky Embedded Systems Security 3.x

About predefined security levels

October 25, 2023

ID 148447

The Use iChecker technology, Use iSwift technology, Use heuristic analyzer, and Check Microsoft signature in files security settings are not included in the settings for the preset security levels. If the Use iChecker technology, Use iSwift technology, Use heuristic analyzer, and Check Microsoft signature in files settings change, the preset security level you have selected will not change.

You can apply one of three predefined security levels to a node selected in the device's file resource tree: Maximum performance, Recommended, Maximum protection, or Notify only. Each of these levels contains its own predefined security settings (see the table below).

Maximum performance

The Maximum performance security level is recommended if your network has additional protected device security measures, for example, firewalls and existing security policies, beyond using Kaspersky Embedded Systems Security for Windows on protected devices.

Recommended

The Recommended security level ensures the best combination of protection and performance impact on devices. Kaspersky experts recommend this level as adequate to protect devices on most corporate networks. The Recommended security level is set by default.

Maximum protection

The Maximum protection security level is recommended if your organization's network has elevated device security requirements.

Notify only

The Notify only security level is recommended if there are potentially many infected computers in the corporate network and blocking them could significantly disrupt the operation of the organization.

Predefined security levels and corresponding security setting values

Options

Security level

Maximum performance

Recommended

Maximum protection

Notify only

Scan objects

By format

All objects

All objects

All objects

Scan only new and modified files

Enabled

Disabled

Disabled

Disabled

Action to perform on infected and other objects

Disinfect. Remove, if disinfection fails

Perform action recommended by Kaspersky experts

Disinfect. Remove, if disinfection fails

Notify only

Action to perform on probably infected objects

Quarantine

Perform action recommended by Kaspersky experts

Quarantine

Notify only

System-critical objects are files required for the operation of the operating system and Kaspersky Embedded Systems Security for Windows. These files can not be deleted. Processes associated with such objects cannot be terminated.

Exclude files

No

No

No

No

Do not detect

No

No

No

No

Stop scanning if it takes longer than (sec.)

60 sec.

No

No

No

Do not scan compound objects larger than (MB)

8 MB

No

No

No

Scan alternate NTFS streamsScan disk boot sectors and MBR

Yes

Yes

Yes

Yes

Scan disk boot sectors and MBR

Yes

Yes

Yes

Yes

Scan of compound objects

  • SFX archives*
  • Packed objects*
  • Embedded OLE objects*

* New and modified objects only

  • Archives*
  • SFX archives*
  • Packed objects*
  • Embedded OLE objects*

* All objects

  • Archives*
  • SFX archives*
  • Email databases*
  • Plain mail*
  • Packed objects*
  • Embedded OLE objects*

* All objects

  • Archives*
  • SFX archives*
  • Packed objects*
  • Embedded OLE objects*

* All objects

Did you find this article helpful?
What can we do better?
Thank you for your feedback! You're helping us improve.
Thank you for your feedback! You're helping us improve.