Hardware and software requirements

Support

Support for business applications

Kaspersky Industrial CyberSecurity for Networks

About Kaspersky Industrial CyberSecurity for Networks

Hardware and software requirements

March 22, 2024

ID 102347

Get as PDF

Expand all | Collapse all

Hardware requirements

Kaspersky Industrial CyberSecurity for Networks has the following minimum hardware requirements for computers on which application components will be installed:

Computer that will perform Server functions:
- CPU: Intel Core i7 or equivalent (highest single-core frequency configurations are recommended)
- RAM: 32 GB
- Free space on the hard drive: 500 GB (SSD is recommended)
Computer that will perform sensor functions:
- CPU: Intel Core i5 / i7 or equivalent (maximum core configurations are recommended)
- RAM: 8 GB, and an additional 2 GB for each monitoring point on this computer
- Free space on the hard drive: 250 GB (SSD is recommended)

When using sensors, the bandwidth of the dedicated Kaspersky Industrial CyberSecurity network between the Server and each sensor must be at least 50% of the cumulative incoming traffic at the sensor (for all monitoring points of the sensor).

Example:

A sensor has two monitoring points. One monitoring point receives 100 Mbit/s of traffic, while the other receives 200 Mbit/s. In this case, the bandwidth of the channel between the sensor and the Server must be at least 150 Mbit/s ((200+100)/2=150).

Software requirements for Kaspersky Industrial CyberSecurity for Networks 4.0

Kaspersky Industrial CyberSecurity for Networks 4.0 has the following software requirements for computers on which application components will be installed:

CentOS Stream 8 operating system.
When installing the operating system, it is recommended to allocate the entire hard drive (minus the minimum space required for the boot and swap partitions) to the system (root) partition. To improve the performance of software, you can also mount the /var/ folder to a high-speed hard drive (if you have an additional drive, such as an SSD drive). If you choose to do so, the /var/ folder must be completely mounted to the other drive. Subfolders within the /var/ folder (such as /var/opt/) cannot be mounted to different drives.
The same version of operating system must be installed on all computers where application components are installed.
To install application components in the CentOS operating system, the following conditions must be fulfilled:
- Chrony time synchronization package version 3.1 or later is installed.
  You can install the Chrony time synchronization package by using the following commands in the operating system console:
  
  sudo dnf install chrony
  sudo systemctl enable chronyd
  sudo systemctl start chronyd
- The SELinux access control enforcement system is disabled.
  1. Open the system configuration file. To do so, enter the following command:
    sudo mcedit /etc/selinux/config
  2. Set the following parameter value:
    SELINUX=disabled
  3. Save and close the configuration file.
  4. Restart the computer.
- The dnf-utils package is installed.
  You can install the dnf-utils package by using the following command in the operating system console:
  
  sudo dnf install dnf-utils
- Python interpreter version 2.7 is installed.
  You can install python2 packages by using the following command in the operating system console:
  
  sudo dnf install python2 libnsl
- A symbolic link to the installed version of the python2 package is configured.
  You can configure a symbolic link to the installed version of a python2 package by using the following command in the operating system console:
  
  sudo alternatives --set python /usr/bin/python2
- The python2-pyyaml package is installed.
  You can install the python2-pyyaml package by using the following command in the operating system console:
  
  sudo dnf install python2-pyyaml
To ensure proper functioning of application components on the computer that will perform Server functions, the following conditions must also be fulfilled in the CentOS operating system:
- Python interpreter version 3.6 or later is installed, along with packages supporting the operation of connectors and data conversion scripts (if connectors will also operate on other computers, the packages must also be installed on those computers)
  You can install packages for connectors and data conversion scripts by carrying out the following commands in the operating system console:
  
  sudo dnf install epel-release
  
  sudo dnf install epel-next-release
  
  sudo dnf install python3-urllib3 python3-pyyaml python3-scapy python3-schema python3-netifaces python3-xmltodict python3-requests python3-future python3-pyserial python3-tqdm python3-psycopg2 python3-paramiko python3-certifi python3-cryptography python3-dateutil python3-pytz python3-contextvars python3-cffi
- Mail server is installed (Mail Transfer Agent, MTA) to send emails through the email connector and to send reports by email (for example, Postfix).
  You can install a Postfix mail server by using the following commands in the operating system console:
  
  sudo dnf -y install postfix
  sudo systemctl start postfix
  sudo systemctl enable postfix
- Perl interpreter version 5.10 or later is installed (if Kaspersky Security Center Network Agent is being installed).

For installation of application components, it is recommended to use separate computers on which only software from the operating system is installed. If third-party applications are installed on computers, the performance of components of Kaspersky Industrial CyberSecurity for Networks may be reduced.

You can use the following browsers to connect through the web interface:

Google Chrome version 105 or later.
Mozilla Firefox version 104 or later.
Microsoft Edge version 105 or later.

Kaspersky Industrial CyberSecurity for Networks 4.0 is compatible with Kaspersky Security Center 13.2 and Kaspersky Security Center 14. The Kaspersky Industrial CyberSecurity for Networks administration web plug-in becomes available to use in Kaspersky Security Center 13.2 after you install Kaspersky Security Center Web Console version 13.2.571 and a patch for this application, which enables interaction with the Kaspersky Industrial CyberSecurity for Networks administration web plug-in (patch version: 13.2.571.1). The Kaspersky Industrial CyberSecurity for Networks web plug-in becomes available to use after installing Kaspersky Security Center Web Console.version 14.0.3286. You can request the indicated versions of these programs from your Technical Account Manager (TAM).

Kaspersky Industrial CyberSecurity for Networks supports joint operation with Kaspersky Industrial CyberSecurity for Nodes version 2.6 or later. Integration with Kaspersky Industrial CyberSecurity for Nodes 3.0 and 3.1 is supported (in this mode, Kaspersky Industrial CyberSecurity for Networks receives data from Kaspersky Industrial CyberSecurity for Nodes).

Software requirements for Kaspersky Industrial CyberSecurity for Networks 4.0.1

Kaspersky Industrial CyberSecurity for Networks 4.0.1 has the following software requirements for computers where application components will be installed:

Astra Linux Special Edition 1.7 operating system: RUSB.10015-01 (operational update 1.7), RUSB.10015-17 or RUSB.10015-37.
When installing the operating system, it is recommended to allocate the entire hard drive (minus the minimum space required for the boot and swap partitions) to the system (root) partition. To improve the performance of software, you can also mount the /var/ folder to a high-speed hard drive (if you have an additional drive, such as an SSD drive). If you choose to do so, the /var/ folder must be completely mounted to the other drive. Subfolders within the /var/ folder (such as /var/opt/) cannot be mounted to different drives.
The same version of operating system must be installed on all computers where application components are installed.
To install application components in the Astra Linux Special Edition operating system, the following conditions must be fulfilled:
- The standard operating system components "Internet tools" and "Network services" are installed (in addition to the standard components that are installed by default in the operating system).
- The operating system has an active firewall implemented by the UFW network security configuration application (for automatic configuration of network filtering).
- Repositories containing up-to-date stable versions of installation packages are connected in the operating system (for example, connected repositories on discs containing an update of the installation disc for the operating system and an update of the disc containing development tools).
  1. Insert the disc that you want to use to connect a repository.
  2. In the operating system console, carry out the following commands:
    sudo apt-cdrom add
    sudo apt update
- The rsync package is installed.
  You can install the rsync package by running the following command in the operating system console:
  
  sudo apt install rsync
- The libcap2-bin package is installed.
  You can install the libcap2-bin package by carrying out the following command in the operating system console:
  
  sudo apt install libcap2-bin
- A symbolic link to the installed version of the python2 package is configured.
  You can configure a symbolic link to the installed version of a python2 package by using the following command in the operating system console:
  
  sudo alternatives --set python /usr/bin/python2
- The python-apt package is installed.
  You can install the python-apt package by carrying out the following command in the operating system console:
  
  sudo apt install python-apt
- The SSH server package is installed (for centralized installation of application components).
  You can install the SSH server package by carrying out the following commands in the operating system console:
  
  sudo apt install ssh
  systemctl enable ssh
  systemctl start ssh
- The en_US.utf8 locale is enabled (on the computer from which the centralized installation of application components will be performed).
  You can enable the en_US.utf8 locale by carrying out the following command in the operating system console:
  
  sudo localedef -i en_US -f UTF-8 en_US.utf8
To ensure proper functioning of application components on all computers that will perform Server and sensor functions, the following conditions must be fulfilled in the Astra Linux Special Edition operating system:
- Information streams are allowed without limitations from the capability-based access restriction mechanism (a null capability marker is set for all access objects).
- The closed software environment mechanism is disabled in the operating system.
To ensure proper functioning of application components on the computer that will perform Server functions, the following conditions must also be fulfilled in the Astra Linux Special Edition operating system:
- Python interpreter version 3.6 or later is installed, along with packages supporting the operation of connectors and data conversion scripts (if connectors will also operate on other computers, the packages must also be installed on those computers)
  You can install packages for connectors and data conversion scripts by carrying out the following commands in the operating system console:
  
  sudo apt install python3-tz python3-dateutil python3-psycopg2 python3-cffi python3-paramiko python3-netifaces python3-cryptography python3-certifi python3-urllib3 python3-nacl python3-yaml python3-requests python3-six python3-pyasn1
- The Postgres Pro version 14 DBMS is installed (if the Server uses this DBMS instead of the DBMS from the application distribution kit).
- A mail server is installed (Mail Transfer Agent, MTA) to send emails through the email connector and to send reports by email (for example, Exim 4).
- Perl interpreter version 5.10 or later is installed (if Kaspersky Security Center Network Agent is being installed).

You can use the following browsers to connect through the web interface:

Google Chrome version 101.
Mozilla Firefox version 102.
Microsoft Edge version 101.
Chromium for Astra Linux version 101.

Kaspersky Industrial CyberSecurity for Networks 4.0.1 is compatible with Kaspersky Security Center 13.2 and Kaspersky Security Center 14. The Kaspersky Industrial CyberSecurity for Networks administration web plug-in becomes available to use in Kaspersky Security Center 13.2 after you install Kaspersky Security Center Web Console version 13.2.571 and a patch for this application, which enables interaction with the Kaspersky Industrial CyberSecurity for Networks administration web plug-in (patch version: 13.2.571.1). The Kaspersky Industrial CyberSecurity for Networks web plug-in becomes available to use after installing Kaspersky Security Center Web Console.version 14.0.3286. You can request the indicated versions of these programs from your Technical Account Manager (TAM).

Kaspersky Industrial CyberSecurity for Networks 4.0.1 supports joint operation with Kaspersky Industrial CyberSecurity for Nodes version 2.6 or later. Integration with Kaspersky Industrial CyberSecurity for Nodes 3.0 and 3.1 is supported (in this mode, Kaspersky Industrial CyberSecurity for Networks receives data from Kaspersky Industrial CyberSecurity for Nodes).