The list of predefined exclusions contains the connections that can be established between applications and web resources of domains. There is no capability to decrypt traffic for these connections, therefore Kaspersky Security does not scan these connections during a secure connections scan.
You can view the list of predefined exclusions from secure connections scan in the local interface of Light Agent for Windows. The list is generated by Kaspersky experts and is updated automatically when the application databases are updated.
To view the list of predefined exclusions from secure connections scan:
In the left part of the window, in the Other settings section, select Network traffic monitoring.
In the right part of the window the settings for Network Ports Monitoring and for Scanning Secure Connections are displayed.
In the Secure connections scan section, click the link to open the Pre-determined exclusions for secure connections scan window.
The connections in the list are defined using the following conditions:
Domain with which the connection is established. A domain may be defined using a mask. The * character in a mask replaces any sequence that contains zero or more characters. If a domain is not specified or the Domain column contains the mask *, connections with any domain are excluded from scans.
Name of the executable file of a program that establishes a connection. If a program is not specified, connections initiated by programs with any executable file name are excluded from scans.
Publisher of a program that establishes a connection. If no publisher is specified, connections initiated by programs from any publisher are excluded from scans.
Owner of the digital signature of a program that establishes a connection. If no digital signature owner is specified, connections initiated by programs are excluded from scans regardless of their digital signature.