Kaspersky Endpoint Security 11.1 for Windows (version 11.1.0.15919) commercial release

Operating systems

Support has been added for:

• Migrating Kaspersky Endpoint Security 11.1 for Windows when upgrading Windows 7 / 8 / 8.1 to Windows 10.
• Integration with Windows Defender Security Center.
• Antimalware Scan Interface (AMSI).
• Windows Subsystem for Linux (WSL).

Application components

The following components have been improved:

• Web Control, Mail Threat Protection, and Web Threat Protection. They now scan network traffic that is transmitted over encrypted connections using the following protocols: SSL 3.0, TLS 1.0, TLS 1.1, TLS 1.2.
• Network Threat Protection It now provides protection against attacks that exploit vulnerabilities in the ARP protocol to spoof a device's MAC address.
• Web Control A new Cryptocurrencies and Mining category has been added and the following subcategories have been added to the Regional legal restrictions category:
  • Blocked as required by Belgian law.
  • Blocked as required by Japanese law.

• Application Control
  • You can now create and edit application categories from a Kaspersky Endpoint Security 11.1 for Windows policy.
  • Reports about blocked application startups have been improved.

A new Adaptive Anomaly Control component has been added that monitors and blocks potentially harmful actions that are not typical of the protected computer. 

You can only manage the Adaptive Anomaly Control component in Kaspersky Security Center 11.

New functionality

New capabilities have been added. You can now:

• Manage the application through the Kaspersky Security Center 11 Web Console.
• Update databases from the Kaspersky Lab servers over HTTPS.
• Grant domain users and groups permission to manage the application in the password protection settings.
• Password protect the restoration of objects from Backup.
• Supplement policy-defined lists of trusted zone exclusions by using lists defined in profiles.

Other improvements

• Reduced consumption of operating system resources when the application is operating in the background.
• Reduced scan time and consumption of operating system resources when performing a Background scan task.
  Instead of a scheduled scan, a background scan is used by default in the following cases:
  • During the initial deployment and configuration of Kaspersky Security Center 11. The quick virus scan task is not created.
  • During a new installation of Kaspersky Endpoint Security 11.1 for Windows. A local Full Scan task is created with a “Manually” run schedule.
  • When Kaspersky Endpoint Security 11.1 for Windows is installed over previous versions of the application. The “Manually” run schedule is applied to the local Full Scan task.

• A protection level indicator has been added to the installation package used for remote deployment of the application. The indicator displays the security level when selecting application components to be installed.

The protection level indicator for installation packages is only supported in Kaspersky Security Center 11.

• The mechanism for scan exclusions has been optimized to ensure the operation of critical system processes and services. There is no longer need to create predefined exclusions recommended by Kaspersky Lab experts during the installation stage.
• A report on the state of application components has been added to Kaspersky Security Center.

For more details about the release, see this article.