Managing application trust groups
When each application is started for the first time, the Application Privilege Control component checks the security of the application and places the application in a trust group.
At the first stage of the application scan, Kaspersky Endpoint Security searches the internal database of known applications for a matching entry and simultaneously sends a request to the Kaspersky Security Network database (if an Internet connection is available). Based on the results of the search in the internal database and the Kaspersky Security Network database, the application is placed into a trust group. Each time the application is started, Kaspersky Endpoint Security sends a new query to the KSN database and places the application into a different trust group if the reputation of the application in the KSN databases has changed.
You can select a trust group to which Kaspersky Endpoint Security automatically assigns all unknown applications. Applications that were started before Kaspersky Endpoint Security are automatically moved to the trust group specified in the Select trust group window.
The component controls only the network activity of applications started before Kaspersky Endpoint Security based on the network rules set in the Firewall settings.