Kaspersky Lab Patents Method to Protect Cloud Services from Cybercriminals
Woburn, MA – March 31, 2014 - Kaspersky Lab has announced that it has obtained a patent for a method of protecting cloud services used by antivirus solution developers. The patent more effectively combats cyber-threats and prevents the illegitimate use of cloud services by cybercriminals. Patent no. 8661547 was issued by the US Patent and Trademark Office and describes a technology that safeguards against false information that might be sent to the cloud service.
Manufacturers of security solutions use cloud services to respond faster to emerging Internet threats. Client applications use cloud services as a source of information about new cyber-threats and to send suspicious files to be assessed by antivirus analysts. However, cybercriminals may try to use the feedback channel to send corrupted data for processing. This may be done to disguise a malicious program as a secure one, or to compromise legitimate applications.
The newly patented system performs a number of tests before using any information uploaded from a device. The server checks whether the data communication protocol specifications were violated: an unusual sequence of operations or other anomalies while sending data may indicate an attempt by cybercriminals to interfere in the server’s operation. The user-side security application, in turn, analyzes the configuration of the user device. The developer can also use other methods to confirm the legitimacy of any uploaded data.
When the collected information has been analyzed, the system decides what to do with the data it has received. It can use it to enlarge the database, or ignore it due to the risk of forgery. In addition, a new level of trustworthiness can be assigned to the device based on the results of the device check. Initially, this value is set low and is taken into consideration on subsequent occasions when the device communicates with the cloud service.
The patented technology is implemented in Kaspersky Security Network – the cloud infrastructure supported by Kaspersky Lab’s home user, SMB and corporate security products. With Kaspersky Security Network, the vendor’s products can always maintain maximum security levels against online threats.
As of late March, Kaspersky Lab held 195 patents issued in the USA, Russia, the European Union and China. 242 more patent applications were being processed by the appropriate authorities. Most patents held by Kaspersky Lab cover technologies related to the operation of security solutions.
Andrey Efremov, Director of Whitelisting and Cloud Infrastructure Research and co-author of the new patent
“Kaspersky Security Network is a key element in Kaspersky Lab’s infrastructure. It ensures information about new threats is promptly delivered to users’ computers. Of course this is an attractive target for cybercriminals who want to compromise the security of hundreds of thousands of computers at one time. Therefore, it is important for us to protect Kaspersky Lab’s infrastructure against these attacks and prevent fake information from penetrating into antivirus databases.”
Kaspersky Lab is the world’s largest privately held vendor of endpoint protection solutions. The company is ranked among the world’s top four vendors of security solutions for endpoint users*. Throughout its more than 16-year history Kaspersky Lab has remained an innovator in IT security and provides effective digital security solutions for large enterprises, SMBs and consumers. Kaspersky Lab, with its holding company registered in the United Kingdom, currently operates in almost 200 countries and territories across the globe, providing protection for over 300 million users worldwide. Learn more at www.kaspersky.com.
* The company was rated fourth in the IDC rating Worldwide Endpoint Security Revenue by Vendor, 2011. The rating was published in the IDC report "Worldwide Endpoint Security 2012–2016 Forecast and 2011 Vendor Shares (IDC #235930, July 2012). The report ranked software vendors according to earnings from sales of endpoint security solutions in 2011.
For the latest in-depth information on security threat issues and trends, please visit:
| Information about Viruses, Hackers and Spam
Follow @Securelist on Twitter
Threatpost | The First Stop for Security News
Follow @Threatpost on Twitter