Windows Endpoint Security

Best-of-breed anti-malware protection

Kaspersky Endpoint Security for Windows combines signature-based, proactive defense technologies plus the power of the cloud-assisted Kaspersky Security Network. The application intelligently scans workstations and servers, and analyzes system and application behaviors. The Kaspersky architecture is tightly integrated so all program components work together to help maximize protection and minimize the use of computing resources.

Protection combined with manageability

Kaspersky’s built-in Application Control, Device Control, and Web Content Filtering provide the backbone for security policy enforcement and provide higher levels of protection for the endpoint. Administrators can restrict access to external devices and non-essential websites. A customizable whitelist or blacklist of applications – plus tools to limit their privileges – boost security and help to increase employee productivity

Flexible, centralized administration

Kaspersky Security Center lets you remotely install the solution on workstations and servers, set protection parameters, manage anti-malware updates, monitor security status, and respond to events. The application also includes features for centralized vulnerability flagging, virtual machine support, and sub-administration capabilities.

Proactive technologies and heuristics

System Watcher is just one of the application’s proactive components that deliver protection against unknown threats. Using Behavior Streams Signature patterns, the application analyzes suspicious behaviors and takes immediate action. If necessary, unwanted changes can be rolled-back and damaged data can be restored.

Integrated Protection

Kaspersky Endpoint Security for Windows uses Kaspersky’s latest technologies to protect Windows workstationsand servers on corporate networks.

Security for file systems

Whenever a file is created, launched, or modified, it is scanned for malicious content. Individual files, directories, local disks, and network disks can also be scanned on demand.

Kaspersky Security Network

Our global user community has tens of millions of volunteers that provide the cloud-based Kaspersky Security Network with data about suspicious activities and attempted malware infections. The Kaspersky Security Network is capable of providing an immediate response to “Zero-Day” threats. This cloud-assisted protection also reduces the number of ‘false positives’ – which helps to increase business productivity.

Safety online

Kaspersky applications scan HTTP traffic in real time, using a variety of methods that include heuristic analysis of web pages. Blocking access to infected or blacklisted websites helps to ensure Internet users can work in a secure environment. Blacklisted URLs are categorized and updated in real time by the Kaspersky Security Network or can be customized by the administrator.

Protection from hacker attacks

Workstations and servers on your network are protected by an improved firewall, together with IPS. Predefined rules for more than 250 of the most commonly used applications help to reduce the time spent configuring the firewall.

Secure electronic communication

Mail traffic is scanned at the level of the data transfer protocol (POP3, IMAP, MAPI and NNTP for incoming traffic and SMTP for outgoing traffic, including SSL connections). The application is compatible with the most common mail programs and also scans files and links sent via instant messaging systems (ICQ, MSN, AIM).

Protection from phishing

A database containing URLs of phishing sites is used to identify and disable links to such websites in the Internet browser – and also rebuff phishing emails in the mail program. The list of phishing sites is updated in real time by the Kaspersky Security Network.

Powerful Controls

Application Control, Device Control and Web Content Filtering are integrated into Kaspersky Endpoint Security 8 for Windows. These controls – combined with Kaspersky’s advanced protection technologies – provide an advanced level of endpoint security.

Application Startup Control

Using Kaspersky’s predefined lists, or an Administrator-created Whitelist or Blacklist, the launch of specific applications – or groups of application can be controlled. Administrators can employ either a ‘default deny’ or ‘default allow’ scenario to enforce their application security policies.

Application Privilege Control

Restrictions can be applied to application behaviors in the operating system, and applications can have restrictions placed on their access to computer resources. Using customizable categories, applications can be grouped according to their trustworthiness and can be assigned system rights.

Web Controls and Content Filtering

Administrators can filter web resources – according to URL, content, and data type. Flexible controls can be used to permit, prohibit, limit, or conduct user audits for specific categories of websites. Scheduling tools can enable web access during specific hours or durations to help enforce company policies.

Device Control

Removable devices on the corporate network – including data storage and I/O devices – can be regulated with flexible policy scenarios. Restrictions can be applied according to the connection bus, the type of device, or a specific device’s ID. A scheduling function enables specific rules to take effect during defined periods. These controls help to prevent the ‘leakage’ of confidential data and help reduce the risk of malicious programs penetrating users’ computers.

Optimized Performance

Enhanced antivirus engine

Signature and pattern-based, proactive defense is combined with cloud-assisted technologies – in order to help maximize the detection of malware. The program’s integrated codebase helps to optimize the use of system resources and minimize the impact on other programs.

QScan Technology

QScan is a deep scanning technology that works at the lowest levels of an operating system, in order to neutralize any malicious objects that are detected at the root of a user’s system.

Resource management

During periods of increased user activity, Kaspersky Endpoint Security 8 for Windows reduces its demand on system resources. Scanning continues in background mode – to let users continue to work with other applications.

Centralized Administration

Kaspersky Security Center provides centralized administration for Kaspersky Endpoint Security for business on workstations, servers and mobile devices. From this central console, you can install, configure, and update Kaspersky Lab endpoint solutions on your network – on physical machines or virtual machines.
To find out more about these central administration features and a host of other capability, please see Kaspersky Security Center.

Operating System

32-bit OS

• Windows Embedded Standard 7 SP1
• Windows Embedded POSReady 2009 latest SP
• Windows 7 Professional/Enterprise/Ultimate SP0 or higher
• Windows Vista Business/Enterprise/Ultimate SP2
• Windows XP Professional SP2 or higher
• Windows Server 2008 Standard/Enterprise SP2
• Windows Server 2003 R2 Standard/Enterprise SP2
• Windows Server 2003 Standard/Enterprise SP2
• Small Business Server 2003 R2 Standard/Premium

64-bit OS

• Windows Embedded Standard 7 SP1
• Windows 7 Professional/Enterprise/Ultimate SP0 or higher
• Windows Vista Business/Enterprise/Ultimate SP2
• Windows XP Professional SP2
• Small Business Server 2008 Standard
• Small Business Server 2011 Essentials/Standard
• Windows Server 2008 R2 Standard/Enterprise SP0 or higher
• Windows Server 2008 Standard/Enterprise SP2
• Windows Server 2003 R2 Standard/Enterprise SP2
• Windows Server 2003 Standard/Enterprise SP2
• Essential Business Server 2008 Standard/Premium
• Windows Server 2008 R2 Foundation SP0 or higher

Hardware Requirements

Windows 7/Vista/2003/2008/2008 R2

• Processor – Intel Pentium 2.0 GHz or equivalent
• 512MB of free RAM
• 1GB of available disk space

Windows XP

• Processor – Intel Pentium 1.0 GHz or equivalent
• 256MB of free RAM
• 1GB of available disk space

Windows Embedded

• Processor – Intel Pentium 800 MHz or equivalent
• 256MB of free RAM
• 1GB of available disk space