The unity of two worlds

    Who else does not know - under this motto right now we are launching new versions of our personal products in Russia, India, Eastern Europe and other countries. Launches were fun, we continue to teach people to understand what hybrid protection is and why it is needed. It would also be interesting to talk with you about the hybrid: what is hidden behind this frightening term, and most importantly, why do we even promote it?
    image


    So, all of you know that clouds are cool, fashionable and whoever does not indulge them now. Every "young and old" has already climbed into the clouds and is broadcasting philosophical revelations and market predictions from there. Yeah. Here it is our bright path and let's go there in orderly columns.

    Under the pressure of analytical thought, an outside observer may get the impression that here she is, finally, the long-awaited panacea for everything and for everything. And, of course, now we’ll solve all the problems with protection against malware, spam and hackers.

    And yes, we also use the clouds with might and main. This is truly a great discovery that will help solve many problems. Kaspersky Lab first introduced this technology in 2006 and now we are giving it more and more development. Kaspersky Security Network is a distributed system that allows you to collect information about existing threats in real time, as well as effectively identify unknown threats and their sources, quickly protecting users from them. But if you measure with real indicators, then it’s enough to say that on average only 40 (sic!) Seconds elapse between the detection and updating. And all this thanks to KSN.

    image

    Obviously, a security solution that does not use cloud technology is no longer relevant today. However, how can vendors transfer all protection to the cloud if there are many threats that come not only from the Internet?

    So far, we have entrusted KSN with the neutralization of about 30% of all threats on the user machine. The rest are analyzed and processed directly by local protective programs on the computer. It contains all the antivirus functionality, including proactive technologies such as monitoring unwanted program activity, a heuristic analyzer, a hazard rating, and others that also use the information accumulated in Kaspersky Security Network.

    As Eugene Kaspersky says :

    “The cloud is not a self-contained technology, but a successful batch in tandem with autonomous protection.”

    Yes, but why?

    “First, accessibility . Cloud protection only works when the computer is online. No connection - no protection. But the threats remain. They slipped the infected flash drive or CD / DVD disc, downloaded data from other computers or mobile devices - that's all, ales kaput. And they can infect so that then you don’t even touch the cloud.

    Secondly, the security of the cloud itself . Let's be frank: we cannot 100% guarantee that the cloud itself is immune from attacks. Rather, the opposite. And the recent hack of Sony PSN (details here and here) confirmation of this. Moreover, this indicates that clouds are becoming the main target of attackers. It’s convenient to cover thousands, tens of thousands of users at once with one hack.

    Conclusion - without a standalone agent, hacking the cloud will lead to absolute computer vulnerability. Depending on the implementation of cloud protection, hacking may have other consequences. For example, hackers can take control of the protected computers themselves.

    Finally, do not forget about self-defense. Without a strong, self-contained agent, malware can easily block access to the cloud.

    Third, the quality of protection. Detecting and removing rootkits, polymorphic and other complex malware using cloud protection is difficult or impossible in principle. Here you can not do without an agent on the computer, deeply integrated into the operating system. Throwing a micro-agent from the cloud is not an option, since the cloud itself may already be inaccessible.

    Let's get back to the message: I love clouds, but I disagree with the positioning and perception of this technology as self-sufficient.

    Users need a combination of cloud and offline protection. And I do not see how this state of affairs can change in the foreseeable future. Well, we have achieved 100% coverage of the globe with Internet access. At least at Elbrus, at least at the South Pole. Thick and ubiquitous such a channel. OK. But all the same, there remains the problem of the security of the cloud itself and the fight against complex threats. ”


    Here, in fact, what is hybrid protection . The unity of two worlds. That’s why, as our Hybrids are cool and awesome video ad states:


    Yes, by the way, hybrid protection will also be in the upcoming release of enterprise products .

    Also popular now: