Kaspersky Embedded Systems Security
HomePartnersKaspersky — Kaspersky Embedded Systems Security

All-in-one security specifically designed for Embedded systems. Windows Embedded systems are becoming an ever more popular target for cybercriminals. These devices tend to operate inside the corporate network, to be geographically scattered and to handle critical data, often working with credit and debit cards. End-of-life Windows XP is still a standard for many such systems, as is low-end hardware. Kaspersky Embedded Systems Security is specially designed to protect these systems against attacks targeting their contents and exploiting their limitations. Kaspersky Embedded Systems Security has been designed for service devices which use Windows Embedded operating systems. It recognizes and respects specific hardware, has a flexible modular structure, and efficiency considerations, while simultaneously controlling and protecting the attack surfaces unique to these architectures through default deny for apps, drivers & libraries is the basis of effective protection for embedded systems.

Device control, USB Connections Monitoring is preventing the physical connection of unauthorized USBs and other devices — a major source of both accidental and deliberate infection. Antivirus on-demand. Proven protection from the industry’s leading antivirus engine, capable of detecting even the most advanced and aggressive attacks. Memory protection allows you to secure the system against exploits, ransomware and memory injection. File integrity monitoring and log audit combines the efficiency of critical files protection and change-tracking with regulatory compliance requirements. Windows Embedded systems are fixed passive systems designed to undertake a strictly limited range of functions, often involving credit and debit cards. By effectively ‘freezing’ the system — preventing any drivers, libraries or applications not on an approved list from launching — Kaspersky Embedded Systems Security denies potential attackers, including insiders or third-party service providers, access to any of these means.

Kaspersky Embedded Systems Security — Firewall Management And Compliance

Kaspersky Embedded Systems Security can be installed in ‘Default Deny for Applications and Devices only’ mode to minimize the impact on hardware resources. The solution also can centrally manage firewalls and can be installed with the inclusion of an antivirus module providing on-demand scanning controls within the same license. Should malware penetrate all these defenses, optional real-time antivirus protection from Kaspersky Security Network can also come into play. In support of regulatory requirements, Kaspersky Embedded Systems Security offers specific features including File Integrity Monitoring and Log Audit in our Compliance Edition. This also includes features like Default Deny, Antivirus, Firewall Management, Device Control and optional Patch Management, all administered through Kaspersky Security Center and designed to help secure embedded systems in compliance with international standards.

Product Architecture

The solution has been designed specifically to mitigate cybersecurity risks to systems based on Embedded operating systems, protecting the attack surfaces unique to these architectures while respecting related hardware and efficiency considerations. A single intuitive console gives you the control and visibility you need to effectively manage multi-layered security for your endpoints, your critical systems and your whole IT infrastructure. The Default Deny, Device Control and Memory Protection modules included are absolutely essential to effective embedded systems protection, while additional modules further enhance security levels where required. Professional help is available whenever you need it. Operating in more than 200 countries, from 34 offices worldwide, we have you covered 24/7/365. Take advantage of our Maintenance Service Agreement (MSA) support packages, or call on our Professional Services to ensure that you derive maximum benefit from your Kaspersky Lab security installation.
Kaspersky Embedded Systems Security

Data Center Security

Centralized security management helps administrators. For most environments, you won’t even have to reboot systems when you install our virtualization security application. Furthermore, you can manage all of our data center security technologies from one centralized management console. To help you apply consistent security policies across your data center and reduce day-to-day operating costs. Integrated and stable security. With Kaspersky data center security, you benefit from a single, integrated solution that gives you a choice of light agent or agent less security for virtual machines, plus security for the most common enterprise level storage systems.

All of the applications within our data center security solution are easy to deploy and simple to integrate into any data center design. So you save time and also benefit from a stable security platform. Whatever the configuration of your data center, Kaspersky Lab security solutions protect key data center technologies without impacting performance. You benefit from a single, integrated solution that gives you a choice of light agent or agentless security for virtual machines, plus security for the most common enterprise level storage systems.


A true endpoint protection platform controls discovery, deployment, policy configuration and updating of endpoints throughout the corporate infrastructure. Kaspersky Endpoint Security’s single agent per platform means administrators can set one active policy for a managed group, covering all required components but without the need for multiple policy review or correlation. The “network agent” connects the endpoint with the administration server, performing systems management tasks (such as software and hardware inventory, vulnerability scanning and patch management) allowing for true flexibility and synergy between functions.

Easier control over policy and task implementation. Single dashboard and reporting on deployment and execution, provides a comprehensive, at a glance view of policy status and compliance over the entire network. Simplified policy and task management — thanks to a single set of shared parameters and prerequisites. Managed groups, delivery settings, notifications, policy implementation is optimized, eliminating redundant processes and tasks for the IT administrator.

Mobile Security

Kaspersky solutions help to keep Android, iOS and Microsoft Windows and Apple Phone devices secure and managed. Multi-layer protection — including cloud-assisted technology and Kaspersky Security Network. Defend smartphones and tablets against the latest cyber threats, e.g. Trojans, phishing attacks and much more. Kaspersky Mobile Security solution also helps you apply security policies & settings across almost all devices, e.g. Android, iOS, Blackberry, Windows, and Apple Phone devices. Furthermore, if a mobile device is lost or stolen, anti-theft functions help you prevent access to corporate data.

Remotely operated features let you block access to data and apps on the device, wipe data and find the device’s location. Mobile application management — control tools — together with ‘app wrapping’ containerization. Help to secure corporate data and systems and provide efficient BYOD security policy. Mobile device management — by enabling access to different platforms’ MDM functions. Via a single interface — the Kaspersky solution saves time and makes it easier to roll out unified mobile security policies.

Virtualization Security

Kaspersky Security for Virtualization provides a single solution to secure both virtual servers and VDI. Because it supports all the most commonly used platforms — including VMware vSphere with NSX, Citrix XenServer, Microsoft Hyper-V and KVM — Kaspersky Security for Virtualization is ideal for hybrid software-defined data centers. Based on award-winning anti-malware engine, the solution exploits the technological advantages that virtualization offers, delivering powerful security with optimum speed and efficiency, and without taking up valuable space on virtual machines.

Kaspersky Security for Kaspersky Virtualization Light Agent is ideal for Virtual Desktop Infrastructures (VDI), delivering the most advanced security capabilities to the individual machine. With the lightweight security agent integrated into the VDI template, you can enable resource-efficient multi-layered protection from the most advanced threats (e.g. ransomware) on every single VM, with no adverse effect on end-user experience. No need to keep rebuilding — security operations are off-loaded onto one or more dedicated security appliances.