Kaspersky Enhances Embedded Systems Security with KESS Update
Kaspersky has unveiled a noteworthy upgrade to its Kaspersky Embedded Systems Security (KESS) platform, focusing on enhanced behavioral analysis and strengthening protective measures for low-power and legacy embedded devices.
Enhanced Behavioral Analysis Capabilities
The latest iteration of KESS introduces an upgraded behavioral analysis feature, which serves as the backbone for critical functionalities. This includes Automatic Exploit Prevention, a sophisticated Remediation Engine, and a refined Anti-Cryptor. These components work collaboratively to identify intricate threats, particularly those that employ subtle and evasive tactics to evade detection mechanisms. Such threats often bypass conventional statistical detection or hardening strategies that are commonplace in embedded systems.
Protection for Complex Threat Landscapes
The main goal of this update is to extend robust protection to embedded devices, ensuring they can utilize security mechanisms that have typically been reserved for standard endpoints. This approach empowers businesses to safeguard their embedded systems without compromising performance or functionality.
Focused Features for Embedded Environments
In addition to enhancements in behavioral defenses, this KESS update includes features tailored for the unique challenges associated with embedded systems. A standout improvement is the BadUSB attack prevention mechanism, designed to thwart malevolent USB devices trying to disguise themselves as keyboards or other input devices to execute unauthorized commands.
Proprietary Application-Level Firewall
The updated KESS now incorporates a specialized application-level firewall, which allows organizations to manage how embedded applications interact with external networks. This level of control significantly reduces the risk of exposure to undesirable or suspicious network activities. Furthermore, KESS has introduced a new “traffic-light” Security Level Indicator that provides a quick visual representation of a device’s overall security status. This feature helps operators quickly assess whether a device requires additional security measures.
Adapting to Diverse Embedded Systems
Unlike typical endpoint protection solutions, KESS is specifically crafted to address the wide-ranging realities of embedded systems. It is capable of supporting older, low-performance devices and can function reliably in low-bandwidth settings, minimizing the need for cloud reliance. This flexible approach enables organizations to strike a balance between foundational hardening for older or less capable devices and comprehensive security solutions for newer, more powerful ones.
Seamless Integration into Kaspersky’s Ecosystem
Moreover, KESS seamlessly integrates with Kaspersky’s unified security ecosystem, allowing for centralized management and consistent policy application across diverse device networks. This integration simplifies security oversight while ensuring that all devices are operating under the same protective umbrella.
Expert Insight on Emerging Threats
According to Oleg Gorobets, a cybersecurity expert at Kaspersky, the landscape of threats targeting embedded systems is evolving. “Embedded systems are no longer isolated or too limited to be worth targeting. They face the same sophisticated threats as traditional endpoints, but protecting them requires addressing their specific constraints,” he explains. Gorobets emphasizes that this updated KESS solution not only provides stronger and more intelligent protection but also minimizes operational complexities, making it an ideal choice as embedded infrastructures continue to expand.
As organizations increasingly integrate embedded systems into their operations, the necessity for security that is both lightweight and highly effective becomes paramount. This latest update to KESS is designed to meet that growing demand, ensuring that embedded devices are adequately safeguarded against the evolving landscape of cyber threats.
