1 / 30

Kaspersky Lab

Facts Kaspersky Lab vs. ESET. Kaspersky Lab. The companies: principal facts. The companies: independent assessment of market position.

ilya
Download Presentation

Kaspersky Lab

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Facts Kaspersky Lab vs.ESET Kaspersky Lab

  2. The companies: principal facts

  3. The companies: independent assessment of market position • ESET received the 2006 Deloitte Technology Fast 500 EMEAAward, i.e., it ranked among the 500 fastest growing companies in Europe, the Middle East and Africa • In 2006, Kaspersky Lab received theFrost & Sullivan Growth Strategy Leadership Award for the highest growth rate on the antivirus market • IDC and Gartner, large research companies, do not include data on ESET in their reports. The company’s revenues are included in the Other category • Antivirus vendor revenue growth in 2004-2005 (estimate by IDC & Gartner):

  4. The VirusLab is located in asingle research center in Moscow. This makes it possible to train new analysts and share expert knowledge with minimal delays The system for collecting malicious program samplesis geographically distributed, with honeypots placed in numerous locations, enabling analysts to receive samples almost as soon as after they appear “in the wild” Kaspersky Lab uses unique tools for automating collection and processing of malicious program samples.It takes just a few minutes to analyze malware samples and add their signatures to antivirus databases Updates are tested automatically. Performing multiple operations in parallel accelerates the update testing process, which takes less than an hour A broad range of proactive technologies developed by the company enable Kaspersky Lab products to detect most threats even BEFORE their signatures are released Technologies:Kaspersky Lab’s VirusLab

  5. Technologies: malicious program detection levels Overall levels of malicious program detection

  6. Proactive protection targets new malicious programs for which signatures have not yet been added to antivirus databases There are two main proactive protection technologies: heuristic analyzer and behavior blocker The heuristic analyzer (heuristic) analyzes the code of objects for the typical attributes of malicious applications. Based on the results of this analysis, the heuristic concludes whether the object is potentially hostile The behavior blockeris a program that analyzes the behavior of applications running on the user’s computer and blocks any dangerous activity (i.e., actions typically performed by malicious programs) Technologies: proactive protection

  7. Technologies: proactive protection • Proactive protection technologies used in Kaspersky Lab and ESET solutions • The best-known analyses of proactive protection are conducted by theAV-Comparatives.org project: • Standard Retrospective / ProActivetests conducted byAV-Comparatives.orgassess only the capabilities of the heuristic analyzer • AV-Comparatives.org conducts separate analyses to assess the capabilities of behavior blockers

  8. Each method for proactive protection has its pros and cons. However, the facts speak for themselves: During a special proactive protection test conducted by AV-Comparatives.org, the Proactive Defense Module (behavior blocker) in Kaspersky Anti-Virus 6.0 blocked the actions of 99%of malicious programs During the Retrospective / ProActive test conducted by AV-Comparatives.org, the heuristic analyzer in NOD32 detected 53%of malicious programs AV-Comparatives.org provides the following comment on the results achieved by Kaspersky Lab products: Technologies: proactive protection

  9. Technologies: proactive protection Malicious programs can be proactively detected by heuristic analyzersor by behavior blockers AV-Test.org, 2006

  10. Technologies: proactive protection The proactive defense module (behavior blocker) included in Kaspersky Lab products has detected most modifications of the Warezov worm from the very start of its epidemic. Detection of Warezov by the Proactive Defense Module in Kaspersky Lab’s version 6.0 products:

  11. Technologies: proactive protection • ESET NOD32provided neither a signature-based nor proactive detection of Warezov (Win32/Stration) worm at the beginning of the epidemic: • Only after a special update to heuristic rules was released did NOD32 began detecting some, but not all, variants of Warezov:

  12. Technologies: these companies use Kaspersky Lab’s antivirus technologies in their solutions Have you heard of any companies that use ESET technologies?

  13. ESET NOD32 is a leader in the number of VB100% awards: at the time of writing, ESET had 41 awards, while Kaspersky Lab had 36 awards However, all Kaspersky Lab failures in VB100% testing were associated with old product versions. In the past two years, all Kaspersky Lab products have successfully passed tests. Products: Virus Bulletin 100% awards

  14. Products: fast operation and minimal effect on system performance Today, there are two well-established stereotypes: • ESET NOD32 is a fast and “light” antivirus solution that requires minimum resources and does not affect system performanceThis is true, subject to a number of important caveats • Kaspersky Anti-Virus provides solid protection from viruses, but significantly slows down the system With the release of Kaspersky Lab’s version 6.0 products, the situation changed:Kaspersky Lab products not only protect the system well, but they slow the system down insignificantly

  15. Products: fast operation and minimal effect on system performance What does “the antivirus slows the system down” mean to users? • Reduced performance of the computer (the time it takes the computer to perform standard actions) due to the consumption of system resources by the antivirus program • Slow scanning by the antivirus monitor and on demand scanner An antivirus program always affects system performance. The question is how great is this influence!

  16. Products: fast operation and minimal effect on system performance Kaspersky Lab’s version 6.0 products have minimal effect on system performance. This is confirmed by independent test results. CNET Labsиюнь 2006

  17. Products: fast operation and minimal effect on system performance On demand scanning speed • It is true that a number of independent tests show that NOD32 outperforms Kaspersky Lab products in terms of scanning speed • However: • Using the default settings, Kaspersky Lab products provide more in-depth scanning of the system for malicious programs • The scanning speed is lower only when the user first begins using Kaspersky Lab products. Subsequently, scanning only new and modified files optimizes and accelerates antivirus scanning without sacrificing quality

  18. Products: fast operation and minimal effect on system performance • Using the default settings, Kaspersky Lab products provide more thorough in-depth scanning of the system • InNOD32, such important parameters as advanced heuristics and scanning of compressed files are disabled by default in the on demand scanner settings

  19. Products: fast operation and minimal effect on system performance • ESET even warns users against using in-depth analysis during scanning: • The diagram below compares scanning speed for uncompressed and compressed files (with the scanning of compressed files enabled in NOD32). Source: AV-Test.org, 2006

  20. Products: fast operation and minimal effect on system performance Unlike on demand scanning, the antivirus monitor is always active in RAM. Because of this, it is especially important to users how much scanning of files with the antivirus monitor increases the time it takes to open or close these files CNET Labsиюнь 2006

  21. Products: fast operation and minimal effect on system performance

  22. Products: fast operation and minimal effect on system performance CNET Labsиюнь 2006

  23. Products: fast operation and minimal effect on system performance Features in Kaspersky Lab’s version 6.0 products that optimize scanning and the use of system resources: • Scanning of new and modified files only • Selection of security levels. Three levels: low,recommended or high • Intelligent file scanning mode, in which, e.g., Microsoft Office documents are scanned only when first opened and when last closed, with all intermediate file saving operations excluded from scanning • Automatic pausing of scanningwhen the processor is loaded by other applications • Support for defining protection scope, i.e., the disk area that will be scanned by the antivirus monitor

  24. Products: fast operation and minimal effect on system performance The performance of Kaspersky Lab’s version 6.0 products has been acknowledged not only by users but by respected magazines as well: • “Kaspersky Anti-Virus 6 is the best antivirus application we've seen this year. In our CNET Labs' performance tests and in results from independent antivirus testing organizations, the Russian antivirus vendor Kaspersky Lab scores high marks against its well-known competition. Kaspersky Anti-Virus 6 scored well in CNET Labs' performance tests and exceptionally well in third-party, independent antivirus testing using live viruses. On our iTunes test, Kaspersky Anti-Virus 6 was first, with a fast 174 seconds, just 12 seconds above our test system. On our Sorensen Squeeze test, Kaspersky Anti-Virus 6 was second, with 256 seconds, just 15 seconds more than our test system.” CNET, June 2006 • “Kaspersky Anti-Virus 6.0 detected and deleted practically all the malicious programs in the test group, at the same time achieving fast performance. Overall, the program showed itself to be an excellent quality solution”. Computerbild, July 2006 • The experts of PC Magazine also mentioned the advantages of checking file checksums (only new and modified files are scanned, while files that have not been modified since the previous scan are automatically marked as “clean”). PC Magazine Germany, November 2006

  25. Products: integrated protection of personal computersand workstations

  26. Products: integrated protection of all nodes on the corporate network

  27. Products: a fully functional security management tool In the documentation, the NOD32 administration system is described using a 50-workstation network as an example. This is not accidental, since using NOD32 on large networks is problematic

  28. Products: the cost and what it includes As an example, consider solutions for the protection of workstations • Compare the cost of Kaspersky Anti-Virus 6.0 for Windows Workstation andESET NOD32. We are not sure that the ESET product will turn out to be cheaper than the Kaspersky Lab solution. • When a customer buys Kaspersky Anti-Virus 6.0 for Windows Workstation, they get a solution that includes an antivirus program, a firewall, protection from spam and phishing and other protection components.When a customer buys NOD32, they only get an antivirus program. • Kaspersky Administration Kit, the remote administration system, is provided to customers free of charge.NOD32 Remote Administrator is supplied only with NOD32 Enterprise Edition, which is 30-40% more expensive than the standard ESET solution and more expensive than Kaspersky Lab solutions.

  29. Deutscher Bundestag, Germany International Atomic Energy Agency (IAEA) Retarus, Germany Government Development Bank, Malaysia Ministry of Equipment, France Conseil Général 92, France M&G Finanziaria Industriale, Italy Ministry of Labor and Social Affairs, Czech Republic I.NET S.p.a., Italy Customers: companies that have acknowledged the advantages of Kaspersky Lab products • T-Mobile, Czech Republic • Rectorat Amiens, France • University of Western Australia • Keio University (No. 1 university in Japan) • Bancaja Group, Spain • Tatneft, Russia • VimpelCom, Russia • Central Bank of Russia • and others You can find the list of ESET customers on the company’s website. We are confident that the comparison will be to our advantage

  30. To make the right choice! Why do you need these facts?

More Related