kaspersky lab n.
Download
Skip this Video
Loading SlideShow in 5 Seconds..
Kaspersky Lab PowerPoint Presentation
Download Presentation
Kaspersky Lab

Loading in 2 Seconds...

play fullscreen
1 / 30

Kaspersky Lab - PowerPoint PPT Presentation


  • 108 Views
  • Uploaded on

Facts Kaspersky Lab vs. ESET. Kaspersky Lab. The companies: principal facts. The companies: independent assessment of market position.

loader
I am the owner, or an agent authorized to act on behalf of the owner, of the copyrighted work described.
capcha
Download Presentation

PowerPoint Slideshow about 'Kaspersky Lab' - ilya


An Image/Link below is provided (as is) to download presentation

Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.


- - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - -
Presentation Transcript
kaspersky lab
Facts

Kaspersky Lab vs.ESET

Kaspersky Lab
the companies independent assessment of market position
The companies: independent assessment of market position
  • ESET received the 2006 Deloitte Technology Fast 500 EMEAAward, i.e., it ranked among the 500 fastest growing companies in Europe, the Middle East and Africa
  • In 2006, Kaspersky Lab received theFrost & Sullivan Growth Strategy Leadership Award for the highest growth rate on the antivirus market
  • IDC and Gartner, large research companies, do not include data on ESET in their reports. The company’s revenues are included in the Other category
  • Antivirus vendor revenue growth in 2004-2005 (estimate by IDC & Gartner):
technologies kaspersky lab s viruslab
The VirusLab is located in asingle research center in Moscow. This makes it possible to train new analysts and share expert knowledge with minimal delays

The system for collecting malicious program samplesis geographically distributed, with honeypots placed in numerous locations, enabling analysts to receive samples almost as soon as after they appear “in the wild”

Kaspersky Lab uses unique tools for automating collection and processing of malicious program samples.It takes just a few minutes to analyze malware samples and add their signatures to antivirus databases

Updates are tested automatically. Performing multiple operations in parallel accelerates the update testing process, which takes less than an hour

A broad range of proactive technologies developed by the company enable Kaspersky Lab products to detect most threats even BEFORE their signatures are released

Technologies:Kaspersky Lab’s VirusLab
technologies malicious program detection levels
Technologies: malicious program detection levels

Overall levels of malicious program detection

technologies proactive protection
Proactive protection targets new malicious programs for which signatures have not yet been added to antivirus databases

There are two main proactive protection technologies: heuristic analyzer and behavior blocker

The heuristic analyzer (heuristic) analyzes the code of objects for the typical attributes of malicious applications. Based on the results of this analysis, the heuristic concludes whether the object is potentially hostile

The behavior blockeris a program that analyzes the behavior of applications running on the user’s computer and blocks any dangerous activity (i.e., actions typically performed by malicious programs)

Technologies: proactive protection
technologies proactive protection1
Technologies: proactive protection
  • Proactive protection technologies used in Kaspersky Lab and ESET solutions
  • The best-known analyses of proactive protection are conducted by theAV-Comparatives.org project:
    • Standard Retrospective / ProActivetests conducted byAV-Comparatives.orgassess only the capabilities of the heuristic analyzer
    • AV-Comparatives.org conducts separate analyses to assess the capabilities of behavior blockers
technologies proactive protection2
Each method for proactive protection has its pros and cons. However, the facts speak for themselves:

During a special proactive protection test conducted by AV-Comparatives.org, the Proactive Defense Module (behavior blocker) in Kaspersky Anti-Virus 6.0 blocked the actions of 99%of malicious programs

During the Retrospective / ProActive test conducted by AV-Comparatives.org, the heuristic analyzer in NOD32 detected 53%of malicious programs

AV-Comparatives.org provides the following comment on the results achieved by Kaspersky Lab products:

Technologies: proactive protection
technologies proactive protection3
Technologies: proactive protection

Malicious programs can be proactively detected by heuristic analyzersor by behavior blockers

AV-Test.org, 2006

technologies proactive protection4
Technologies: proactive protection

The proactive defense module (behavior blocker) included in Kaspersky Lab products has detected most modifications of the Warezov worm from the very start of its epidemic.

Detection of Warezov by the Proactive Defense Module in Kaspersky Lab’s version 6.0 products:

technologies proactive protection5
Technologies: proactive protection
  • ESET NOD32provided neither a signature-based nor proactive detection of Warezov (Win32/Stration) worm at the beginning of the epidemic:
  • Only after a special update to heuristic rules was released did NOD32 began detecting some, but not all, variants of Warezov:
technologies these companies use kaspersky lab s antivirus technologies in their solutions
Technologies: these companies use Kaspersky Lab’s antivirus technologies in their solutions

Have you heard of any companies that use ESET technologies?

products virus bulletin 100 awards
ESET NOD32 is a leader in the number of VB100% awards: at the time of writing, ESET had 41 awards, while Kaspersky Lab had 36 awards

However, all Kaspersky Lab failures in VB100% testing were associated with old product versions. In the past two years, all Kaspersky Lab products have successfully passed tests.

Products: Virus Bulletin 100% awards
products fast operation and minimal effect on system performance
Products: fast operation and minimal effect on system performance

Today, there are two well-established stereotypes:

  • ESET NOD32 is a fast and “light” antivirus solution that requires minimum resources and does not affect system performanceThis is true, subject to a number of important caveats
  • Kaspersky Anti-Virus provides solid protection from viruses, but significantly slows down the system With the release of Kaspersky Lab’s version 6.0 products, the situation changed:Kaspersky Lab products not only protect the system well, but they slow the system down insignificantly
products fast operation and minimal effect on system performance1
Products: fast operation and minimal effect on system performance

What does “the antivirus slows the system down” mean to users?

  • Reduced performance of the computer (the time it takes the computer to perform standard actions) due to the consumption of system resources by the antivirus program
  • Slow scanning by the antivirus monitor and on demand scanner

An antivirus program always affects system performance. The question is how great is this influence!

products fast operation and minimal effect on system performance2
Products: fast operation and minimal effect on system performance

Kaspersky Lab’s version 6.0 products have minimal effect on system performance. This is confirmed by independent test results.

CNET Labsиюнь 2006

products fast operation and minimal effect on system performance3
Products: fast operation and minimal effect on system performance

On demand scanning speed

  • It is true that a number of independent tests show that NOD32 outperforms Kaspersky Lab products in terms of scanning speed
  • However:
    • Using the default settings, Kaspersky Lab products provide more in-depth scanning of the system for malicious programs
    • The scanning speed is lower only when the user first begins using Kaspersky Lab products. Subsequently, scanning only new and modified files optimizes and accelerates antivirus scanning without sacrificing quality
products fast operation and minimal effect on system performance4
Products: fast operation and minimal effect on system performance
  • Using the default settings, Kaspersky Lab products provide more thorough in-depth scanning of the system
  • InNOD32, such important parameters as advanced heuristics and scanning of compressed files are disabled by default in the on demand scanner settings
products fast operation and minimal effect on system performance5
Products: fast operation and minimal effect on system performance
  • ESET even warns users against using in-depth analysis during scanning:
  • The diagram below compares scanning speed for uncompressed and compressed files (with the scanning of compressed files enabled in NOD32). Source: AV-Test.org, 2006
products fast operation and minimal effect on system performance6
Products: fast operation and minimal effect on system performance

Unlike on demand scanning, the antivirus monitor is always active in RAM. Because of this, it is especially important to users how much scanning of files with the antivirus monitor increases the time it takes to open or close these files

CNET Labsиюнь 2006

products fast operation and minimal effect on system performance9
Products: fast operation and minimal effect on system performance

Features in Kaspersky Lab’s version 6.0 products that optimize scanning and the use of system resources:

  • Scanning of new and modified files only
  • Selection of security levels. Three levels: low,recommended or high
  • Intelligent file scanning mode, in which, e.g., Microsoft Office documents are scanned only when first opened and when last closed, with all intermediate file saving operations excluded from scanning
  • Automatic pausing of scanningwhen the processor is loaded by other applications
  • Support for defining protection scope, i.e., the disk area that will be scanned by the antivirus monitor
products fast operation and minimal effect on system performance10
Products: fast operation and minimal effect on system performance

The performance of Kaspersky Lab’s version 6.0 products has been acknowledged not only by users but by respected magazines as well:

  • “Kaspersky Anti-Virus 6 is the best antivirus application we've seen this year. In our CNET Labs' performance tests and in results from independent antivirus testing organizations, the Russian antivirus vendor Kaspersky Lab scores high marks against its well-known competition. Kaspersky Anti-Virus 6 scored well in CNET Labs' performance tests and exceptionally well in third-party, independent antivirus testing using live viruses. On our iTunes test, Kaspersky Anti-Virus 6 was first, with a fast 174 seconds, just 12 seconds above our test system. On our Sorensen Squeeze test, Kaspersky Anti-Virus 6 was second, with 256 seconds, just 15 seconds more than our test system.” CNET, June 2006
  • “Kaspersky Anti-Virus 6.0 detected and deleted practically all the malicious programs in the test group, at the same time achieving fast performance. Overall, the program showed itself to be an excellent quality solution”. Computerbild, July 2006
  • The experts of PC Magazine also mentioned the advantages of checking file checksums (only new and modified files are scanned, while files that have not been modified since the previous scan are automatically marked as “clean”). PC Magazine Germany, November 2006
products a fully functional security management tool
Products: a fully functional security management tool

In the documentation, the NOD32 administration system is described using a 50-workstation network as an example. This is not accidental, since using NOD32 on large networks is problematic

products the cost and what it includes
Products: the cost and what it includes

As an example, consider solutions for the protection of workstations

  • Compare the cost of Kaspersky Anti-Virus 6.0 for Windows Workstation andESET NOD32. We are not sure that the ESET product will turn out to be cheaper than the Kaspersky Lab solution.
  • When a customer buys Kaspersky Anti-Virus 6.0 for Windows Workstation, they get a solution that includes an antivirus program, a firewall, protection from spam and phishing and other protection components.When a customer buys NOD32, they only get an antivirus program.
  • Kaspersky Administration Kit, the remote administration system, is provided to customers free of charge.NOD32 Remote Administrator is supplied only with NOD32 Enterprise Edition, which is 30-40% more expensive than the standard ESET solution and more expensive than Kaspersky Lab solutions.
customers companies that have acknowledged the advantages of kaspersky lab products
Deutscher Bundestag, Germany

International Atomic Energy Agency (IAEA)

Retarus, Germany

Government Development Bank, Malaysia

Ministry of Equipment, France

Conseil Général 92, France

M&G Finanziaria Industriale, Italy

Ministry of Labor and Social Affairs, Czech Republic

I.NET S.p.a., Italy

Customers: companies that have acknowledged the advantages of Kaspersky Lab products
  • T-Mobile, Czech Republic
  • Rectorat Amiens, France
  • University of Western Australia
  • Keio University (No. 1 university in Japan)
  • Bancaja Group, Spain
  • Tatneft, Russia
  • VimpelCom, Russia
  • Central Bank of Russia
  • and others

You can find the list of ESET customers on the company’s website. We are confident that the comparison will be to our advantage