The Download Blog
advertisement
August 18, 2009 5:00 AM PDT

Kaspersky updates security suite for 2010

by Seth Rosenblatt
  • Font size
  • Print
  • 20 comments

UPDATED: Benchmarks provided by CNET Labs were added on Monday, August 24.

A new season of security suites is upon us, and Kaspersky has made improvements to its Kaspersky Internet Security and Kaspersky Anti-Virus programs that include changes indicative of where security software as an industry is leaning. Three new features along with expected upgrades to its antivirus engine keep Kaspersky competitive.

The main window of Kaspersky Internet Security 2010.

(Credit: Screenshot by Seth Rosenblatt/CNET)

The full-feature suite Kaspersky Internet Security offers a complete and competitive range of security options. The new features in the 2010 edition include a behavioral-based detection system called the Urgent Detection System. The UDS utilizes the anonymous data of 10 million Kaspersky customers who choose to participate in submitting their system scans to Kaspersky's central servers for analysis. In fact, the UDS must be opted-out of--there's a check box and data collection statement to read when you install the program.

Although this might sound insidious, it's actually a smart way to leverage a huge consumer base for security purposes as long as the data remains anonymous. Symantec's Norton 2010 will contain a behavioral check, too, and what both do is look at programs installed on your computer and judge their safety based on how many people have them installed and how they behave. Among UDS's better sub-features are the ability to customize how long it takes to pass judgment on a new program and per-user configuration of the rules governing program behavior.

Even if a program has deep penetration and it starts behaving badly, Kaspersky will block it. If it's an unknown, Kaspersky will treat it skeptically, monitoring and restricting the program until it has been proven safe. The Vulnerability Scan option, available under the Scan tab, utilizes tech from Secunia to determine which programs are potential security risks because they lack recent updates or patches. For programs that may not warn you that they have a pending security update, such as Adobe Flash, having this tool baked-in could be exceptionally useful.

The tools offered under the My Protection tab are nothing short of robust. There's antivirus protection for files, e-mail, HTTP traffic, and instant messaging. Application control, the aforementioned UDS, includes options for customization, should you need to force access for a specific program that Kaspersky is identifying as a threat. There are protections against spam, phishing, and banner ads, firewall control, and a network monitor to track network activities for users who like to drill down deep into their system's behavior. There's also a Parental Control filter, with options to outright block children from particular sites or merely log events. By default, the Parental Control filter is off, and when activated it assigns all other users on the computer Child status until directed otherwise. There's a Teenager status, as well, for more granular control of restrictions.

Safe Run is Kaspersky's new sandboxing feature for further securing programs that access the Internet.

(Credit: Screenshot by Seth Rosenblatt/CNET)

The My Security Zone tab is where most of the application control features live. From here, a clean chart organizes your installed programs according to trustworthiness, the Digital Identity Protection feature allows you to uncover which files your personal information resides in according to program, and the Safe Run sandbox can be controlled. Safe Run nearly doubles the amount of RAM the program uses, but provides a secure environment for launching a program. Safe Run also comes with a sandboxed folder into which you can save files without worry. The feature currently will not run on Windows 7 computers, but Kaspersky has told me that it expects to have the feature fixed before the October release of the new operating system.

Programs can be launched into Safe Run in one of two ways. You can add the program manually through the Kaspersky Security Zone panel, or you can launch it on the fly using the context menu. Hopefully, there will be casual launcher added to jump lists in Windows 7, but that feature doesn't exist now.

Scans and definition file updates performed empirically as expected, with the Quick Scan taking less than three minutes. The Vulnerability Scan took less than four minutes, as well. The Full Scan, which was expected to be slow, took less than an hour, but as it approached 80 percent completion it oscillated between telling me that it would finish in one minute and two minutes. In fact, it would take another 11 minutes to finish.

The Update Center tab offers a smooth update scheduler integrated into the main interface. Click on Run Mode to change the schedule. This isn't remarkable except to point out that only the definition file update offers an update like this. To schedule any other regular scan, you must click on the Settings option at the top right of the main Kaspersky window, choose the feature you want to schedule from the list on the left if it wasn't open in the main window when you hit settings, select Settings from within the window that opens, and then finally click the Run Mode tab on yet one final pop-up window. It's a tedious process and could be streamlined to great effect, but makes one of the basic features of this security program unnecessarily hard to get to.

Setting a scheduled scan in Kaspersky Internet Security 2010 is no simple task.

(Credit: Screenshot by Seth Rosenblatt/CNET)

The program also comes with an auto-run disable feature and a virtual keyboard so that you can enter in passwords without worrying about a keylogger. I think most users will find this superfluous. The new gamer mode, however, isn't. This basically keeps Kaspersky functioning while you play games but kills interrupting pop-ups and strips memory usage down to its minimum.

If you're testing the trial version, a yellow bar announcing that your computer security is at risk can be toggled under the Report link at the top right of the main window, then go to the Status tab.

Full benchmarks from the CNET Labs were not available when this blog originally ran, but we have them now. CNET Labs' benchmarks reveal a slightly different side to KIS. KIS slowed down our test computer's cold boot time by 2.21 seconds, and shutdown time by nearly 5 seconds. Scan times were actually faster on Kaspersky Internet Security 2010 than Kaspersky Anti-Virus 2010 by 9 seconds. They have identical engines, but KAV has fewer ancillary features. During our MS Office and iTunes decoding tests, both KIS and KAV performed identically, although during the media multitasking test KIS was slower by 64 seconds. In our Cinebench test, KIS fared the worst compared to a standard machine and KAV. KIS hit 3,908, while KAV notched 4,190 and baseline computer marked 4,217.

According to virus and malware detection results at AV-Test.org and AV-Comparatives.org, last year's Kaspersky 2009 has scored average or better in all areas of detection. AV-Test.org noted that it detected more than 98.4 percent of malware on demand and 98.3 percent of spyware on demand, with an average rate of false positives. AV-Comparitives.org awarded Kaspersky 2009 Advanced+ in both February 2009's on-demand comparative and in May 2009's retrospective/pro-active test, noting few false positives and a 50 percent detection rate, behind Microsoft, Eset, Avira, and G Data. The short version of these independent test results is that last year's Kaspersky scored above average in general, and was excellent at malware detection.

If you're interested only in Kaspersky Anti-Virus, it contains the most of the same engines and features as Kaspersky Internet Security. It lacks the personal two-way firewall, parental and privacy control, whitelisting and application control, safe run virtual sandbox, antispam protection, and banner ad blocking.

Using this year's interface and detection numbers for the previous version, I think it's safe to say that Kaspersky is a strong security suite, but that the extra features available in Internet Security make it worthwhile to pay for, whereas the standard Kaspersky Anti-Virus doesn't offer enough on its own to compare favorably against high-performing, free antivirus programs.

Seth peers into the deep, dark corners of software so that you don't have to. He has yet to suffer a single nightmare about OS/2. You can follow him on Twitter.
Topics:

Security and spyware,

Windows Software

Tags:

Kaspersky,

antivirus,

malware,

trojan,

2010

Share:
Digg
Del.icio.us
Reddit
Recent posts from The Download Blog
The 17 best iPhone games of 2009
Mozilla hopes to finish Thunderbird 3.1 in April
Woo-hoo! Simpsons Arcade game coming to iPhone
Adobe adds raw support for newer cameras
Mozilla releases fifth Firefox 3.6 beta
What's next for social gaming on the iPhone?
Fences Pro: New ways to conquer clutter
TomTom slashes iPhone GPS app to $49.99
Add a Comment (Log in or register) (20 Comments)
  • prev
  • 1
  • next
by relseh August 18, 2009 8:42 AM PDT
Seth, it would be nice to know (maybe you can find out) if Kaspersky has fixed their major bug with their NDIS driver causing major network connectivity problems with most Broadcom NICs. A pretty front end with lots of features is nice, but if the backend doesn't work (still), it isn't worth an enterprise investment to update to those new features.
Reply to this comment
by e9zx August 18, 2009 1:16 PM PDT
Installed it last week from the global site, not an NDIS driver to be found
by srosenblatt August 18, 2009 6:25 PM PDT
Just heard back from Kaspersky, and apparently this is a known issue but only with their corporate products. They say they hope to have it addressed in the next update, later this year.
by djk2000 August 19, 2009 3:49 AM PDT
I agree, I have toubled the network connectivity but I don't know why.
But my problem is solved when the kaspersky is uninstalled.
by nikecar August 18, 2009 11:38 AM PDT
I'll keep my Comodo... gets top marks too and its free.
Reply to this comment
by djk2000 August 19, 2009 3:44 AM PDT
I agree , kaspersky is too expensive. But comodo is free.
Comodo and kasperky get same 96% of score in the http://www.matousec.com/projects/proactive-security-challenge/results.php
The money you save enjoy your life.
by shakethebabyass August 18, 2009 5:01 PM PDT
These people go from ugly to uglier! Seriously! I'm sure there defense is great though and yes guys I KNOW that is whats most important.

Im a Norton guy but am currently trying out F-Secure 2010.. right now i'm pretty wowed!
Reply to this comment
by AL-Graphic August 18, 2009 5:33 PM PDT
Continuously got infected in 2002 and 2003 during the period of Norton Internet Security suite, work stations and server got all messed up; after 2003, company and personal PCs all installed Kaspersky, since then, I never got any infections at all, all be protected and warning to skip or deny suspecious websites or emails. A printing business like us, we received millions files from all over the world past years, Kaspersky is always reliable to me.
Reply to this comment
by sam99999999 August 18, 2009 7:06 PM PDT
Good article, Seth, and I appreciate the fact that you comment on these feedback entries.

One of the problems with the previous version of Kaspersky (which kept me from using it) was an incompatibility with Acronis True Image, where if you ran Kaspersky on a system, ATI full images took much longer to run.

I think this was due to Kaspersky's use of alternate data streams in the NTFS file system to store information on files they've scanned. (Because they write to this area, ATI thinks the file was updated.)

If you have an inside track to someone in Kaspersky engineering and you could get an answer to this I would appreciate it.

Thanks,

Sam
Reply to this comment
by HolyCow! August 19, 2009 3:53 PM PDT
I've used Acronis True Image for years and am very happy with it.

Was about ready to switch from Norton to Kaspersky today, but upon seeing that Kaspersky interferes with ATI backups, I've decided to go look at that Comodo product and others.

Norton wants $44.95 to renew NAV for a year, one PC. Kaspersky is much better at about $59 for a year, 3 PCs.

But to tell you the truth, being able to fully restore to a new disk when a disk fails has proven to be MUCH more important than AV software. The only "virii" I've run into, ever, are tracking cookies.
by sam99999999 August 19, 2009 5:11 PM PDT
@HolyCow I ended up settling on ESET NOD32 AV after I did that evaluation and have been happy with it. I also depend on Acronis like you. So far no issues with either product interacting with the other.

I would be interested in hearing if Kaspersky still has this issue; I think it's a good AV product otherwise. I guess Seth is off working on other articles :-)

Sam
by AppleSuxLeo August 19, 2009 12:21 AM PDT
Avast !
Reply to this comment
by lobo65 August 19, 2009 7:23 AM PDT
I've always used Kaspersky Internet Suite, and it has worked flawlessly. I will definitely get this upgraded version when my subscription is up.
Reply to this comment
by RFlynnJazz August 19, 2009 10:51 AM PDT
@lobo65, You can go ahead and upgrade by going to Kaspersky's website. Only thing you need is your activation (licence) code.
by shakethebabyass August 19, 2009 10:51 AM PDT
You can always upgrade to the latest program version without getting a new subscription. If you have 2009 version you can get 2010 for free at any time and keep your remaining subscription. It is like this with all providers as far as I know.

If you already knew this, sorry!
by Neumenon August 19, 2009 3:39 PM PDT
I've always found Kaspersky products to be kind of plodding and bloated, even on higher end spec machines.
Reply to this comment
by dingofest2 August 23, 2009 8:54 PM PDT
I used to worry about this stuff. Had Kaspersky Internet Suite a few years (worked great) Before that I used Norton, McAfee and CA Internet Security Suite. About 7 months ago when my 4 year old Dell died I switched to a Macintosh and haven't looked back since. Feels nice not worrying about this stuff anymore. Before you flame me as a Mac fan boy (which I'm not) this is my first Mac. I still have an old Dell laptop but that's getting replaced with a Macbook soon... Just got tired of virus this, spyware that.. every time I wanted to use Online Banking I had to think for a minute and check anti-virus suite status ensure it was up to date. Just got tired of all that BS.
Reply to this comment
by archangelx333 September 1, 2009 5:25 AM PDT
I had to uninstall KIS 2010 and use KIS 2009 because it was slowing down my computer. I'll try it again when they release an update. Otherwise KIS is king.
Reply to this comment
by nworb225 September 1, 2009 12:34 PM PDT
I think that if you are truly worried about security, then don't bother logging in online at all. As fast as updates come out someones bypassing them. Zonealarm has always been fairly decent, and granted they put alot of work into their software, as does kaspersky but if they are supposed to protect your computer through firewalls and so on why would you have to get the $70 dollar version compared to the $50 version? IE or whichever browser you are using is still a part of your system, and if these security programs are supposed to protect your system, then why have a more expensive version? will it type for me? or will it do my dishes? I get the idea of a trimmed down version for those that cant afford the more expensive verison but $20 dollars isn't a big deal, and if it is then maybe you shouldn't be using computers... just my take on this
Reply to this comment
by anamorph1c September 17, 2009 3:06 PM PDT
Regarding the relatively high cost of Kaspersky products, and the hesitation of some to use them because of this..

You don't have to pay $70 a year. Seriously. There's no need to purchase the latest version, after all, since you can update to the latest for free at Kaspersky's website online. All you need is the license key. A new copy of the previous year's KIS can be found for $20 at many online retailers. Update to the latest version, and you're good to go.
Reply to this comment
(20 Comments)
  • prev
  • 1
  • next

Search Download Blog posts

About The Download Blog

Download.com editors cover the world of downloadable software and beyond.

Add this feed to your online news reader

The Download Blog topics

download
Site map
Help center
Our software policies
Newsletters
Submit software
Popular topics
Apple iPhone
Apple iPod
Cell phones
CES 2010
GPS
LCD TV
CNET sites
CNET Site map
CNET TV
Downloads
News
Reviews
Shopper.com
More information
Newsletters
CNET Mobile
Customer Help Center
RSS
CNET API
About CNET