Kaspersky Lab WorkSpace Security EU ED, 10-14u, 3Y, RNW KL4851XAKTR Benutzerhandbuch
Produktcode
KL4851XAKTR
U
S E R
G
U I D E
64
I
N THIS SECTION
Component operation algorithm ......................................................................................................................................
Changing HTTP traffic security level ...............................................................................................................................
Changing actions to be performed on detected objects...................................................................................................
Creating a protection scope .............................................................................................................................................
Selecting the scan method ..............................................................................................................................................
Using heuristic analysis ...................................................................................................................................................
Scan optimization ............................................................................................................................................................
Restoring default web protection settings ........................................................................................................................
Web Anti-Virus statistics ..................................................................................................................................................
C
OMPONENT OPERATION ALGORITHM
Web Anti-Virus protects information being received via HTTP, and prevents hazardous scripts from running on the
computer.
computer.
This section discusses the component's operation in more detail. HTTP traffic is protected using the following algorithm:
1. Each web page or file that is accessed by the user or by an application via the HTTP protocol is intercepted and
analyzed by Web Anti-Virus for malicious code. Malicious objects are detected using both databases used by
the application and the heuristic algorithm. The database contains descriptions of all the malicious programs
known to date and methods for neutralizing them. The heuristic algorithm can detect new viruses that have not
yet been entered in the database.
the application and the heuristic algorithm. The database contains descriptions of all the malicious programs
known to date and methods for neutralizing them. The heuristic algorithm can detect new viruses that have not
yet been entered in the database.
2. After the analysis, you have the following available courses of action:
If a web page or an object accessed by the user contains malicious code, access to it will be blocked. A
notification is displayed informing that the object or the page being requested is infected.
notification is displayed informing that the object or the page being requested is infected.
If the file or the webpage do not contain malicious code, they will immediately become accessible to the
user.
user.
Scripts are scanned according to the following algorithm:
1. Each script run on a web page is intercepted by Web Anti-Virus and is analyzed for malicious code.
2. If the script contains malicious code, Web Anti-Virus blocks it and informs the user of it with a special pop-up
message.
3. If no malicious code is discovered in the script, it is run.
A special plug-in is provided for Microsoft Internet Explorer; it is integrated into the browser when installing the
application. It is available when a new button appears in the browser's toolbar. Clicking it opens an information panel with
Web Anti-Virus statistics on the number of scripts scanned and blocked.
application. It is available when a new button appears in the browser's toolbar. Clicking it opens an information panel with
Web Anti-Virus statistics on the number of scripts scanned and blocked.