Jump to content
Kaspersky Support Forum

How "Kaspersky Anti-Virus Personal Root Certificate" decrypt SSL connection to scan it ?

iedco.cybertech

By iedco.cybertech
in Kaspersky Endpoint Security for Business

 Share

Recommended Posts

iedco.cybertech

iedco.cybertech

Posted
Posted

Hi

I want to figure out How "Kaspersky Anti-Virus Personal Root Certificate" decrypt SSL connection to scan it

I decide to write an article about how Kaspersky scan SSL\TLS connection by Kaspersky Anti-Virus Personal Root Certificate and describe the proccess in details 

I will be happy to guide me to complete this article 

Thanks .

THask

THask

Posted
Posted

Hi iedco.cybertech,

that is easier than you think. KL Certificate moves the traffic as a man in the middle to KES / KAV to scan it.

jesse628wallick

jesse628wallick

Posted
Posted
On 3/10/2024 at 12:53 PM, iedco.cybertech said:

Hi

I want to figure out How "Kaspersky Anti-Virus Personal Root Certificate" decrypt SSL connection to scan it

I decide to write an article about how Kaspersky scan SSL\TLS connection by Kaspersky Anti-Virus Personal Root Certificate and describe the proccess in details 

I will be happy to guide me to complete this article 

Thanks .

Hello maximtimeclock@iedco.cybertech,

To write an article about how Kaspersky’s Anti-Virus Personal Root Certificate decrypts SSL/TLS connections, you’ll want to explain the process of interception and decryption of secure traffic. Here’s a simplified explanation.

Installation When Kaspersky Anti-Virus is installed, it adds its root certificate to the OS certificate storage. For browsers like Mozilla Firefox and Thunderbird that use their certificate storage, the root certificate must be added manually.
Interception As secure traffic passes through the system, Kaspersky uses its root certificate to intercept the encrypted SSL/TLS connections.
Decryption With the root certificate in place, Kaspersky can decrypt the intercepted traffic, allowing it to scan the contents for potential threats.
Re-encryption After scanning, the traffic is re-encrypted and sent to its destination, ensuring that the user’s data remains secure.
User Control Users have the option to enable or disable the decryption of SSL connections in Kaspersky’s settings. If disabled, Kaspersky will not intercept or scan encrypted traffic.
For your article, you might also want to discuss the implications of such interception, like privacy concerns, and how Kaspersky addresses these issues. Remember to cite official sources and guides from Kaspersky for accuracy.

Good luck with your article! 

Best Regards,

maximtimeclock

Please sign in to comment

You will be able to leave a comment after signing in



Sign In Now
 Share
Go to topic listing


×
×
  • Create New...