Jump to content
Kaspersky Support Forum

Vendor submission of application for whitelisting?

ImmersedVR

By ImmersedVR
in Kaspersky Anti-Virus

 Share
Go to solution Solved by Flood and Flood's wife,

Recommended Posts

ImmersedVR

ImmersedVR

Posted
  • Author
Posted

I'm a software developer working for [removed] .
We are in the process of white-listing our Windows, Mac, Linux, iPhone and Android apps with antivirus software vendors.

Could you provide information on your application whitelisting process for software vendors? Alternately, we can add exceptions at install time from our (digitally signed/trusted) installer, if you have such an API.

Best regards,

Scott Smith
 

Link to comment
Share on other sites
ImmersedVR

ImmersedVR

Posted
  • Author
Posted

Actually, I’d like to ask a follow-up question to clarify something.

 

Normally, I would run VirusTotal and then contact each vendor that flagged our app and apply to be whitelisted. However, it turns out that while none of them (including Kaspersky) actually flag any of our executable files, many of them block incoming connections on ports we use by default.

This leads to frequent user support incidents where we have to determine which security software they have installed and then walk them through the process of creating firewall exceptions.

Our (signed) installer automatically adds the necessary exceptions to Windows Defender Firewall, but for third-party security software with firewall functionality like Kaspersky, it’s not clear whether there’s a whitelist for firewall ports, or some kind of configuration API that a signed installer can access, or …?

Link to comment
Share on other sites
Flood and Flood's wife

Flood and Flood's wife

Posted
Posted

Hello @ImmersedVR

The query is not clear, is the question, what process & or criteria do Kaspersky use? 

When & if Kaspersky blocks or causes detections with your software, use Kaspersky’s Threat Intelligence Portal, scan the software & select Submit to re-analyze, send an email, add comments, i.e. explain the problem, to the Kaspersky Virus Lab. 

Thank you🙏
Flood🐳 +🐋

Link to comment
Share on other sites
ImmersedVR

ImmersedVR

Posted
  • Author
Posted

> is the question, what criteria do Kaspersky use?
No. Sorry, I’ll try to explain better.

 

Our product involves a Windows 10 app and an Android app that runs on a Virtual Reality headset (e.g. Oculus Quest). Both devices are on the same LAN (behind the firewall).

Kaspersky doesn’t identify our installed files on Windows as malware/PUPs, but it does prevent incoming connections to our app from the VR headset.

There is an API that allows our signed/trusted setup program to create exception rules for Windows Defender Firewall to allow the specific (unregistered) ports we use.

My question is:

How can we stop this connection blocking behavior in Kaspersky software? Is that included in vendor application whitelisting, or do we need to do something else?

 

Thanks

Link to comment
Share on other sites
Flood and Flood's wife

Flood and Flood's wife

Posted
Posted

Hello @ImmersedVR

Thank you for the clarification👌

  1. It’s not possible to give a generic answer, there’s various Kaspersky Firewall rules that can be tweaked, depending on what Kaspersky is blocking. 
  2. In the KAV reports, are there any events that match “Kaspersky preventing incoming connections to the app from the VR headset” ? If “yes”, save the Report as a text file & attach📎 to your reply please? 
  3.  Alternatively, if you have a Kaspersky software license, log a request with Kaspersky Technical Support.

Thank you🙏
Flood🐳 +🐋

Link to comment
Share on other sites
Guest
This topic is now closed to further replies.
 Share
Go to topic listing


×
×
  • Create New...