Vulnerability Scan Workflow

[Sang]

Hi everyone,

We have deployed Kaspersky Infrastructure on an air gapped system where our Administration Server is located in a secure zone (it cannot connect to the Internet directly or via a proxy server). We are planning to connect it to the Internet using a data diode system and a filtering device that only allows requests to approved destinations, specifically KSN servers for update repositories and vulnerability scanning.

However, we are not sure whether Kaspersky uses its KSN servers to store security patches for applications and operating systems, or whether it retrieves updates directly from vendor sources (such as Microsoft, Google Chrome, etc.).

I would like to know if there is any documentation that explains the vulnerability scanning workflow in detail, or if someone could provide an overview of how it works.

Thank you, and have a great day!