KES11，KSC10SP3开始测试、

lsrxzz000

卡巴斯基Endpoint Security 11 for Windows中的新功能
1.卡巴斯基反目标攻击平台1.0的集成端点传感器组件
•IoC扫描器
•事件响应工具   
•事件调查功能
2.服务器的系统监视器（行为检测，修复引擎+漏洞利用预防）
•系统监视器的操作系统支持
•共享文件夹保护（远程加密
3.用户界面改进
•按类别分组的保护组件
    o高级威胁防护
    o基本威胁防护
•命名新的保护组件类型
o反病毒替换为威胁防护（例如，文件防病毒重命名为文件威胁防护）。
o系统监视器分为3个组件行为检测，修复引擎，漏洞利用预防。
o应用程序特权控制重命名为主机入侵防御。
o应用程序权限控制重命名为主机入侵防御系统（HIPS）。


•统计和报告显示执行检测的技术（机器学习，云分析等）和保护组件（防范，行为检测等）。
4.威胁防护的轻量级模式（“云模式”）
•启用KSN的轻型防病毒数据库（需要较少的RAM和驱动器空间）。
5.设备控制
•增加了抗桥接功能（阻止网络之间的未经授权的通勤）
•导入输出可信设备列表（以xml格式进行手动读取方便）
6.应用程序控制
•混合模式（具有阻止规则的测试模式）
•新的KL类别 - 可信证书
7.卡巴斯基端点安全性简化界面
•Microsoft Windows任务栏和上下文菜单中的应用程序托盘图标，无需完整的用户界面。
8.哈希值在检测事件和报告中指定，可用于排除（受信任区域）。
9.在Tusted zone设置中支持Masks（,,）。
10.政策的保护等级指标
•如果关键保护组件被禁用，通知。
11.各种可用性改进
•简化部署向导
•优化许可证管理
重要的提示！在卡巴斯基Endpoint Security 11 for Windows中，不再支持以下功能
•隔离
•IM Anti-Virus
•漏洞扫描

（翻译by google/含校对）

大致看了一下，虽然大改了一通，但感觉改动针对企业的多，个人应该影响不大。

Wesly.Zhang

WHAT'S NEW IN KASPERSKY ENDPOINT SECURITY 11 FOR WINDOWS
1. Integrated Endpoint Sensors component of Kaspersky Anti Targeted Attack Platform 1.0
•    IoC scanner
•    Incident response tools  
•    Incident investigation capabilities
2. System Watcher for servers (Behavior Detection, Remediation Engine + Exploit Prevention)
•    OS support for System Watcher
•    Shared folders protection (from remote encryption
3. User interface improvements
•    Protection components grouped by categories
    o    Advanced Threat Protection
    o    Essential Threat Protection
•    Modern terms for naming protection components
    o    Antivirus term replaced with Threat Protection (for example, File Anti-Virus renamed to File Threat Protection).
    o    System Watcher split to 3 components Behavior Detection, Remediation Engine, Exploit Prevention.
    o    Application Privilege Control renamed to Host Intrusion Prevention.
    o    Application Privilege Control renamed to Host Intrusion Prevention System (HIPS).
•    Technologies (machine learning, cloud analysis, etc) and protection components (Exploit Prevention, Behavior Detection, etc) that perform detection are shown in statistics and reports.
4. Lightweight mode for Threat Protection (“Cloud mode”)
•    Light antivirus databases with enabled KSN (require less RAM and drive space).
5. Device Control
•    Anti-Bridging feature added (blocks unauthorized commuting between networks)
•    ImportingExporting the list of trusted devices (in xml format which is convenient for readingediting manually)
6. Application Control
•    Mixed mode (test mode with blocking rules)
•    New KL category – Trusted certificates
7. Simplified interface of Kaspersky Endpoint Security
•    Application tray icon in Microsoft Windows task bar and context menu without full user interface.
8. Hash sum is specified in detection events and reports and can be used for exclusions (Trusted zone).
9. Masks (,, ) are supported in Tusted zone settings.
10. Protection level indicator for policy
•    Notifies in case critical protection components are disabled.
11. Various usability improvements
•    Simplified deployment wizard
•    Optimized license management
Important note! In Kaspersky Endpoint Security 11 for Windows, the following features are no longer supported
•    Quarantine
•    IM Anti-Virus
•    Vulnerability Scan

红色标记部分比较有意思。

pal家族

Wesly.Zhang 发表于 2017-9-18 17:15
WHAT'S NEW IN KASPERSKY ENDPOINT SECURITY 11 FOR WINDOWS
1. Integrated Endpoint Sensors component o ...

同感。不过我安装的时候没特别注意到哪里有light mode