Standard decisions on access to devices
Kaspersky Endpoint Security makes a decision on whether to allow access to a device after the user connects the device to the computer.
Standard decisions on access to devices
No.
| Initial conditions | Interim steps to take until a decision on access to the device is made | Decision on access to the device | ||
Checking whether the device is included in the list of trusted devices | Testing access to the device based on the access rule | Testing access to the bus based on bus access rule | |||
1 | The device is not present in the device classification of the Device Control component. | Not included in the list of trusted devices. | No access rule. | Not subject to scanning. | Access allowed.
|
2 | The device is trusted. | Included in the list of trusted devices. | Not subject to scanning. | Not subject to scanning. | Access allowed.
|
3 | Access to the device is allowed. | Not included in the list of trusted devices. | Access allowed. | Not subject to scanning. | Access allowed.
|
4 | Access to the device depends on the bus. | Not included in the list of trusted devices. | Access depends on the bus. | Access allowed. | Access allowed.
|
5 | Access to the device depends on the bus. | Not included in the list of trusted devices. | Access depends on the bus. | Access blocked. | Access blocked.
|
6 | Access to the device is allowed. No bus access rule is found. | Not included in the list of trusted devices. | Access allowed. | No bus access rule. | Access allowed.
|
7 | Access to the device is blocked. | Not included in the list of trusted devices. | Access blocked. | Not subject to scanning. | Access blocked.
|
8 | No device access rule or bus access rule is found. | Not included in the list of trusted devices. | No access rule. | No bus access rule. | Access allowed.
|
9 | There is no device access rule. | Not included in the list of trusted devices. | No access rule. | Access allowed. | Access allowed.
|
10 | There is no device access rule. | Not included in the list of trusted devices. | No access rule. | Access blocked. | Access blocked.
|
You can edit the device access rule after you connect the device. If the device is connected and the access rule allows access to it, but you later edit the access rule and block access, Kaspersky Endpoint Security blocks access the next time that any file operation is requested from the device (viewing the folder tree, reading, writing). A device without a file system is blocked only the next time that the device is connected.
If a user of the computer with Kaspersky Endpoint Security installed must request access to a device that the user believes was blocked by mistake, send the user the request access instructions.
