Secret Net Studio

The main articles are:

• Antiviruses
• Firewall

Secret Net Studio is a complete solution for protecting workstations and servers. It allows you to monitor the integrity of the OS, monitors the connection of third-party devices, implements firewall technologies and delimitation of access to network resources.

2023: Certification in Belarus

The products "Continent 4," vGate and Secret Net Studio from the Russian developer of information protection tools "Security Code" have been certified by the Operational and Analytical Center under the President of the Republic of Belarus and can now be sold in the republic. The developer company announced this on April 24, 2023. Read more here.

2022: Secret Net Studio 8.8 and 8.6 compatibility with Windows 11, 10 21H2 and Win Server 2022

Secret Net Studio 8.8 and 8.6 Security Code products have confirmed compatibility with Windows 11, Windows 10 21H2 and Win Server 2022. The company "Security Code" announced this on February 7, 2022.

Secret Net Studio is an anti-unauthorized access tool that differentiates the use of confidential information and protects against computer attacks on Windows operating systems. In addition to updated compatibility, Secret Net Studio works with client (10, 8.1, 7 SP1) and server versions of Windows (Server 2019, 2016, 2012 and 2008 R2 SP1).

SNS meets all state requirements in the field of information protection and has certificates from the FSTEC, the FSB and the Ministry of Defense of the Russian Federation.

2021

JaCarta Key Compatibility

On April 12, 2021, the company Aladdin R.D.."" announced that, together with Security Code"," they completed testing for compatibility of the latest versions of their products. According to the test results, the correctness of USB the -tockens was confirmed smart cards JaCarta from "Aladin R.D." with information the Secret Net Studio security tool and the trusted download tool (PAC "Sable" release 4.3) from the "Security Code." More. here

Renewing the FSTEC Certificate for Secret Net Studio 8.6

The software package of information protection tools Secret Net Studio 8.6, developed by the Russian vendor "Security Code," has passed the next stage of compliance certification with the Federal Export and Technical Control Service (FSTEC). This was reported on February 25, 2021 in the "Security Code."

In accordance with the certificate, Secret Net Studio meets the requirements for information technology security tools for level 4 of trust, for type B firewalls for class 4, for class 4 type B antivirus protection profile, class G-4 antivirus protection protection profile and class 5 unauthorized access protection tools.

In version 8.6, control over administrative privileges was strengthened: the program allows you to distinguish between the roles of an information system administrator (IS) and a security administrator, imposing additional restrictions on the ability of an IP administrator to influence security policy, thereby reducing the risk from internal threats. Also, version 8.6 implemented centralized management and security in unrelated Active Directory forests to ensure security in large, holding structures. In addition, an email antivirus was added to protect against malware transmitted by mail.

2020: Secret Net Studio 8.6

On January 15, 2020, Security Code announced the release of version 8.6 of Secret Net Studio. In version 8.6, control over administrative privileges was strengthened, expanded capabilities for centralized deployment and product management appeared, as well as additional functionality to fulfill the requirements for protecting CII objects . The most important innovation of Secret Net Studio 8.6 is the improved mechanism for self-protection of the application and control of administrative privileges.

According to the company, big innovations affected the centralized deployment and configuration mode. In network mode, you can function in unrelated Windows Active Directory (AD) forests, as well as centralized deployment through Windows System Center Configuration Manager.

An important update was the appearance of an email client antivirus in Secret Net Studio 8.6.

The subsystem identifications authentications implemented functions that ensure the implementation of measures for to protection objects (critical information infrastructure CII) in accordance with Order FSTEC of Russia No. 239. As part of support for updated platforms and technologies, Secret Net Studio 8.6 was provided with updates 1903 and 1909, operating system Windows 10 support for hardware was implemented - authentications GuardantID, which meets the requirements of the 2nd level of NDV absence control (with the ability to be used in systems processing state secrets), and. Rutoken Micron 2151

In Secret Net Studio version 8.6, we paid special attention to delimiting the roles of security administrator and information system administrator: we additionally protected the application control interfaces with a special PIN code, which made it possible to strictly limit the capabilities of the information system administrator to mechanisms independent of the OS. told Pavel Petrov, Lead Product Manager at Security Code

Secret Net Studio 8.6 is available in two editions: Secret Net Studio (to protect confidential information) and Secret Net Studio - C (to protect state secrets). The Secret Net Studio edition (unlike Secret Net Studio - C) contains an antivirus module and an intrusion detection and prevention system module. Both editions of Secret Net Studio 8.6 will have to undergo an assessment of compliance with the requirements of the FSTEC of Russia (inspection control). The product will go on sale after passing inspection control.

2019

FSB of Russia certificate for Secret Net Studio version 8.4

Security Code On August 29, 2019, the company "" announced the receipt of certificate FSB Russia No. SF/SZI-0288 for SSD Secret Net Studio version 8.4. This certificate certifies that Secret Net Studio 8.4 complies with information protection state the "Class AK3 Restricted Access Requirements That Do Not Contain Secret Information from Unauthorized Access."

It should be borne in mind that the above requirements of the AK3 class are strictly fulfilled when sharing Secret Net Studio with PAC Sable or another certified FSB of Russia for the corresponding class with a hardware and software trusted download module. The operation of the Secret Net Studio IPS in accordance with the received certificate is possible until August 26, 2024.

Release version 8.5

On January 31, 2019, Security Code announced the release of the next version of Secret Net Studio, designed to comprehensively protect workstations and servers from external and internal threats. Secret Net Studio 8.5 significantly enhances the self-protection of processes and drivers, expands the functionality of security engines, and optimizes the product deployment process.

According to the company, one of the most important updates to Secret Net Studio version 8.5 is the Trusted Environment module, which allows you to implement control of Secret Net Studio processes and drivers external to the OS in real time. The operation of the module cannot be influenced from the working environment, since the "Trusted Environment" operates independently of the OS.

Kaspersky Lab technologies were integrated into this version of Secret Net Studio. As a result, users have expanded the selection of antivirus modules available for installation by leading world manufacturers, and the ability to block malicious addresses has been added to the functionality of the intrusion detection and prevention system module.

In addition to the above updates, Release 8.5 introduced features such as the Configuration and Protected Object Reporting Generator, centralized deployment mode through Active Directory Group Policies (GPOs), and bulk import of objects into the Device Monitoring subsystem.

As part of support for new platforms and technologies, Secret Net Studio 8.5 was provided to Windows Server 2019 and integrated the management of PAC "" Sable version 4.2. The updated product also supports authentications JaCarta hardware PRO, JaCarta-2 PRO/GOST, JaCarta-2 SE, JaCarta U2F,. JaCarta WebPass

This version takes into account the requirements FSTEC of Russia for ensuring safety GIS and facilities. In CII RF particular, the functionality of notifying users about the presence of measures in the system, to protection information as well as about the previous successful login attempt, is implemented.

When developing Secret Net Studio version 8.5, we considered increasing the real protection of users from modern threats as the main task. In particular, the resistance of protective mechanisms to external influences was significantly increased, it was possible to protect against more network threats - by ensuring the blocking of malicious IP addresses phishing URL and botnet networks using hourly updates. bases Pavel Petrov, Lead Product Manager, Security Code

Secret Net Studio 8.5 is available in two editions: Secret Net Studio (to protect confidential information) and Secret Net Studio - C (to protect state secrets). The Secret Net Studio edition (unlike Secret Net Studio - C) contains an antivirus module and an intrusion detection and prevention system module. Both editions of Secret Net Studio 8.5 will have to undergo an assessment of compliance with the requirements of the FSTEC of Russia (inspection control). The results of the tests will be announced additionally. The product will go on sale after passing inspection control.

2018: Release of version 8.4

On April 20, 2018, Security Code announced the release of the next version of Secret Net Studio, designed to comprehensively protect workstations and servers from external and internal threats. According to the developers, Secret Net Studio version 8.4 has increased the performance of a number of product mechanisms, as well as increased the convenience of control and monitoring tools.

One of the main features of version 8.4 is the ability to centrally manage clients under OS Linux with the installed Secret Net MPS LSP version 1.7.

An important addition was the functionality of security policy templates, which allows you to quickly bring the protection system into compliance with regulatory requirements or return it to the reference state determined by the administrator, noted in the "Security Code." Administrators also have the ability to receive operational data on infrastructure security using customizable dashboards.

Customers of Secret Net Studio 8.4 and subsequent versions will be able to certify the software available on servers and workstations, will be able to control the invariability of existing and the appearance of new software in the system.

In Secret Net Studio version 8.4, we paid special attention to reducing the load on computer resources and improving the convenience of centralized management. Improvements affected the processes of installing and updating the client part, automated distribution of reference settings in the domain, graphical display of summary information about the status of the protected domain. Thanks to the updated functionality, our customers will be able to reduce time to deploy and manage the system, as well as to respond and investigate incidents, "said Pavel Petrov, Lead Product Manager at Security Code.

As part of support for platforms and technologies, Secret Net Studio 8.4 was provided on. Windows Server 2016 The updated product also supports modern hardware tools - authentications JaCarta 2 GOST, JaCarta-2 PKI/GOST and JaCarta LT.

Secret Net Studio 8.4 is available in two editions: Secret Net Studio (to protect confidential information) and Secret Net Studio - C (to protect state secrets). The Secret Net Studio edition (unlike Secret Net Studio - C) contains anti-virus a module and an intrusion detection and prevention system module. Both editions of Secret Net Studio 8.4 will be transferred to inspection control in the certification system. FSTEC Russia The results of the tests will be announced additionally.

It should also be noted that Secret Net 6 and Secret Net 7 users can migrate to Secret Net Studio while maintaining their settings.

2017

Execution of inspection control in FSTEC of Russia, version 8.2

On September 18, 2017, Security Code announced that Secret Net Studio version 8.2 had passed inspection control in. In FSTEC Russia this version, users were able to process Windows 10 confidential information or data containing state secrets on workstations running with Creators Update.

The certified version of Secret Net Studio implements such features as integration with the JaCarta Management System token management system, print control for Windows Store applications, erasing deleted files at the request of the user, switching between offline and network operation without reinstalling the client. A number of improvements have also been made to improve the convenience of centralized system management. The product is fully compatible with the Windows 10 Creators Update (1703).

Secret Net Studio 8.2 is released in two editions: Secret Net Studio, to protect confidential information, and Secret Net Studio - C, to protect state secrets. The Secret Net Studio edition additionally contains an antivirus module and an intrusion detection and prevention system module.

You can upgrade to version 8.2 from Secret Net Studio - C (version 8.0.660.0) and Secret Net Studio (version 8.1.721.0). When upgrading to the latest version in the certified information system, customers must notify the certification authority of the Secret Net Studio update. Recertification of the information system is not required.

Release 8.2

On July 10, 2017, Security Code announced the release of a version of Secret Net Studio, designed to comprehensively protect workstations and servers from external and internal threats. Secret Net Studio 8.2 significantly strengthens the protective mechanisms of system components, provides compatibility with products from other manufacturers, and simplifies the deployment process.

Secret Net Studio (2017)

Version 8.2 has undergone a number of changes and improvements. Among them - the revision of the personal firewall included in the Secret Net Studio in accordance with the requirements of the FSTEC of Russia.

"Secret Net Studio provides features such as integration with the JaCarta Management System token management system, print control for Windows Store applications, erasing deleted files at the request of the user, switching between offline and network mode without reinstalling the client. A number of improvements have also been made to improve the convenience of centralized system management. " Sergey Lapshenkov, chief designer of the Security Code company

2016

Certificate of FSTEC of Russia

The Security Code company announced in December that Secret Net Studio-C version 8.0, a comprehensive protection tool for workstations and servers, passed certification tests and received a certificate of compliance with the FSTEC of Russia No. 3675 dated December 12, 2016.

The document confirms that the Secret Net Studio product meets the requirements of the regulator for the 3rd security class according to SVT, the 2nd level of control for the absence of undeclared capabilities (NDV) and the requirements for firewalls according to the 2nd security class.

The Secret Net Studio certified means of protection against external and internal threats can be used to protect automated systems (AS) up to class 1B (including for the protection of state secrets with the heading "top secret"), ISDS up to 1 level of security, state information systems and APCS up to the 1st class inclusive.

"The process of obtaining a single Secret Net Studio certificate required the testing of the SMT on several guidance documents, respectively, turned out to be more complex and lengthy compared to the certification of our other products. Currently, two key product modules are certified: NSD protection and firewall. However, we are awaiting the completion of certification tests of the remaining Secret Net Studio security mechanisms - antivirus, intrusion detection system, disk protection. We will announce the receipt of a single certificate for all Secret Net Studio modules (antivirus, intrusion detection system, disk protection, firewall and NSD protection) additionally, "said Ivan Boytsov, leading product manager at Security Code.

Release of version 8.1

In the summer of 2016, Secret Net Studio 8.1 was released with advanced capabilities for analyzing and correlating security events. Secret Net Studio 8.1 has enhanced the ability to analyze and correlate events, added support for Windows 10, and added centralized password policy management.

The threat detector functionality in Secret Net Studio 8.1 provides users with the ability to analyze and filter security risks in the Control Center based on the Secret Net Studio audit data and. OS Windows For the convenience of administrators, the product version includes preinstalled rules for searching for various security threats, including password searches, suspicious activity that require attention to errors, etc. In this case, users of the product can use a specialized tool to independently create and edit a set of analysis rules, import and export them. The rules apply to events from the Secret Net Studio, operating system , and application logs. software

In addition to the above changes, the version of Secret Net Studio has support for Windows 10 and the ability to configure password policies. In DesignCenter, you can specify password requirements - length, complexity, and validity.

2015: Issue

On November 20, 2015, Security Code announced the launch of workstation protection and network security software - Secret Net Studio.

The system operates at 5 levels:

• data,
• applications,
• networks,
• operating system
• peripheral equipment.

Screenshot of the software window (2015)

Ivan Boytsov, product manager of Security Code, said:

"In the month since the start of beta testing of Secret Net Studio, we have received a number of positive reviews. During the first month, the beta version was installed in more than 1,000 users. This means that today at least a thousand organizations are interested in using a comprehensive product to protect computers from external and internal threats. Of course, product success can only be measured by sales volume. We tried to make the best possible solution, we will see the results next year, when Secret Net Studio goes on sale. "

Functionality

• Protection of information from unauthorized access
  • Protection against LSD is provided by mechanisms used in MPS from LSD Secret Net. Reliable and proven security mechanisms are used on hundreds of thousands of computers in more than 15 thousand organizations.

• Login Protection
  • Enhanced user authentication is carried out by password and using personal identifiers. Secret Net Studio supports all common identifiers: iButton, eToken, Rutoken, iKey, JaCarta, and ESMART. The product integrates with PAC Sable to ensure a trusted boot of the operating system. In addition, Secret Net Studio provides additional security mechanisms for domain users, including certificate login.

• Trusted Information Environment
  • The trusted environment is provided by protecting the computer from unauthorized boot and the ability to control the individual list of programs allowed to the user for launch, checking the invariability of executable files.

• Monitoring of leaks and distribution channels of protected information
  • Discretionary and authoritative access control based on resource privacy categories (files, directories, devices, printers, and network interfaces) and user access rights. Control of printing and alienation of confidential information, shadow copying of alienated information, guaranteed destruction of data.

• Control of devices
  • Monitoring the invariability of the hardware configuration of the computer during operation, monitoring the connection and disconnection of devices. Secret Net Studio supports a wide list of monitored external devices (webcams, mobile phones, 3G modems, network cards, flash drives, printers, etc.) and various scenarios for responding when they are connected or disconnected from the computer.

• Anti-virus protection
  • Protect against malicious executable files on workstations and servers that can scan and run scheduled jobs, as well as at the request of an administrator or user. Antivirus protection can be carried out using ESET or Agnitum technology.

• Firewall
  • Monitor the network activity of the computer and filter a large number of protocols according to the specified policies, including at the level of individual applications, users or user groups. Signature of network traffic for protection against counterfeiting and interception inside the local network. Automatically generate rules with their intelligent addition in firewall learning mode.

• Application Action Control (HIPS)
  • Detection of suspicious application activity by heuristic methods. Flexible security policy settings (group and application-specific) with exception support and application activity learning.

• Network Attack Protection (NIPS)
  • Detection of attacks by signature and heuristic methods. Automatic blocking of attacking hosts when detecting abnormal packets, port scanning, DoS attacks, etc.

• Create a secure connection to remote computers
  • The software VPN client "Continent-AP" provides the connection of computers with the access server "Continent" protected according to the cryptographic algorithm GOST 28147-89. Supports PKI infrastructure for identification and authentication using x.509 certificates.

• Container encryption
  • Encryption of containers of any size according to the algorithm GOST 28147-89 provides data protection in case of unauthorized access to media, their loss or theft. Place encrypted containers on your hard drive or removable media. Use hardware identifiers to store key information.

• Centralized deployment, management, and monitoring
  • Secret Net Studio makes it easy to deploy the product to all workstations in the controlled domain. End-to-end and group policies are configured for all security mechanisms using a single security agent.

• Minimization of information security risks
  • The centralized monitoring system includes a system for correlating security events with support for categorizing the importance level of individual protected computers and prioritizing incidents in the system by the importance of risks.

• Group Performance Monitoring
  • Security event logs are centrally collected from all security mechanisms of controlled computers. For the fastest response to critical security events, all protected computers can be divided into monitoring groups with a separate display of the current state and the ability to acknowledge events.

• Investigation of security incidents
  • An advanced event logging system and the ability to generate convenient and detailed reports allow you to collect detailed material for investigating security incidents: track attacks, malware distribution channels and insider actions at various time intervals. In addition, Secret Net Studio shadow copies files/documents printed or external media, which greatly simplifies the process of investigating information security incidents about information leaks.

• Work in the IT infrastructure of geographically distributed organizations
  • The high scalability of the solution is ensured by the creation of centralized security policies and their inheritance in distributed domain infrastructures. Support hierarchy and redundancy of security servers, as well as the separation of administrator privileges in complex infrastructures.