Vendor Used By Check Point For A/V Engine and Definitions

**dbrown3611** · 2017-09-14

With recent news stating the US Government is headed towards banning Kaspersky products, I am seeking clarification on the A/V used within Check Point products. Specifically within R77 and R80 releases.

It is my understanding that Kapersky is used in R77 version, the contents of /opt/KAV would seem to confirm, is this correct?

Perhaps of interest to some, several Check Point Appliances are on the approved list of DISA...... https://aplits.disa.mil/processAPList.action Yes, you will receive a certificate error on that site! :)

Kind regards,
dbrown

**jflemingeds** · 2017-09-14

Wow. I didn't think about that. I wonder what ramifications there will be. I'd guess checkpoint could just come up with a way to remove KAV as a patch for the times KAV isn't being used.

**jeelmore** · 2017-09-14

Palo Alto is sending this around to Check Point customers we got this link from them.

https://supportcenter.checkpoint.com...uct=Anti-Virus

Right now it looks like a fresh install on R80.10.

We're not going that far just yet.

Jason

**jflemingeds** · 2017-09-14

hmmm. ok well it looks like Checkpoint forgot about Gaia Embedded.

oops

**aweldon** · 2017-09-15

Check Point also uses the Cyren/CommTouch engine.

**aweldon** · 2017-09-15

And just to follow up... is sk118539 stating that you are only using the Kaspersky engine if you are doing "Deep Scanning" which impacts performance anywhere you turn it on? Are people running this config?

**PhoneBoy** · 2017-09-16

Originally Posted by aweldon

And just to follow up... is sk118539 stating that you are only using the Kaspersky engine if you are doing "Deep Scanning" which impacts performance anywhere you turn it on? Are people running this config?

Some people are, but it's not the default setting.