Zurich, Madrid, Kuala Lumpur, Sao Paulo - and now also Singapore, Tokyo and Woburn (USA): As part of the Global Transparency Initiative Kaspersky has opened three more transparency centers.
The Transparency Centers offer prospects worldwide the opportunity to learn more about Kaspersky's development and data processing practices and to review the company's source code and other areas of its business. No other cybersecurity provider currently offers similarly far-reaching capabilities.
With the opening of the three new transparency centers Kaspersky takes another step towards more transparency regarding protection technologies, infrastructure and data processing practices. These are aimed at the company's partners and customers, including government agencies and regulators responsible for cybersecurity. The two additional facilities in Asia - in Tokyo and Singapore - ensure the company's closer proximity to stakeholders in that region, while the center in Woburn, Massachusetts in the US will serve as a new location for the company's North American Transparency Center, which has been was based in New Brunswick, Canada.
Individual visit depending on the technical skills of the interested parties
In order to meet the needs and requirements of prospects, Kaspersky designs the visits to the transparency centers individually - from a general one Overview of security and transparency practices to a comprehensive review of the source code under the guidance of the cybersecurity professional's experts.
The cybersecurity provider makes its source code available for consultation purposes only and follows the strictest access policies. In the event of security concerns, requests for a source code review can therefore also be rejected. To ensure the integrity of the source code, Kaspersky grants read-only access to its verification; Changes are not possible.
At the Transparency Centers, visitors can:
- View the company's documentation for developing secure software and the source code of the main consumer and enterprise products, as well as all versions of the software updates and threat detection rules.
- compile the source code to check that it matches the publicly available modules. The compilation process available in the Transparency Centers ensures the integrity of Kaspersky's source code.
- Review the Software Bill of Materials (SBOM) for Kaspersky products, which increases supply chain security.
- the results of third-party security reviews (such as the SOC 2 audit report or ISO 27001 assessment report) - both remotely and on site.
Kaspersky has been focusing on transparency and trust since 2017
Kaspersky has been implementing its Global Transparency Initiative since 2017. Recent GTI developments include the relocation of cyber threat-related data processing and storage for Kaspersky users in Latin America and the Middle East to Switzerland, the recertification of Kaspersky's data services by the independent certification body TÜV AUSTRIA, and the launch of the digital version of the Cyber Capacity Building Program, which helps organizations worldwide develop practical tools and knowledge for security assessments.
Since opening the first Transparency Center in Switzerland in 2018, the company has organized over 25 visits, with corporate clients being the most frequent guests. Information about Kaspersky's data management practices was the most frequently requested by visitors. Source code reviews to properly carry out the security assessment of products have only taken place occasionally, which could be explained by the existing need for cybersecurity capabilities in all organizations.
More at Kaspersky.com
About Kaspersky Kaspersky is an international cybersecurity company founded in 1997. Kaspersky's in-depth threat intelligence and security expertise serve as the basis for innovative security solutions and services to protect companies, critical infrastructures, governments and private users worldwide. The company's comprehensive security portfolio includes leading endpoint protection as well as a range of specialized security solutions and services to defend against complex and evolving cyber threats. Kaspersky technologies protect over 400 million users and 250.000 corporate customers. More information about Kaspersky can be found at www.kaspersky.com/