Kaspersky
Solved

When I connect to any site (HTTPS) I see "kaspersky antivirus personal root certificate". Why? [Closed]


When I connect to any site (HTTPS) I see "kaspersky antivirus personal root certificate".
Why do I need this certificate? Without a kaspersky antivirus certificate will be dufferent.

Theoretically, such a root certificate gives the owner the ability of MITM attack.
icon

Best answer by Horst 9 August 2019, 12:42

Without such a root certificate Kaspersky would not be able to check Https transfers for viruses.

So if you don't want that you can switch off the feature to scan encrypted traffic

but you do that on your own risk.

And of course Kaspersky does an MITM attack on your local machine.

Without such function no Anti-virus tools can provide Https checking.
View original

This topic has been closed for comments

12 replies

Userlevel 7
Badge +9
Hello @Eugene_ ,
Welcome!
Please tell us:
  1. Operating system name? version? build?
  2. KAV:
  3. Free? or licensed?
  4. Version?
  5. Patch(x) x = letter
  6. A screen image/s of the alerts?
  7. & go to KAV REPORTS, find the events that match "kaspersky antivirus personal root certificate", export the report and upload usoing the "upload icon" in your reply?
Thanks
You do not need this information to resolve this issue.
I am sure that installing a root certificate signed by Kaspersky is the standard procedure.
The question is - why?
Userlevel 7
Badge +9
Hello @Eugene_.
  • IF you are using Kaspersky software "as designed", installing root certificates is not SOP.
IF you have licensed Kaspersky software please contact Technical Support.
https://support.kaspersky.com/b2c
I just installed the free version and trial version. Just now.
  • Kaspersky free
  • KIS
All installation options were by default. I refused all additional options such as browsers and participation in the Kaspersky network.
I do all installation on Win7 and Win 10. Every version. Install - test - delete.
And i see kaspersky antivirus personal root certificate.

What do you say about SOP?
I do it - i see it.
Again - Why do I need this certificate? And again - what about possible MITM?
Userlevel 7
Badge +9
@Eugene_
Please provide:
KAV:
  • Version?
  • Patch(x) x = letter
KIS
  • Version?
  • Patch(x) x = letter
  • Please show us an image of what you see when you see kaspersky antivirus personal root certificate?
https://www.kaspersky.ru/free-antivirus
https://www.kaspersky.ru/internet-security

Userlevel 7
Badge +9

Version & patch info can be found by selecting the Kaspersky shield in the taskbar, right click, select "about"
OR
on the main Kaspersky application screen, select 🎧 to get to application information for BOTH operating system & Kaspersky software.


In Kaspersky software, wherever you see a ❓, click the question mark with open a browser with "help" dcoumentation, specific to the component of the software.
kis20.0.14.1085(a)
kfa20.0.14.1085(a)
Userlevel 7
Badge +9
@Eugene_
Re: "When I connect to any site (HTTPS) I see "kaspersky antivirus personal root certificate" this is SOP - NORMAL.
On the other hand, manually importing Kaspersky certficates, is only necessary under certain circumstances.
Re: "theoretically, such a root certificate gives the owner the ability of MITM attack", are you suggesting Kaspersky would launch a MITM attack?
🤔
Userlevel 1
Without such a root certificate Kaspersky would not be able to check Https transfers for viruses.
So if you don't want that you can switch off the feature to scan encrypted traffic
but you do that on your own risk.
And of course Kaspersky does an MITM attack on your local machine.
Without such function no Anti-virus tools can provide Https checking.
"are you suggesting Kaspersky would launch a MITM attack" - is unknown.
"would not be able to check Https transfers for viruses" - nice.
"you can switch off the feature to scan encrypted traffic" - thanks, I'd rather delete Kaspersky.
Thanks for answers. All clear.
Userlevel 7
Badge +9
@Eugene_
Please mark you post as answered.