First of all, hello community. This is my very first post and I am excited to get to know the community.
I spend a lot of hours in the last weeks and days to completely understand all mechanics and options of KIS. For me, as a power user the customized protection through targeted configuration to the system circumstances is the highest of feelings. Security Software which have the ability of a very high customization with many options and complex rule management are really rare because the basic user usually does not want to worry about any configuration. At this point I must congratulate the product. It is obviously that the designers' goal was to combine a highly customizable and flexible security framework with ease of use and without scaring away the basic user.
I especially like the realization of the management of resources and the comfortable way to configure new resources and their protection.
There's only one thing I really miss: To define processes as resources and to restrict the access to these processes. Or in other words: The ability to protect specific critical processes like password manager or banking applications.
First possible way:
New option In the configuration menu “Manage resources” to define process related restrictions. In addition to the existing access types (read, write, create and delete) which only refer to file access, new process related access types could be added (e.g. access to the process memory, Event Hooks, Windows Messages, ...).
Another possible way:
New register “Protection” in the application rules window (manage application → “Details and rules” of a specific application). This new register/tab could allow to define process protection. For example you can define that untrusted, low and high restricted applications are not allowed to access the process memory of this application.
It would be great if this feature could be introduced in the future because it would be a great contribution to the protection against specialized spyware and injection attacks.
Or is it already implemented and I've missed it?
Thanks for consideration and any feedback!