ESET PRIVATE Scanning Solution

ESET PRIVATE Scanning Solution – Table of Contents

ESET PRIVATE Scanning Solution architecture

Copy current article URL Share via email

This article (PDF) Whole documentation (PDF)

The high-level reference architecture of the ESET PRIVATE Scanning Solution (including the optional component) is illustrated in the figure below.

ESET private scanning solution architecture

Component	Description	Note
Customer’s environment	Infrastructure where the Customer’s source system is hosted.
Source system	Customer’s systems that submit files for scanning.
Scanner Agent	A lightweight tool that manages and submits scan requests, capable of handling multiple requests in parallel. This enhances performance and enables deployment across various platforms, including IoT and embedded environments. Its API-based architecture allows customization of scan parameters—such as depth or data type—per platform, offering flexibility to meet different operational needs.	Implemented in open-source Python (with planned support for C++, Go, and C#), the Agent simplifies integration and serves as a customizable base for developers.
ESET PRIVATE STATIC Scanning Engine	Set of components to perform high-throughput static scanning: •Cloud Scanner •Scanner Agent •Load Balancer ESET PRIVATE Static Scanning Engine can be deployed in simple Agent-Scanner configuration, or in more complex configuration with Load Balancer and multiple scanners.
gRPC API	Interface for submitting files for scanning. Integrates into customer workflows to return scan results as part of the response.	Accessible via the ESET Agent (reference implementation) or a custom-developed agent.
Load Balancer	The Load Balancer improves overall performance by intelligently routing scan requests across available scanners based on their current load. Acting as a bridge between the Agent and scanners, it uses object proxies to manage data flow efficiently. This dynamic distribution ensures balanced workloads and optimal use of system resources.	Supports OAuth2 and token-based authentication for secure, client-specific configuration.
Cloud Scanner	Executes core scanning tasks, including content extraction, data inspection, malware signature matching, advanced heuristics and machine learning techniques.
ESET PRIVATE Dynamic Scanning Engine	Set of components to perform dynamic scanning (= deep scan): •Performs additional advanced AI-based file scanning •Performs file reputation checks •Detonates the file and executes behavioral analysis in a secure, cloud-based sandbox environment (multiple platforms available) •Provides detailed DNA analysis and generates comprehensive behavioral report. ESET PRIVATE STATIC Scanning engine is connected to ESET PRIVATE Dynamic Scanning Engine via internal in-product connector which is enabled in case the ESET PRIVATE Dynamic Scanning Engine is in scope.	Available separately as an additional component connected to the ESET PRIVATE Static Scanning Engine.

˄˅