|
|
|
|
|||||
|
|
|
|
|
|
|||
| Welcome
to Tech Support Forum home to more then 136,000 problems solved. Issues
have included: Spyware, Malware, Virus Issues, Windows, Microsoft,
Linux, Networking, Security, Hardware, and Gaming Getting your
problem solved is as easy as: 1. Registering for a free account 2. Asking your question 3. Receiving an answer Registered members: * See fewer ads. * And much more..
|
| Want to know how to post a question? click here | Having problems with spyware and pop-ups? First Steps |
|
|||||||
| Computer Security News The Latest Computer Security News |
 |
|
|
LinkBack | Thread Tools |
04-11-2007, 12:46 PM
|
#1 (permalink) | |
|
Registered User
Join Date: Oct 2004
Location: Omaha, The Center of the Universe
Posts: 7,632
OS: WinXP, Win2K3
|
Has the end arrived for desktop antivirus?
Analysts say traditional desktop antivirus, signature-based protection won't protect corporate jewels ---- whitelisting, behavior-blocking technology is the answer.
http://www.networkworld.com/news/200...ead.html?t51hb Quote:
|
|
|
     
|
| Important Information |
|
Join the #1 Tech Support Forum Today - It's Totally Free!
TechSupportForum.com is a leading support website for your computer needs. We offer free, friendly and personalized computer support. Why pay to have your computer fixed when you can do it for free. Join TechSupportforum.com Today - Click Here |
|
04-11-2007, 09:20 PM
|
#2 (permalink) |
|
Moderator Networking Team
Join Date: Aug 2006
Location: Canada
Posts: 2,664
OS: Windows Vista Business SP1, Windows XP Professional SP3
|
Re: Has the end arrived for desktop antivirus?
This has admittedly been an ongoing debate for many many years.
Signature-based and behaviour-based detection truly work well, if you think about it, in complementing each other. Signature-based detection has the benefit of detecting known malware with a high degree of accuracy (low false-positives), but not unknown malware (signature-based heuristics are iffy at best). Behaviour-based detection fills the gap nicely as it uses rules of bad behaviour (and sandboxing) to detect possible new malware, but unfortunately can not say in many cases with a high degree of accuracy. As such it is to your benefit to run both and not just one. Signature detection on its own has never truly been the holy grail in the corporate environment. Behaviour-based detection, complemented with access control, integrity and/or version control, HIPS, whitelists/blacklists, and disaster recovery have helped significantly in security. Addendum: This "could" possibly change in the future, however at the moment behaviour-based detection's track record needs to be developed more until it can be used as a full-blown viable replacement. They're not yet smart enough. Vendors have been careful in developing behaviour-based detection because they want to ensure as few false-positives as possible. Due to the extreme diversity of systems utilized around the globe, it is very difficult to develop. Last edited by Cellus; 04-11-2007 at 09:30 PM. |
|
|
|
|
04-14-2007, 11:55 AM
|
#3 (permalink) |
|
Roaming To Help
Join Date: Nov 2006
Posts: 5,642
OS: Many
|
Re: Has the end arrived for desktop antivirus?
I've seen this mentioned time and time again. Although many successful security companies are shifting over to behavior based, it doesn't provide the blown out cover both systems once utilized will. So the best approach is a combination rather than a one over the other, just like in PSU's you have single and multi +12V rail heated debate.
|
|
|
|
|
| Thread Tools | |
|
|
