 |
|
 |
 |
|
|
Signature-based anti-virus (AV) software is running a losing race. Malicious code writers persistently out-pace the efforts of AV researchers to identify and halt the latest threats. This isnt due to a lack of effort: vendors have cut response time from days to hours. This is an admirable feat, considering they must ensure that the update detects and removes the virus, and that it doesnt interfere with the normal operations of their customers myriad computer systems.
The problem is the race itself. Malicious code writers have a head start-they launch malware against live targets before AV researchers can analyze and counteract that code. Even if traditional AV vendors can release updates fast enough to protect nine-tenths of their customers, that still leaves one-tenth to deal with the damage. What network manager wants to be a sacrificial lamb, thrown to the wolves to save the rest of the flock?
Behavior blockers watch ActiveX, Java applets, various scripting languages, and other mobile code that arrives on a host via e-mail, the Internet, or other network connections. Some blockers isolate this code in a "sandbox," restricting the codes access to various OS resources and applications. Other blockers insert themselves into the kernel of a hosts OS to intercept system calls.
olcso paraelszivo
Free website templates
|
|
|