Building a Better Virus Trap

Loraine Lawson

What if you could get better virus protection that lead to fewer updates and patches? How much would that be worth to your company?

 

Researchers at the University of Michigan have developed a prototype system that would do just that, according to NewScientist.com.

 

The theory behind the prototype is simple: Watch a virus and see what it does to your computer or system. Put that information in a database to create a fingerprint for the virus.

 

Conventional antivirus software works by searching for odd behaviors on a computer and checking for known virus signatures -- or chunks of code.

 

The prototype tested well against traditional products. NewScientist.com reports it found at least 10 percent more of the sample viruses than other AV software and it correctly linked variants of the viruses. By comparison, traditional antivirus software spotted only 68 percent of the variants.


 

One researcher quoted in the article wondered about the prototype's rate of false positives. Good question. Personally, I'd like to know how many "activities" the virus can get away with before the software catches it?



Add Comment      Leave a comment on this blog post

Post a comment

 

 

 

 


(Maximum characters: 1200). You have 1200 characters left.

 

 

Subscribe to our Newsletters

Sign up now and get the best business technology insights direct to your inbox.


 
Resource centers

Business Intelligence

Business performance information for strategic and operational decision-making

SOA

SOA uses interoperable services grouped around business processes to ease data integration

Data Warehousing

Data warehousing helps companies make sense of their operational data


Close
Thanks for your registration, follow us on our social networks to keep up-to-date