Symantec plans new AV strategy

Status
Not open for further replies.

anandk

Distinguished Member
Symantec is poised to turn the tables on malware writers and online criminals by making a big shift from blacklisting the bad stuff to enabling computers to only run trusted applications.

Calling whitelisting the "holy grail of antivirus", Chief Architect of Symantec Research Labs Carey Nachenberg said that the company was now working to create the world's largest, most accurate and most up-to-date whitelisting service by leveraging the reputations of applications derived from its user-base of millions, according to Symantec researchers.

Traditional signatures are becoming increasingly ineffective, and most have a useful lifetime of only about two weeks...Even classic heuristics were largely ineffective since all an attacker needed to do was to tweak their new threat until the heuristics could no longer detect it.

If successful, Symantec may be able to spearhead a shift in countering malware from blacklisting to a whitelisting model for desktops and servers...

*www.bangkokpost.net/Database/27Jun2007_data22.php
 
Last edited:

gxsaurav

You gave been GXified
Whitelisting is good for servers but not for consumers grade OS like Windows or Mac. There are many small/homegrown apps, then we won't be able to install them at all.
 
Status
Not open for further replies.
Top Bottom