Business Articles, Internet Resources and Tutorials - Senyum

Titles Titles & descriptions

Romance Matters
You are never too old and it is never too late to spark and/or rekindle those feelings of romance in your life...

How to Remove DRM from WMA - Is It Legal and Worth the Effort?
Technically, it's illegal to remove DRM from WMA protected music. Digital Rights Management (DRM) is part of t...

The Truth About Network Marketing: Debunking the Myths
Just as various sorts of business opportunities continue to sprout like mushrooms on a rainy day, so do miscon...

Articles Tutorial
Articles on advertising, sales management, business, stock market, hobbies, health, lifestyle, family relationships, online business, money, stock trading and m...


Link Exchange

Exchange links with our website.


Sponsored Links

    

Desktop Security Software Risks - Part 1

Navigation: Main page » Security

 Print this page 

Author: Tim Klemmer

Article source: http://morganarticlearchive.com/. Used with author's permission.

This is the second in a series of articles highlighting reasons why we need a new model for anti-virus and security solutions.

Reason #2: the Desktop Security Software Risks

The risks of placing software on the desktop are such that I will be breaking this article into two parts.

Fundamentally we think of having software on our desktops as a good thing. I love downloading or installing new packages and seeing what new creative things people do to the user interface or what they do to make certain aspects of my life easier or more fun.

But there are problems inherent with software that resides on the desktop, especially security software. All developers will know what I mean. First and foremost, desktop software can be reverse engineered. What's that mean? Have you ever inadvertently double-clicked on a file and had garbage show up or seen something that looks similar to this?

http://www.checkinmyemail.com/Articles/image001.jpg

The old hex dump. Programmers will know it well. We actually spend a good deal of time trying to read this stuff. Basically, if there are programs that can (and do) turn instructions like the following



If UserBirthDate < "01/01/1960" then


IsReallyOld = "Yes


Else


IsReallyOld = "No"


End If

into something like the picture above, then the reverse is true: people have developed software that can take that gobbeldy-gook in the picture above and turn it somewhat into the if-statement I wrote out. The reversing software won't know that I had an item called UserBirthDate, but it will know I was testing for a value of January 1, 1960 and it will be able to say that based on that value I set another item to Yes or No.

So now we install our fool-proof anti-virus software on our desktop (or our firewall for that matter). Well, so too can a virus author. And that virus author or hacker will also have gotten a copy of the latest reverse-engineering software from his local hacking site. He now goes upon his task of reverse-engineering the software and then trying to decipher the results. It's not easy but it can be done. Unfortunately, vendors know this and understand this as an acceptable risk.

The problem here is that your security software is at risk. If your vendor codes an error, the virus author can and will detect it. For example, if your vendor should exclude a file from scanning, it's possible the virus author will figure out which file (or type of file) that is and bury his code there. If the vendor excludes files from scanning or heuristics, it's possible that virus author will figure out a way to corrupt that file.

That being said, there are other risks. As we have said, once software is on the desktop it affords virus authors an opportunity to reverse-engineer security software. The knowledge that reverse-engineering provides is invaluable to a virus author when building his next software attack. Third, virus authors can learn where the anti-virus vendors put there software and put the links to their software (directory folders, registry entries, etc.). This too is invaluable information. In fact, in some ways it teaches people intent on writing malicious software clues as to how to infiltrate the computers' operating system, where registry entries need to be made to force software to be loaded every time a computer is started, etc.

This information is generally available all over the web and in manuals for operating systems, especially manuals on such subjects as the Windows Registry. But having the software teach you where things belong to be effective is powerful knowledge.

Lastly, and perhaps most significantly, is the issue of forebearance. The anti-virus vendors usually know more about the potential exploits inherent in programs than virus authors but they are bound by the fact that should they try to prevent them before the exploits occur, they could be branded as irresponsible for teaching virus authors about these very exploits.

For example, when Microsoft first released the macro capabilities of Word, anti-virus vendors immediately realized the potential for danger in macros, but they were handcuffed. If they released software that disabled macros before the first macro virus was ever released, they would signal to virus authors the inherent destructive powers of macros. They chose instead to wait, handcuffed by the limitations of desktop software.

Until the Internet there really has been no better medium for delivering virus solutions than desktop software. It was relatively inexpensive to deploy (either market the software and sell it in stores or provide free downloads on bulletin boards and web sites). It is, however, expensive to keep updated in terms of time and effort, even with automated update systems.

The Internet caused several things to happen: by becoming a powerful medium for sharing files, whole families of viruses disappeared practically overnight (boot sector viruses, for example); by becoming the option of choice for sharing files, it was easier to infect a single file and have thousands download it.

A better solution is to place the security software in an offsite appliance of its own making. All Internet, intranet, networking connections flow through the appliance.

Selling off the shelf hardware appliances with built-in security software is better than a desktop software solution but it still suffers -to a lesser extent- from the pratfalls that desktop software falls prey to.

Even better is to create a service that a 3rd party vendor manages in a secure environment. In such an instance both the software and the hardware are away from the prying eyes of the malicious software authors. This further reduces the opportunity for malicious authors to discover the tricks and techniques employed by the security vendors to protect you.

About The Author

Tim Klemmer
CEO, OnceRed LLC
http://www.checkinmyemail.com

Tim Klemmer has spent the better part of 12 years designing and perfecting the first true patented behavior-based solution to malicious software.

timklemmer@checkinmyemail.com



The Process Is More Important Than the Objective
The real truth is the web can be effective depending on how the Internet strategy is designed. There is one big error that most business make from the very begi...

5 Affiliate Marketing Facts of Life
For those just entering the arena, here are a few Facts Of Life about Affiliate Marketing...

The Magic Supplement for Fighting Free Radicals
Do you know what free radicals are? You should because they harm your health.

Internet Scams: Dont be a Victim
This article deals with 3 of the most common types of Internet scams. Advanced fee fraud, phishing, and vehicle sales fraud. It give avice on what to expect and...

Give a Hug for Happiness
Hugs have a long and honorable tradition, going back to the day the caveman first squeezed his wife and discovered that no ketchup squeezed out. Since then, he...

10 Major Signs of Job Dissatisfaction
The New Year is a great time to analyze your job and the satisfaction you get from doing it. Running the rat race is just that, scurrying around only to find t...

Trial by Fire - 9 Tips for Grieving Couples
You will often hear that grief and loss bring couples together, but it can actually tear them apart. It is possible to emerge on the other side of grief with a ...

Network Marketing Problem – Are Your Downlines Leaving You?
Well my friend, it happens all the time, you know. You recruit so many people to join your business, but almost 75% of them quit! So, what could be the problem?

Think You Cant Get a Mortgage?
You've finally found that dream home that you have always been searching for, but you are afraid to apply for a mortgage because you have bad credit or less tha...

Eyelid Plastic Surgery
Blepharoplasty, commonly known as eyelid surgery, is a cosmetic procedure that removes excess fat, skin and muscle from the area around the eyes. As people age,...

The Three Keys To Starting Your Own Successful Business
There are 3 key ingredients to starting a successful business. If you can achieve these three things your business has a great chance of succeeding. Lacking in...

Writers Turn to the Internet for Support, Friendship and Advice
Riding on the fumes of potential, you take pen to paper or keyboard to monitor. Endless hours of creativity intermingle with apprehension, but your need to writ...

Parenting Dilemmas: Finding Support Online
: If you are having difficulties solving a parenting issue it is quite likely that you won't find the answer within your own home. Move your problem online and ...

Catalogs are Selling Machines
If you've got a mailbox, you're no doubt aware of the popularity of catalogs. People love to look through catalogs, and more important, they love to buy from ca...

Communicating Effectively In The Workplace: Four Vital Steps
It's a fact! The way company personnel communicate with each other can make all the difference between efficiency and ineptitude, success and failure, making mo...

Online Dating With Friends: 5 Ways Your Friends Can Help You Find Love Online
Finding someone to date is easier with a little help from your friends so if you have joined a dating site (or are thinking of joining a dating site) then talk ...

Seven Empowering Success Beliefs
Tony Robbins - the famous master of self-improvement- calls them the seven lies of success. Seven beliefs you can use to drive you through procrastination, doub...

Stand Out in Business the Write Way
Build your business and stand out in a crowd by sending handwritten notes whenever possible to existing and potential clients.

To Meet or Not to Meet - What are the Questions?
Meetings can be a total waste of time or a powerful and productive communication tool that solve problems, stimulate ideas, promote team spirit and generate act...

7 Things You Need To Know Before Buying A Chihuahua Puppy
Before you even consider buying a chihuahua puppy, make sure you read this article. There are 7 things you must absolutely know about the chihuahua puppy that ...

Are Fat Burner Products Safe?
A fat burner supplement operates by breaking down body fat through a principle of thermo genesis. The ability to stimulate the thyroid into action and raise bod...

The 7 Most Dangerous Mistakes You Can Make When You See a Doctor for Arthritis!
How do you know when you've found the right doctor for your arthritis problem? It's difficult... but this article has seven tips on how to increase your odds o...

Victorious Living
We have a choice in life. We can feel sorry for ourselves because we are not rich and loaded with talent,or we can step up to the plate and take our best shot. ...

Using Bulbs in Your Landscaping
Naturalized bulbs look beautiful in a wooded setting. You can plant them and leave them to multiply. After the bulbs bloom the foliage will die down, but you ca...

 
Newsletter


Article Categories

Home
Web & Online Business
Affiliate Revenue
Auctions
Blogging RSS
E-Books
E-Commerce
Email Marketing
Ezine Publishing
Internet Marketing
PPC Advertising
SEO
Security
Site Promotion
Spam Blocker
Traffic Building
Web Design
Web Development
Money & Finance
Credit
Currency Trading
Debt Consolidation
Debt Relief
Insurance
Investing
Loans
Mortgage Refinance
Personal Finance
Real Estate
Stocks Mutual Funds
Taxes
Wealth Building
Business
Advertising
Branding
Business Tips
Careers Employment
Copywriting
Customer Service
Entrepreneurialism
Management
Marketing
Networking
Network Marketing
Presentation
Public Relations
Resumes & Cover Letters
Sales
Sales Management
Sales Training
Small Business
Strategic Planning
Team Building
Health & Medicine
Acne
Alternative Medicine
Beauty
Depression
Diabetes
Exercise
Fitness Equipment
Hair Loss
Medicine
Meditation
Men's Issues
Muscle Building
Nutrition
Nutrition Supplements
Weight Loss
Women's Issues
Yoga
Family & Relationships
Babies Toddler
Dating
Holidays
Home Improvement
Interior Decorating
Landscaping & Gardening
Marriage & Wedding
Parenting
Pregnancy
Relationships
Sexuality
Hobbies & Lifestyle
Casinos & Gambling
Cooking Tips
Crafts & Hobbies
Fashion & Style
Golf
Humanities
Mobile Cell Phone
Music
Outdoors
Pets
Photography
Poetry
Politics
Recipes
Science
Vacation Rentals
Writing
Writing Articles
Self-Improvement
Attraction
Coaching
Creativity
Goal Setting
Grief & Loss
Happiness
Innovation
Inspirational
Leadership
Motivation
Organizing
Positive Attitude
Religion
Spirituality
Stress Management
Success
Time Management


www.senyum.net - This website contains articles on wide range of topics. Articles on advertising, sales management, business, stock market, hobbies, health, lifestyle,
family relationships, online business, money, stock trading and many more are available.
www.senyum.net covers USA, UK, Canada, Australia, China and Germany : - complete articles online business - articles tutorial.
Copyright © 2006 SmileMedia Co. All rights reserved.