USNCVA - Now Read This

NOW READ THIS
("Security Advisory")

Go Back

Submitted by: Bill Hickey
NCVA List Master

NRT-0027 Signature-based Security Weaknesses:

Signature-based security technologies (such as those commonly used in antivirus software scanners) are "crumbling under the pressure of the number of attacks from cyber criminals," said Art Coviello, president of RSA, the security division of EMC. Coviello - speaking to the annual RSA conference in San Francisco - stated, "Today, static security products are just security table stakes. Tomorrow, they'll be a complete waste of money. Static solutions are not enough for dynamic threats." Multilayered defenses are needed - and a more information-centric security model," Coviello said. Behavior-blocking and "collective intelligence" technologies will be the best way to effectively combat viruses.

New server-side polymorphic virus threats, like the recent Storm worm, - potentially involve a staggering number of distinct, low-volume and short-lived variants and are impossible to stop with a single signature.

The same techniques are being applied to self-mutating Trojan programs that can be planted on malicious Web sites and can mutate with every download, making them very hard to detect.

(http://www.techworld.com 07FEB07)

Last Modified: Sunday, 11-Feb-2007 18:20:22 EST

NOW READ THIS ("Security Advisory")

NRT-0027 Signature-based Security Weaknesses:

NOW READ THIS
("Security Advisory")