Authors
Medvedev V.
|
Degree
|
Doctor Web, Ltd. |
|---|---|
|
E-mail
|
v.medvedev@drweb.com |
|
Location
|
Moscow |
|
Articles
|
Possibility of working out requirements for the protection system against malwareAlthough, both malware and security software already exists for several decades, there are still
no correct definitions for «malware» and «anti-virus».
Sometimes existing standards and regulators’ documents show completely opposite approach
to terminology in this field. A fundamental difference between «anti-virus» and «anti-virus protection
system» has not been defined — as a result, the anti-virus is assigned functions which this subsystem
cannot perform even theoretically.
Lack of proper terminology makes it impossible to work out the requirements to the anti-virus protection
system in whole as well as its components — current standards contain points, which at least
do not raise the level of security, but increase expanses of companies and organizations.
As a result, statistics shows that about 19 of 20 companies do not know anything either about the
role of the anti-virus in security system or the requirements that must be met by products which are
supposed to use — when drawing up requirements for the anti-virus subsystem, IT specialists rely
on set myths (e.g., claiming that all malware is created by anti-virus authors).
This paper attempts to develop requirements for the anti-virus protection system and directly to
the anti-virus as a part of the anti-virus protection system. The proposed requirements will allow companies
and home users to implement a reliable protection against the latest threats.
Read more...
|
