RSS Alerts

Share

More services

Related Links

  • Sunbelt Blog
  • Elsevier Ltd is not responsible for the content of external websites.

Related Stories

  • Searching for Security
    With more than 30 000 web pages being compromised every day, search engine results could increasingly lead to malware infection. Kari Larsen asks what the search engines are doing to mitigate security threats, and how users can protect themselves
  • Search for security
    With more than 30 000 web pages being infected every day, search engine results could increasingly lead to malware infection. Kari Larsen asks what the search engines are doing to mitigate security threats, and how users can protect themselves.
  • Catch me if you can
    These days, malware writers are in it for the money. In order to maximise profit, discretion is imperative so stealth technology has been adopted as a rule, rather than an exception. Danny Bradbury looks to the cat and mouse game that researchers and attackers are playing to see who’s coming out on top
  • Nine Lives - Self-modifying Malware
    As the Conficker worm proved when it first appeared in October 2008, there’s more to a piece of malware code than meets the eye, especially when it is self-updating. But can self-updating also mean self-modifying? Steve Gold investigates whether an IT security manager’s nightmare has become a programming reality
  • Zero Day of the Dead
    The data load that has accompanied the globalization of trade would make even Atlas stagger. And that’s without the added burden of counter-terrorisAs you read this, zombie programs are flitting across the internet like a pestilence to infect and drain the life from innocent computer systems. Yet, for all the aggravation and grief they cause, you may never know you are part of a global invasion of the system snatchers, says William Knight. Unless…

Top 5 Stories

News

Sunbelt working on next-gen anti-virus technology

09 February 2009

Sunbelt Software claims to have developed a new anti-virus technology called `file emulation' in its battle against malware.

The technology, which forms the heart of the company's soon-to-ship updated Vipre anti-malware software, has been coded from scratch, rather than bought in from a third party.

According to Alex Eckelberry, Sunbelt's CEO, the updated version of Vipre uses a heuristic technique for identifying malware by executing risky programs in a virtual machine environment.

Known in the IT security trade as MX-Virtualisation (MX-V), this technique uses a memory sandbox approach to the execution of potentially suspect programs, even to the extent of emulating code API calls such as the Windows Registry and Communications Interfaces with the rest of the computer environment,

Running virtual machines as a means of testing potentially risky code is nothing new, infosecurity notes, but Sunbelt claims to have beaten the performance issues that have dogged previous applications software using MX-V technology,

In a blog posting, Eckelberry says that the dynamic translation used by Vipre recompiles the program code to be tested in order to speed up the rate of testing.

As well as adding MX-V technology to the mix, Vipre Enterprise is also billed as featuring integral anti-rootkit protection using an application module that loads before the main Windows kernel.

This article is featured in:
Malware and Hardware Security

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Terms & Conditions |Privacy |Website Design|Reed Exhibitions. All rights reserved. Copyright © 2012