gerardwil
August 17th, 2006, 03:19 AM
Noy sure if this is posted already here: http://www.techsupportalert.com/security_scanners.htm
{QUOTE-> An analysis of how well 16 popular security products cope with the latest generation of security threats. <-QUOTE}
{QUOTE-> Conclusions
Having looked at the results you have probably already concluded that most of the products failed most of the tests and alas, this is not far from the truth.
I'm resisting making more specific conclusions as this test is only the first of several I'll be conducting in the second half of 2006. In the coming months I'll be looking at virtualization products, IDS/IPS utilities and some other categories as well.
By the time this series is completed, I'll have some specific recommendations for you on the best way to protect your computer against the latest generation of threats. These recommendations will be based on facts rather than vendor hype or commercial affiliation.
Even now, two things are already clear to me.
First, it's almost impossible to defend your PC from a modern malware program that is allowed to run on your PC with full admin privileges. The problem here is not with the security programs. The problem is with Windows.
Second, it seems to me that virtualization techniques such as those used by VMWare, Sandboxie and several other products may offer the best option for preventing infection. Certainly the layering of defenses using multiple products is another option but I suspect the cost in terms of complexity, user confusion and processing overhead may make this a less attractive option that protecting the host PC through virtualization. <-QUOTE}
{QUOTE-> An analysis of how well 16 popular security products cope with the latest generation of security threats. <-QUOTE}
{QUOTE-> Conclusions
Having looked at the results you have probably already concluded that most of the products failed most of the tests and alas, this is not far from the truth.
I'm resisting making more specific conclusions as this test is only the first of several I'll be conducting in the second half of 2006. In the coming months I'll be looking at virtualization products, IDS/IPS utilities and some other categories as well.
By the time this series is completed, I'll have some specific recommendations for you on the best way to protect your computer against the latest generation of threats. These recommendations will be based on facts rather than vendor hype or commercial affiliation.
Even now, two things are already clear to me.
First, it's almost impossible to defend your PC from a modern malware program that is allowed to run on your PC with full admin privileges. The problem here is not with the security programs. The problem is with Windows.
Second, it seems to me that virtualization techniques such as those used by VMWare, Sandboxie and several other products may offer the best option for preventing infection. Certainly the layering of defenses using multiple products is another option but I suspect the cost in terms of complexity, user confusion and processing overhead may make this a less attractive option that protecting the host PC through virtualization. <-QUOTE}