David Matousek shares his views on Internet security::

Matousek Interview (http://www.securityteacher.com/2008/02/26/david-matousek-matousec-transparent-security-shares-his-views-of-internet-security/)

{QUOTE-> Personal firewalls should control software installed on the computer to prevent malware to integrate into the operating system <-QUOTE}

This is not my definition of a firewall. ;)

{QUOTE-> Personally, I base my PC security on encryption, virtualization and use of alternative software products. There are many high-quality and often free products that can be used for this purpose. I also use various utilities for system monitoring including custom-made tools and, finally, I use a packet-filtering firewall. However, I would not recommend this configuration to anyone who is not familiar with the system internals. <-QUOTE}

Then I guess that would exclude a large number of novice PC users as well. ;) ::)

Hello,
Not my definition of a firewall, either.
But one must justify his/her living.
Mrk

To be fair, i think it's important to note the following:
{QUOTE-> A.: It should be noted that the products we mostly focus on are not common firewalls. We work with products that implement process-based security, we call them personal firewalls.

There are many software firewalls that do not do that and just filter packets. These firewalls are not worse than personal firewalls, they are just different kind of software - for different kind of users. We require personal firewalls to include host protection features too.

Now, if it is clear what kind of products we are talking about, we can discuss what we expect from them. <-QUOTE}

Well, it does sound quite exciting, all firewalls and perhaps even HIPS should benefit from his research. :thumb: