Paper: How good are malware detectors at remediating infected systems? (July 2009)

Discussion in 'other security issues & news' started by MrBrian, Nov 8, 2011.

Thread Status:
Not open for further replies.
  1. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
    From the paper:
    Paper: hxxp://security.dsi.unimi.it/~ema/dimva09.pdf
    Slides: hxxp://security.dsi.unimi.it/~ema/dimva09-slides.pdf
    WUSSTrace documentation and source code
     
  2. funkydude

    funkydude Registered Member

    Joined:
    Apr 5, 2004
    Posts:
    6,855
    2 years is an extremely long time in the tech industry.
     
  3. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
    There is a newer paper from mid-2010 that contains similar material - Automatic Generation of Remediation Procedures for Malware Infections (hxxp://security.dsi.unimi.it/~ema/usenix10.pdf). Figure 7 shows remediation stats for three anti-malware programs.
     
    Last edited: Nov 8, 2011
  4. wat0114

    wat0114 Guest

    Essential? No, more like antiquated. As for prevention and recovery, they are less than ideal, to say the least.

    Hopefully no one's surprised by this revelation :D
     
  5. dw426

    dw426 Registered Member

    Joined:
    Jan 3, 2007
    Posts:
    5,543
    I'm not surprised. Anti-malware and even AV programs are either good at prevention or good at cleanup...and most are excellent at neither. Cleanup has always been an issue, whether it's registry keys, executables or even still running malware left behind.
     
Loading...
Thread Status:
Not open for further replies.