You are here: silicon.com > Resources > White Papers > Security > Security Administration > Security Tools

Security Tools White Papers

Stealthy Malware Detection Through VMM-Based "Out-of-the-Box" Semantic View Reconstruction

Tags:
security tools

Overview An alarming trend in malware attacks is that they are armed with stealthy techniques to detect, evade, and subvert malware detection facilities of the victim. On the defensive side, a fundamental limitation of traditional host-based anti-malware systems is that they run inside the very hosts they are protecting ("In the box"), making them vulnerable to counter-detection and subversion by malware. To address this limitation, recent solutions based on Virtual Machine (VM) technologies advocate placing the malware detection facilities outside of the protected VM ("Out of the box"). However, they gain tamper resistance at the cost of losing the native, semantic view of the host which is enjoyed by the "In the box" approach, thus leading to a technical challenge known as the semantic gap.

Further White Paper Details
Publisher	Association for Computing Machinery	File Format	PDF
Date Published	November 2007
Format	White Papers
Topics	Security Tools

Did you find this white paper useful? 3 out of 6 users found this white paper useful

Take a holistic approach to business-driven security

Publisher:
IBM

Balancing Security Against Productivity

Publisher:
Novell

Security: New strides in preventing intrusions.

Publisher:
IBM

Novell Zenworks Endpoint Security Management: Total Control from a Single Console

Publisher:
Novell

Secure Desktop On-Demand Webcast

Publisher:
Novell

Anti-virus vendors failing users, claims CA chief

To prevent this type of malware from attacking, companies should have both intrusion detection and firewalls as part of their security strategy, not just anti-virus software. Even if they didn't install it, Sophos anti-virus users were protected...

Channel:
Security Strategy

Virus warning: Beware the Lovgate worm

When activated, the virus may try to reply to any emails it finds in the recipient's in-box, attaching itself to the email. Called Lovgate, the worm has three variants (A,B and C), and is slightly more difficult to spot than the earlier 'Catherine...

Channel:
Security Strategy

Virus warning: Sober at Christmas

Major anti-virus vendors have upgraded the mass-mailing malware which will forward itself to email addresses stored on a victim's machine and the approach of Christmas may work in favour of the virus, increasing its impact.

Channel:
Security Strategy

Bin Laden 'suicide' virus recruits zombie army

Antivirus and anti-spam companies have updated their software to detect the Trojan, according to Starnes, so users need to make sure they have the most recent version of their software. But, once the file is opened, it installs a Trojan horse that...

Channel:
Malware

Malware: From bedroom to boardroom

Once the preserve of bedroom-bound teenagers, malware is now big business and aimed at financial gain rather than peer group recognition. Botnets represent the volume business in the world of criminal malware.

Web 2.0 threat looms

With only a quarter of companies using newer malware fighting techniques, such as behavioural analysis, many of these infections are likely to be the direct result of zero-day attacks invisible to traditional malware protection.

Live Webcast: Telecoms 2.0 - Where is telecoms heading?

In this webcast, our panel of experts will review where we are with next generation telecoms in the UK, working through the concept of 'Telecoms 2.0': - Realising the potential of Next Generation Networks - why it isn't just about the technology? - What attributes should firms be looking for in their telco partner? - Is the relationship between telco provider and customer changing? - What things need to happen to make next generation services a reality? - You say you want the supplier to change. Do you want to change too? - What is Telecoms 2.0?

Publisher:
ZDNet UK

Telecom 2.0: Mind over matter

ntl:Telewest Business believes that the role of the telco is evolving. Gone are the days when it was enough to simply focus on circuits and minutes, customers now need a far higher degree of interaction and look for suppliers who will talk business solutions with them.

Publisher:
ntl:Telewest Business

IBM Information Server Change Data Capture

In today's fast-paced world, access to real-time data has never been more important. To be successful, organizations need to be able to report and analyze corporate data quickly and easily, regardless of what applications created the data, what platform they're running on, or what database they're stored in.

Publisher:
IBM

An examination of server consolidation: the trends that can drive efficiencies and help businesses gain a competitive edge

This white paper provides a starting point for organizations contemplating server consolidation. It includes an overview of server consolidation concepts and techniques and provides guidance on methodologies. It also looks at the potential cost savings associated with server consolidation and offers information on how organizations can sustain the advantage they have gained by consolidating their servers.

Publisher:
IBM

Also on silicon.com

Site Navigation:

Security Tools White Papers

Stealthy Malware Detection Through VMM-Based "Out-of-the-Box" Semantic View Reconstruction

Quick Sitemap Links:

About Us

Search

Blogs

Verticals

Advertising Features

CNET Networks in Europe

CNET Networks in the United States

CNET Networks in Asia Pacific