Forum

What are the privacy concerns with cloud based submission in antivirus? May 17, 2018 12:50 AM

By : Amy

Hi there,
 
I have a having problems related antivirus. Please tell me, What are the privacy concerns with cloud-based submission in antivirus?
 
If you have a better solution so, please give me
Thank you


Re: What are the privacy concerns with cloud based submission in antivirus? May 17, 2018 6:40 AM

By : Amy


Hi,



In at least some AV products (Kaspersky is one I'm familiar with), the local application has signatures and heuristic/behaviour controls. What it's doing is (I think) three things:




  1. If there's doubt (heuristics and behaviour detection are statistical systems so they might not be 100% sure how to classify something), or it looks wrong but doesn't match a signature, uploading the file can allow human examination, and updating of signatures so that other systems are more exactly protected.


  2. If its not clear or the user has specified they will choose all actions, then it can be useful to check how other users have handled the same file. If most block it, the user can be told so. (I've used this facility quite a lot for a sense of comfort on "odd" system processes that I can't tell are needed or wasting resources.)


  3. Anti malware companies also track malware quite a lot. If they can't get feedback what has been detected (and what variants or novel behaviours seen), they can't do their own work as accurately. To take a simple example, Stuxnet apparently tried to attack only if it detected certain hardware and geographical regions. An antivirus company in (say) Canada just might never see many files to analyse them, unless their software in other locations can autoforward suspect files to them.



Against that, a lot of the time a hash (used as a numeric value that uniquely identifies a file) is enough, and much quicker to send, so I would expect a lot of the time, that is what's sent and checked. You can see this on the website virustotal.com which let's you enter a hash of a file instead of uploading the entire file itself.



Yes there are security concerns. But given the power within the system granted to an antimalware package, if you don't trust them, you'll have far bigger concerns than their cloud facility.....



www McAfee Com Activate | McAfee Com Activate | McAfee Account Login


Re: What are the privacy concerns with cloud based submission in antivirus? May 17, 2018 7:30 AM

By : natalia


It is difficult to come up with a precise definition of cloud computing. In general terms, it’s the idea that your computer’s applications run somewhere in the "cloud," that is to say, on someone else’s server accessed via the Internet. Instead of running program applications or storing data on your own computer, these functions are performed at remote servers which are connected to your computer through the Internet.



In telecommunications, a "cloud" is the unpredictable part of any network through which data passes between two end points. In cloud computing, the term refers generally to any computer network or system through which personal information is transmitted, processed, and stored, and over which individuals have little direct knowledge, involvement, or control.



With more reliable, affordable broadband access, the Internet no longer functions solely as a communications network. It has become a platform for computing. Rather than running software on your own computer or server, Internet users reach to the "cloud" to combine software applications, data storage, and massive computing power.



It’s a bit easier to understand the concept of cloud computing by providing examples. Google operates several well-known cloud computing services. It offers its users applications such as e-mail, word processing, spreadsheets and storage, and hosts them "in the cloud" -- in other words, on its own servers, not yours. So, for example, you can type a document without maintaining any word processing software on your computer. You can use Google’s software "in the cloud." All you need is an Internet-capable device. It doesn’t even need to be a computer.



AVG Support Phone Number | AVG Tech Support Phone Number | AVG Technical Support Phone Number


Re: What are the privacy concerns with cloud based submission in antivirus? May 18, 2018 12:36 AM

By : Mary


Hello



 








In at least some AV products (Kaspersky is one I'm familiar with), the local application has signatures and heuristic/behaviour controls. What it's doing is (I think) three things:




  1. If there's doubt (heuristics and behaviour detection are statistical systems so they might not be 100% sure how to classify something), or it looks wrong but doesn't match a signature, uploading the file can allow human examination, and updating of signatures so that other systems are more exactly protected.


  2. If its not clear or the user has specified they will choose all actions, then it can be useful to check how other users have handled the same file. If most block it, the user can be told so. (I've used this facility quite a lot for a sense of comfort on "odd" system processes that I can't tell are needed or wasting resources.)


  3. Anti malware companies also track malware quite a lot. If they can't get feedback what has been detected (and what variants or novel behaviours seen), they can't do their own work as accurately. To take a simple example, Stuxnet apparently tried to attack only if it detected certain hardware and geographical regions. An antivirus company in (say) Canada just might never see many files to analyse them, unless their software in other locations can autoforward suspect files to them.



Against that, a lot of the time a hash (used as a numeric value that uniquely identifies a file) is enough, and much quicker to send, so I would expect a lot of the time, that is what's sent and checked. You can see this on the website virustotal.com which let's you enter a hash of a file instead of uploading the entire file itself.



Thanks



Norton Setup | www Norton Com Setup | Norton Account Login











In at least some AV products (Kaspersky is one I'm familiar with), the local application has signatures and heuristic/behaviour controls. What it's doing is (I think) three things:




  1. If there's doubt (heuristics and behaviour detection are statistical systems so they might not be 100% sure how to classify something), or it looks wrong but doesn't match a signature, uploading the file can allow human examination, and updating of signatures so that other systems are more exactly protected.


  2. If its not clear or the user has specified they will choose all actions, then it can be useful to check how other users have handled the same file. If most block it, the user can be told so. (I've used this facility quite a lot for a sense of comfort on "odd" system processes that I can't tell are needed or wasting resources.)


  3. Anti malware companies also track malware quite a lot. If they can't get feedback what has been detected (and what variants or novel behaviours seen), they can't do their own work as accurately. To take a simple example, Stuxnet apparently tried to attack only if it detected certain hardware and geographical regions. An antivirus company in (say) Canada just might never see many files to analyse them, unless their software in other locations can autoforward suspect files to them.



Against that, a lot of the time a hash (used as a numeric value that uniquely identifies a file) is enough, and much quicker to send, so I would expect a lot of the time, that is what's sent and checked. You can see this on the website virustotal.com which let's you enter a hash of a file instead of uploading the entire file itself.






 


To post a comment please register or sign in