Symantec's Genesis to Usher in a New Age of Trust?

eldavojohn writes "Symantec has announced that they will be creating a massive security package called Genesis. Semantec has set their goal to 'Security 2.0' which is proposed to be 'a new age of trust on the Internet.' From the article: 'Symantec plans a one-stop software service tying together anti-virus, anti-spam, firewall and a host of other PC optimization technologies...' This is certainly something the common computer user could buy instead of having to fork over cash for every component. I don't think I'll be purchasing it though."

Genesis?

[dorkygeek]

Let's hope it was designed intelligently then...

But seriously, I'd rather have the security problems fixed at the source, instead of having to add layers and layers of so called "security software".

Re:Genesis?

[sumdumass]

I'm wondering if all these layers will slow my computer down even more then thier existing software does. It is pretty bad when i upgrade from a athlon XP 2200 to an 3200 processor and after installing nortan AV 2005 it apears to run slower then the XP2200 did.

I havn't been fond of thier products since thier 2003 versions. I asked thier tech support several times (after having to reinstal one of thier products and reactivating it because of an upgrade or it just stoped working) why all the systems I install thier AV or internet securities sweet on run so slow and they told me it was because "it is a complicated program","thats how you know it is working" and get this "microsoft slows it down because microsoft is coming out with an antivirus soon".

Re:Genesis?

[ForumTroll]

"But seriously, I'd rather have the security problems fixed at the source, instead of having to add layers and layers of so called "security software"."

The only solution here is to use a different operating system. Preferably one that was developed by people that have some idea of what they're doing (ie. MacOS X, GNU/Linux, Solaris etc.). With Windows all you're ever going to get is a nice Fisher Price interface with layer upon layer of extra crap piled on top trying to make up for the ridiculously poor quality of the base system and its architecture. The shell alone speaks volumes about Windows.

Re:Genesis?

[lifeisgreat]

Indeed - from the sounds of things, all the API hooks and extra levels they've had to add for such security systems sound like a proto-operating system in itself.

I think there's a real need for extending the Windows ACL system even further than it already is to encompass programs as well as users - that way the built-in security subsystem could be utilized instead of ever-more hacks. I want to be able to bring up a property sheet and say:

- process x can't write to directory tree y, even if the running user z has write access there (so only, say, MS Word can write to /My Documents/Word Stuff/)
- process x can't be controlled via automated means (so that if only Explorer.exe has the ability to delete your files, it can't be scripted to do so by a shell script, SendInput() API calls, etc.)
- default setting of processes being unable to access the networking subsystem, or processes having access to TCP ports on a per-port basis (ACL subsystem becomes a firewall)
- only process x can alter ACL information
- etc.

The issue I have with assigning rights on a per-user granularity is that once you're running under a user's credentials, you can do *anything* they can surreptitiously. Running as an unprivileged user, an exploit in Firefox will still let it hose your profile, start up trojans under the user's login and anything else. If the Firefox process itself is prevented from spawning read/write/delete/execute actions anywhere but a set of temporary and incoming directories, it's almost bullet-proof.

Are there any operating systems out there with per-user AND per-process ACLs? If not why not? Are there glaring issues I'm missing? I don't want to have to make a "firefoxuser" login that has everything disabled apart from read-only access to Firefox.exe and write-only to a temp directory somewhere, then do something similar for EVERY other program, I want to be able to constrain a program itself regardless of the user running it.

Re:Genesis?

[Al+Dimond]

There have been plenty of buffer overrun vulnerabilities allowing potential arbitrary code execution on all major operating systems. There have been plenty of priviledge escalation vulnerabilities on all major operating systems. All you need to get from there to a real exploit is either (a) a vulnerable server listening on some port or (b) some user to click on the wrong link or open the wrong attachment.

90s Outlook had lots of problems. 90s IE had lots of problems. There's a big problem with user accounts on Windows and how difficult it is to run as non-admin. And Windows doesn't have effective tools like sudo to grant occasional privledges beyond the usual. These tools can be built onto Windows. Third-party developers can be pressured to release software that works with the security model. Exploits can be patched, and quality control can be improved. And there are a lot of people working for Microsoft on these very things.

Microsoft may never fully win the battle against hackers. But then again, I don't know if anyone ever can. Even OpenBSD has had security holes in its default install a few times, and it's fighting a much less malicious group of hackers than Windows is. I love using GNU/Linux; it's cool that Unix has had sudo since 1980 and a tradition of sane security practices. That doesn't mean we should get arrogant about security.

Re:Genesis?

[ForumTroll]

I'm well aware that other operating systems also have security flaws and I concede that there is no operating system that is completely safe. However, the architecture and coding practices of the other operating systems I mentioned make it much easier to avoid flaws altogether and also make it much easier to locate the flaws and correct them. Being required to run Windows as administrator for many applications to work is just one simple example of extreme neglect for security. And yes this is partially the fault of Windows developers, however it's also largely Microsoft's fault for not teaching or enforcing developers using their platform to use sane security practices since day one.

I completely agree that all systems have flaws, but some have a lot more than others and also have an architecture and development process that make it much harder to find and eliminate these flaws.

Re:Genesis?

[silverburn]

Hear, Hear.

Try installing the 2006 Internet Security edition; on a Athlon 3200+ it's so slow on startup I just standby the PC now instead of turning it off, for fear of dropping dead of old age before my PC's restarted.

And it now takes THREE TIMES LONGER to get fully operational. And opening a word document takes an eternity. And it breaks more often than the 2005 edition (twice since it was launched!).

What an utterly shite piece of flaky bloatware it's become.

Re:Genesis?

[sumdumass]

And it breaks more often than the 2005 edition (twice since it was launched!).

and isn't it interesting that with the product activation you now have to call in and have them re-authorize the activation. They insist you give them an email address, god forbid it hasn't changed since the last time you called or you will have another 20 questions on are you sure your not stealing our crapware, then you have to put up with all the spam they say they have no conection with.

Somethign has gone completley down hill with thier software. I remeber a time when I could say with confidence it was one of the best AV suites availible and had no problem recomending it to someone. After about the 20th time I had to call and re-activate clients (2005) software I told them if they didn't fix it i was taking my business elsewere. Well, i have switched almost all my clients to either AVG (pay version) which is half the price for twice as many years updating or Zone labs products. The only holdouts are my clients who have longer then 2 months left on thier AV subsciption.

Re:Genesis?

[drsmithy]

They should have been pushing much harder on this, doing things like refusing the use of trademarks to apps that are security-stupid when run on recent-enough Windows versions.

It's a requirement of the "Made for Windows" logo.

Re:Genesis?

[Jedi_Knyghte]

I asked thier tech support several times (after having to reinstal one of thier products and reactivating it because of an upgrade or it just stoped working)

Yup. I quit using Norton after it randomly deactivated itself repeatedly and then told my activation count was used up and I'd have to talk to tech support--and this was after I installed the patch that was supposed to fix it. AVG free all the way now, and cross off one hitherto faithful and satisfied customer.

Now if they can get their cpu use down...

[ChaoticLimbs]

Symantec and Norton antivirus and security packages (on machines I have experience with) use an absurd amount of memory and processor resources. Any hope that this will change someday?

Re:Now if they can get their cpu use down...

[TubeSteak]

I can't think of one major software package that has reduced bloat over the years.

I also hate the trend towards dumbing down the user interface. Some virus scan progs & firewalls practically hide all the settings from you.

Very few major anti-virus companies these days will put out a consumer (not the corporate or institutional package) piece of software that is stripped down. Feature bloat is the name of the game.

I'd rather have 3 or 4 small efficient programs than one big POS to replace them.

Re:Now if they can get their cpu use down...

[WhiteWolf666]

I can't think of one major software package that has reduced bloat over the years.

OS X, for one.

KDE, during major versions, for two. 3.2 was faster than 3.1, 3.5 is way faster than 3.4, or 3.2

There's a school of software development that involves making your software leaner and meaner as it "ages".

New versions are more bloated. New revisions are LESS bloated.

Re:Now if they can get their cpu use down...

[Bananatree3]

Symantec and Norton antivirus and security packages (on machines I have experience with) use an absurd amount of memory and processor resources. Any hope that this will change someday?

Why yes, you can solve this problem today! Simply get a dual-core system, and voila! One core for the all-in-one anti-virus, firewall, automated secure dohicky, bloated security suite; and the other core for the rest of your stuff! It will feel as if you aren't running it at all!

Re:Now if they can get their cpu use down...

[Parham]

I switched from Norton about a year ago and I have to admit I couldn't be more happier with the speed of my computer. I currently have AntiVir PersonalEdition Classic installed and I couldn't be more happy with it. All the settings are available to met, it's fast, and it tells me exactly what it's doing with it's guard feature (it shows exactly what files it's scanning as you use your computer). The only setback is that the free version doesn't automatically update for you and the scheduler is a little funny to use, but those are things I'd gladly do manually in exchange for MUCH MUCH better speeds.

Internet Security

[PaladinAlpha]

Really, this doesn't seem all that revolutionary -- Symantec, like McAfee, like any other company serious in the business, ALREADY offers an integrated suite of tools (Internet Security) and no matter the advancement of interplay and integration I have a hard time believing that Genesis will come across to the average user as being so much more. Wait and see, I guess.

Re:Internet Security

[donaldm]

It never ceases to amaze me that people buy an Operating System (you really do one way or another) and then have to buy software to keep malware and other nasties out. At least with Unix/Linux OS's you can get security updates for the OS and in may cases, unless you have a subscription (good value for large corporations and even some small business) it can be free.

To actually require virus protection is really a damming indictment of the Operating System and yet Business actually spend billions of dollars a year on this rather than look at other OS's and yes I do know the excuses and they IMHO are very short sighted (rather like lemmings).

Excellent site for Business doublespeak. http://www.bullshitbingo.net/cards/bullshit/

I prefer Exodus.

[dcapel]

I have already left slavery for the promised land. Lots of those strange penguins around though...

On Symantec's new software

[Haiku+4+U]

Genesis? Sounds good.
Secure from malware at last!
So, is it Linux?

Re:On Symantec's new software

[johncadengo]

Hey Haiku 4 U
Do you always write comments
As haiku poems?

with vista

[Evilhomer2300]

They may try and bring this in along with vista. The new age of windows OS is supposed to be better, faster, stronger, and more secure. With Microsofts deep pockets, do you think they may help syman. try and make things even more secure? Or maybe try to make it seem like it, give people a better hope of security. just an idea

Optimization Technologies?

[rminsk]

and a host of other PC optimization technologies...

So when did anti-virus, anti-spam, and a firewall become optimization technologies? My computer seems to run slower with these things installed.

Let's learn from history

Genesii (That's multiple Genesis to you and I) have a history of utter failure.

Genesis (Sega): Defeated by SNES
Genesis (STWoK): Stolen by Khan, and he damn dear destroyed the enterprise with it
Genesis (Band): Ushered in the era of HORRID 80's music

Please Symantec, can we call this something that has a history of goodness attached to it, like Campbells?

bloatware

[Jjeff1]

If it's similar at all to any of the Symantec home all in one AV type packages it will be an enormous mess. The last time I worked on this, a 256MB machine used 270 MB of memory with nothing but Windows XP home and the Norton package running. Worse, when I disabled things they didn't need, like the firewall or spam scanner, it didn't actually unload them from memory.

I stopped using Symantec for AV a while ago. But home users will still buy this for the same reason they buy a dishwasher with 19 different settings when all they ever use is the pots and pans setting.

Age of trust????

[scronline]

Shouldn't we be able to trust them now? Oh wait, since it took them 2 weeks to get the definitions out for a keylogging virus...I guess the answer to that is no.

Personally, after seeing Symantec corp take 2 weeks to release the definitions for a keylogger a customers network had...All symantec products I have out there are going to go away.

My choices are getting narrowed down quickly. McAfee lost out a few years back with the Nimda virus and failing to return phone calls....at all, not just late by a few hours or even a few days, a week later I heard from them. By that time I had already moved on since more than half my customer base was infected the DAY of the outbreak, not a week later.

But then, both of those 2 are really good at annoying the ever loving crap out of a user, which inturn causes the user to ignore all those little popups. I've even been guilty of it because I see them like 80 times a day. JUST DO YOUR JOB! You don't have to tell us what a wonderful job you are doing, just tell us when you need us to do something.

well, it's nice to see

[circletimessquare]

that megalomania is still alive and well in the corporate boardroom

all they need are the sharks with frickin' laser beams and some wagnerian operas playing in the background and symantec's domination of teh intarweb is complete ...in their own mind

grandiose schemes like this should signal to someone that they need some medication

it's one thing to think big, it's another thing to think RIDICULOUSLY DRAMATICALLY HUGE! (cue gong)

Seems too late

[bhaskie]

With anti-virus, anti-spam, anti-spyware, intrusion prevention, firewall, PC optimization and maintenance elements all bundled togetherm this is gonna be one hell of a system performance issue.
"Both Genesis and the next versions of Norton's traditional security products will be designed to work on Vista, Microsoft's forthcoming operating system, due later this year, as well as Windows XP."

Well, seems this does not do linux. Only Windows XP. But looks like Microsoft already has OneCare which does the same stuff. So I guess this is too late a genesis for symantec.

Oh great .....

[gomaze]

I have seen more problems caused by Symantec's software then I could count. I feel that if you have to run Windows then any extra layers of protection that you would need can be provided by free applications online. For example: Ad-aware, Spy-Bot, AVG Anti-Virus, ZoneAlarm, and the best firewall protection, SmoothWall.

What useless crap

[RyoShin]

I have unyielding hate for Symantec. I've spent countless hours trying to get their products to properly allow connectivity for various programs for other people, and even more hours uninstalling it after it wouldn't listen to my yelling.

Nothing Symantec has is good, or can't be replaced by a free alternative.

Anti-Virus? AntiVir (If you want to pay, they have a premium version, too)
Firewall? SP2 comes with a moderate firewall that works well. There are a good deal of free firewall programs out there, not to mention that many routers now have some sort of firewall software on them.
Ad-aware and MAS have taken care of any spyware problems I've had to deal with (except for some of the really evil ones.)

Any and everything else can be taken care of by good judgement and learning some PC common sense. Don't arbitrarily accept downloads that IE pops up with. Don't open every attachment that claims to be a dancing Ronald McDonald. Don't listen to every e-mail propogated by the feces of the internet that various programs in your windows folder are viruses.

There is absolutely no need to pay $100 for Symantec's horrible piece of crap. People would be better off without it.

It'll never happen

[ManOfMidnight]

I honestly hope I'm proven wrong, but I just don't see "a new age of Internet trust" happening.. ever. To even put a dent in the mal-ware industry, this new software will have to use up every last bit of resources the Vista-generation computers might have. Even then, there will always be a way around it! Any/every new feature this new software might introduce will also introduce, along with it, a new flaw; another vulnerability which will have to be patched. Thus, the circle will continue, only in another location: Vista.

More impotent than Cheney... during a heart attack

[unknownideal]

Symantec and McAfee are about as effective at problem solving as the Bush administration. These are two products that render a machine useless by loading hundreds of megs of unnecessary graphics and who-knows-what while simultaneously blocking network communication, and popping up every four seconds to tell you about the "attack" so narrowly averted thanks to it. Every so often it asks you for more money.

I went red and started recommending Kaspersky, but my clients have trouble getting it installed thanks to its ridiculous registration system. Instead of a stream-lined system, you have to download a key file and 'show Kaspersky your papers,' if you catch my drift.

Now I just install the free version of Avast. No problems so far.

The first one of you to write software that blocks terra attacks from the inner-web is not going to have any trouble paying off that student loan. Promise.

Some nerve!

[queenb**ch]

I wonder if this is going to have another spyware-ridden root kit in it too!

If the guys at Symantec/Norton think I'm EVER going to install/recommend ANY of their products EVER again, they're still smoking the same stuff that they were smoking when they thought that root-kitting all their customers was a good idea in the first place.

Hey Symantec - PUT THE CRACK PIPE DOWN AND BACK AWAY SLOWLY!!!!

2 cents,

Queen B

New Age of Trust?

[__aatgod8309]

The assumption appears to be that we trust Symantec...

Re:Too little, too late

[bersl2]

If it ever is included in Windows as a standard part of the OS, it's going to be the first target of opportunity. I mean, what malware writer wouldn't love to have a security-utility monoculture in which to amply hide his program? Once you root a machine, you can have an anti-virus scanner, firewall, or whatever lie all you want to an unsuspecting user.

Security through diversity. Remember that.

Trust includes more than IT security

[Morty]

If Symantec is trying to teach people to "trust" the Internet, they're doing people a disservice. The Internet is a way for people to communicate with other people; any communication includes the possibility of lies and fraud. Yes, the Internet introduces new technical types of ways for people to cheat and attack each other (phishing, OS vulnerabilities, viruses, trojan horses, etc.) but even if you solve all the technical issues, you still fundamentally have people communicating with each other. Strangers should not blindly trust each other regardless of context.

If Jane AOLer meets Joe MSNer on IRC, even if she has "Genesis" and "Leviticus" too, should she trust him any more than if she met him in real life? No. If Jane AOLer shops at FuzzySlippersOnline, should she trust them any more than she trusts her local brick and mortar CoolBootsEmporium? Of course not. The online world is not to be trusted, any more than the big blue room outside is to be trusted.

Single Point of Failure

[kafka47]

I just shake my head when I see this stuff. If they are angling this as Security's answer to "Web 2.0", then perhaps they should start by examining what Web 2.0 is supposedly about. Stuff like web services and aggregation, arguably important pieces of this mythical beast, make *everyone* a content provider on the Internet. And Symantec is intending on having us run a service that gates that content?

This is Symantec's big push... in the wrong direction.

/K

Sign me up $$$

[Eric_Cartman_South_P]

I hope they make a Mac version for my new 20 inch Dual Core, so I can protect it from all those vir... uh... nevermind.

So they'll stop selling their own stuff...

[geobeck]

...and sell Trend Micro Internet Security instead?

I've been using Trend Micro for the last couple of years. It's already got the full meal deal Symantec is promising, and it's actually updated in near-real-time (every three hours).

Funny...

[xlsior]

In my experience over the past couple of years, there are few PC 'optimizations' as effective as uninstalling Symantec antivirus, firewall, spamfilter and associated applications..

It is absolutely *astounding* the percentage of techsupport calls coming in at an ISP helpdesk are the direct result of a malfunctioning Symantec application. Especially Norton Antivirus -- after a while, you almost start to suspect that Symantec released that program as a practical joke.

McAfee is a distant second, while AVG and Avast rarely cause any problems. It's amazing how many problems, lock-ups and corrupted email problems magically disappear simply by uninstalling Norton Antivirus and installing the free version of AVG instead.

Somehow, I am rather sceptical that things will get better by them slapping their entire product line in a single box, and trying to cram in a pony on top of it. Jack of all trades, master of none.

Re:patronize-ware

[jgp]

Want a firewall? www.jetico.com - "Jetico Personal Firewall" *freeware*.
Don't be put off by the "personal" bit. It's actually rather close to iptabls et al in the Windows world--rulesets, various logging levels, lots of different protocols, etc. It *will* confuse you initially (UI in particular), but then again, I did say it was like iptables... Both are rather unpatronising.

Want a cheap (not free, but try it--I paid for it), fast, small anti-virus? www.nod32.com. Works, no fluff or animated 3D logos, un-installs without ripping out your computers nervous system. Very small memory foot-print.

That is all.

Core Force

[Alejo]

This looks like a reaction to Core Force, a free Windows tool taking security to the highest level. Only missing an antivirus. A bit annoying at first, as you have to decide what can get through or not but it's getting there with the community of users submitting profiles.

Why wait?

The only solution is to use best-of-breed

[tkrotchko]

Norton stuff seems to be king of the "We'll change your computer all around just for our software and it will run slower" manufacturers.

Over the years, I've developed best-of-breed for myself. You probably have others you like:

1) Firewall - Sygate. Doesn't try to do too much which is good because its small, fast, and it's easy to reconfigure to do pretty much anything. Oh, it's free, too. I can see why Symantec bought it and killed it.

2) Anti-Virus - AVG is the only virus protection I've used that doesn't bog down the computer. And it's cheaper than Symantec too. I think the only reason it doesn't get rated higher by magazines is they like suites that throw in the kitchen sink. I like small utilities that work well.

3) Anti-spyware - Webroot Spysweeper. It has worked consistently well for 2-3 years now.

What anti-virus?

[Martindale]

I have the best anti-badware known to man: Common sense.