Signature based malware detection is hardly becoming obsolete. In fact, quite the opposite. The majority of threats are poorly written, and have very little in the way of dynamic code. I would go so far as to say that checksumming is becoming increasingly popular. Not however in the way you might think! By using intelligent code, and hardware optimized scanning we are able to perform "fuzzy checksums" of certaining "interesting" code. This is the way by which two of the three companies earning perfect detection succeeded in this test.
Point being; don't think for a second this stuff is getting much harder. The difficulty is in creating engines that are fast, and very efficient with memory and CPU resources. Fortinet is going down the right path with their antivirus firewalls for sure.
Slashdot Mirror
My 3g iPod's battery went to hell awhile ago.
Signature based malware detection is hardly becoming obsolete. In fact, quite the opposite. The majority of threats are poorly written, and have very little in the way of dynamic code. I would go so far as to say that checksumming is becoming increasingly popular. Not however in the way you might think! By using intelligent code, and hardware optimized scanning we are able to perform "fuzzy checksums" of certaining "interesting" code. This is the way by which two of the three companies earning perfect detection succeeded in this test. Point being; don't think for a second this stuff is getting much harder. The difficulty is in creating engines that are fast, and very efficient with memory and CPU resources. Fortinet is going down the right path with their antivirus firewalls for sure.