• DocumentCode
    3399494
  • Title

    Self-defending security software

  • Author

    Kerivan, J.E. ; Brothers, K.

  • Author_Institution
    LLC, Westford, MA, USA
  • fYear
    2005
  • fDate
    17-20 Oct. 2005
  • Firstpage
    3094
  • Abstract
    This paper describes a series of tests designed to attack security software in real time as it provides protection for applications and operating system programs on Microsoft Windows 2000 operating platforms. One security program tested fell into the Intrusion Prevention System (IPS) category of security software. A second security solution provided Anti-Viral protection and the third security program provided Anti-Malware protection for the test systems with a principal focus on Spyware and Adware detection and removal. All security programs were run in a variety of conditions including single mode, where only the security application was running through full integration modes where all security applications were running simultaneously. Security program default configurations were used in all tests. The findings indicate that none of the tested software was capable of defending itself against attacks designed to suspend and unload them from memory. As is shown, the IPS software was more robust than the other two solutions, but was easily compromised and actually created numerous false positives and misinformed the user on the running of the other security software.
  • Keywords
    computer viruses; safety-critical software; Adware detection; IPS software; Microsoft Windows 2000 operating platform; Spyware; antimalware protection; antiviral protection; intrusion prevention system; operating system program; self-defending security software; Application software; Computer worms; Data security; Information security; Operating systems; Protection; Real time systems; Robustness; Software testing; System testing;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Military Communications Conference, 2005. MILCOM 2005. IEEE
  • Conference_Location
    Atlantic City, NJ
  • Print_ISBN
    0-7803-9393-7
  • Type

    conf

  • DOI
    10.1109/MILCOM.2005.1606134
  • Filename
    1606134