|
Viruses
are by far the one of the better-known threats in
the virtual world. The diversity, complexity and number
of viruses that exist out there have not stopped growing
in the past few years.
Antivirus software programs for workstations abound
and some of them are of excellent quality, combining
swift reaction to new viruses with a heuristic analysis
engine that makes it possible to recognize viruses
that have not yet been added to the database of known
viruses.
However, many businesses wish to complement this level
of protection with a network antivirus that intervenes
before the user downloads attachments. Indeed, it
is sometimes difficult to configure a user workstation,
thus making the analysis of received files uncertain.
HIGHLIGHTS OF THE
ANTIVIRUS
 |
2
opposite approaches for analysis |
| |
Graduation
to the unified management of security has
made it necessary for antiviruses to be embedded
within all-in-one (UTM) security appliances.
First approach
The most commonly-adopted approach
is to use a heuristic analysis engine and
a full virus database. In this way, every
analyzed file is compared against the entire
virus database.
For this type of analysis, performance is
affected in no small way. Moreover, the numerous
algorithms involved mean the size of the virus
database has no direct relation to performance.
The quality of the engine and the technology
used thus counts as much as the size of the
virus database.
Second approach
Another approach recently made its
debut. It consists of the antivirus engine
loading only a very basic database, or list,
of known viruses which have been active recently
on the internet.
This list, often referred to as a "Wild
list", only contains 3 to 4 000 virus
signatures. The use of this approach exposes
users to great risks, ranging from the reappearance
of an older virus that was not included in
the database, to the deliberate use of a less
recent virus with the aim of bypassing the
antivirus. |
|
NETASQ
solutions |
| |
To ensure that
its clients get the best protection, NETASQ
relies on the combination of 2 technologies
that use a full antivirus database.
All NETASQ products are sold with the ClamAV
engine, which contains more than 10,000
antivirus databases. ClamAV is a reputed
opensource antivirus which allows many file
formats to be analyzed and its database
of antivirus signatures is very regularly
updated.
NETASQ has also joined forces with Kaspersky
Labs and embeds its heuristic analysis engine
and the full database of antivirus signatures,
or more than 180,000 signatures to date.
The Kaspersky antivirus is the undisputed
leader in antivirus technology, both for
the frequency of updates as well as for
the quality of its heuristic analysis engine
and the swiftness with which antivirus signatures
are published.
Kaspersky has come out tops in many comparative
analyses based on criteria such as the number
of viruses detected, swiftness in publishing
new signatures following the appearance
of viruses, and low number of false alerts.
Embedding the dedicated version of the Kaspersky
engine in NETASQ appliances guarantees excellent
performance.
The solutions
that NETASQ offers are embedded in the appliances
and nothing is compromised. This approach
is the security manager's assurance that
he is receiving the ultimate network antivirus
protection.
|
|
|
| |
|
|
