Microsoft to deliver free antimalware
Will deny beta of Microsoft Security Essentials, formerly 'Morro,' to users running counterfeit Windows
Computerworld - Microsoft Corp. today said it will release a public beta of its free antimalware software, now called Microsoft Security Essentials, formerly "Morro," next Tuesday for Windows XP, Vista and Windows 7.
Although Microsoft was vague about a final ship date -- saying only that it would wrap up sometime this year -- it was crystal clear that it will deny the program to PCs running counterfeit copies of Windows.
Microsoft pitched Security Essentials as a basic antivirus, antispyware program that boasts a simplistic interface and consumes less memory and disk space than commercial security suites like those from vendors such as Symantec Corp. and McAfee Inc.
"This is security you can trust," said Alan Packer, general manager of Microsoft's antimalware team, when asked to define how it differs from rivals, both free and not. "And it's easy to get and easy to use."
He stressed Security Essentials' real-time protection over its scanning functions, but both are integral to any security software worth its weight. "Rather than scan and clean, which it also does, it's trying to keep you from being infected in the first place," Packer said.
One of its most interesting features is what Microsoft calls Dynamic Signature Service, a back-and-forth communications link between a Security Essentials-equipped PC and Microsoft's servers.
If Security Essentials detects something suspicious, whether code or behavior, but can't pin either to a specific piece of malware, the software "phones home" to Microsoft servers to relay a short burst of information.
"If it sees something new, like a new binary, the client queries the back end," Packer said. "The server can then ask for a sample, which the client sends as a hash." At that point, if Microsoft has created a signature for the threat, that signature is immediately pushed to the PC. Security Essentials will ask the user's permission before sending a sample, Packer noted.
Security Essentials is the first Microsoft antimalware product to use Dynamic Signature, and the feature will be added early next year to the enterprise-grade Forefront line. "We actually identify [the things that trigger a 'phone home'] fairly loosely," Packer said. "We have a list of known good software, of course, but outside that, if a program is doing things like hooking Autostart points in the registry, or trying to kill other processes, Essential will query the servers."
Normally, signature updates are sent to Security Essentials daily via the Microsoft Update service, a superset of the better-known Windows Update.
In late 2008, this software, then code-named Morro, was described as the replacement for Windows Live OneCare, the for-a-fee security software that will be put to pasture at the end of this month. OneCare was never able to gain more than a toehold in the consumer security software market.
- 5 Ways Dropbox for Business Keeps Your Data Protected Protecting your data isn't a feature on a checklist, something to be tacked on as an afterthought. Download here to find out how...
- The Keys to Securing Data in a Collaborative Workplace Losing data is costly. IT professionals have spent years learning how to protect their organizations from hackers, but how do you ward off...
- Evaluating File Sync and Share Solutions: 12 Questions to Ask about Security File sync and share can increase productivity, but how do you pick a solution that works for you? Download to learn some important...
- The Truth About Cloud Security "Security" is the number one issue holding business leaders back from the cloud. But does the reality match the perception?
- What should I look for in a Next Generation Firewall? SANS Provides Guidance With so many vendors claiming to have a Next Generation Firewall (NGFW), it can be difficult to tell what makes each one different....
- Responding to New SSL Cybersecurity Threat The featured Gartner research examines current strategies to address new SSL cybersecurity threats and vulnerabilities. All Security White Papers | Webcasts
Our new bimonthly Internet of Things newsletter helps you keep pace with the rapidly evolving technologies, trends and developments related to the IoT. Subscribe now and stay up to date!