« March 2006 | Main | June 2006 »

May 03, 2006

Sana labs on the road part 1

I gave a talk at SSTC (Security and Systems Technology Conference) in Salt Lake City, Utah, on "Behaving badly: how to stop nasty trojans stealing your customers". You can find the slides here. SSTC is the

premier forum in the Department of Defense (DoD) to enhance attendee’s professional skills and knowledge of systems and software technologies and policies, enabling them to improve the capabilities they provide to the warfighter.

The talk covers some of the trends behind modern malware, and looks in detail at the arms race in technologies between attacker and defenders. It shows how some of the aspects of modern malware, such as hiding with rootkits, mutating, being split into multiple cooperating components and resisting removal result because they exploit weaknesses in security software. It also covers how new technologies such as heuristic signatures, and Sana's behavior based detection and removal technology can have a sustainable impact on the problem.