PRZOOM - /newswire/ -
Moscow, Russia, 2005/09/25 - StarForce announced the release of SafeíníSec, an innovative behavior analyzer protecting home computers against zero-day viruses, hacker attacks and combined malicious threats.
Hackersí devious methods of intrusion into computer networks and sophisticated ways of virus replication and infiltration have increased the demand for comprehensive security solutions and have led to reevaluating corporate security strategies. It becomes clear that neither personal firewalls nor traditional antivirus software that recognize the malicious code by comparing it to known virus signatures can efficiently combat a variety of todayís threats.
A detection system that relies on the results of past attacks becomes totally useless against unknown viruses or spyware empowered with non-trivial tools to bypass security systems on hosts. While complicated and unpredictable attacks are left unnoticed, signature-based systems using heuristics tend to produce false positives, generating alerts even when nothing wrong happens in the host.
A truly comprehensive and robust solution can only be a multilayered security system based on several modules employing different mechanisms of detection and identification of malicious actions, which is capable of not only detecting but also preventing unauthorized access and hacker attacks.
Today, security solutions functioning at the system kernel level are more in demand than ever, because widespread encryption algorithms prevent firewalls and other traditional security systems from identifying potential threats. These solutions are classified as Intrusion Prevention Systems (IPS). In December 2004, StarForce announced the release of SafeíníSec, an innovative behavior analyzer protecting home computers against zero-day viruses, hacker attacks and combined malicious threats. SafeíníSec not only detects an attack and warns the user about potentially dangerous activity, but also prevents intrusions of unauthorized users in real-time, blocking malicious actions.
SafeíníSec is a preventive security solution that stays effective regardless of the availability of signature database updates. The product employs the Intelligent Activity Control module, which detects exploit attacks and prevents changes in the system registry or modification of the OS services, and eliminates attempts to access user profile data. The rules used to make decisions about the malicious nature of applications account for any possible sequences of potentially dangerous actions. SafeíníSec starts together with your operating system. This provides additional security to your system because many malicious applications can reside in OS startup services. Owing to its unique architecture, SafeíníSec produces minimal load on the CPU and consumes only a small amount of RAM. SafeíníSec host-based IPS runs on Microsoft Windows 2000 and Windows XP.
Until now, StarForce has released four products of its preventive security software range: SafeíníSec ver. 1.1 and SafeíníSec ver. 1.1 +antivirus (the preventive analyzer is empowered with the virus signature database that allows the application to detect known viruses) for both home and corporate users.
These products use the same mechanism for applications behavior analysis however corporate version has a number of extra features.
The corporate version has a management console, which allows the system administrator to install and configure the application on workstations from remote locations. Because this module does not require installation, the administrator can run it on any networked workstation, for example directly from a USB drive. This significantly increases the efficiency of system administratorís work and reduces the response time.
In addition, the administrator can modify existing policies and create new ones, which will be specifically tailored to particular applications and their modifications.
An extra module allows administrators to create automatically new policies, which significantly reduces the time needed for application configuration and improves the overall performance. All events registered on hosts are recorded by the centralized statistics system, which, in turn, generates detailed reports on the general situation in the local network. The alert system supports both standard and customizable signal transmission interfaces to provide smooth integration into the existing corporate systems.
Being integrated into the corporate information security infrastructure, the SafeíníSecís intelligent protection becomes the last defense line that virtually eliminates success chances of any kind of attacks. Our easy-to-deploy and easy-to-configure preventive security system is a powerful tool for enhancing traditional security solutions. With its unique diagnostic capabilities, SafeíníSec efficiently prevents new threats that traditional security software often fails to detect.