Re: detecting targetted malware

["Randall M" <randallm () fidmail com>]

 [------------------------------
[
[Message: 15
[Date: Tue, 23 Jan 2007 10:50:08 +1300
[From: Nick FitzGerald <nick () virus-l demon co uk>
[Subject: Re: [Full-disclosure] detecting targetted malware
[To: Full-disclosure () lists grok org uk
[Message-ID: <45B5E860.14136.558A8E8A () nick virus-l demon co uk>
[Content-Type: text/plain; charset=US-ASCII
[
[lsi wrote:
[
[> This is probably patented and implemented already but nonetheless its
[> a new idea for me, so I mention it...
[<<snip simple description of executable white-listing>>
[
[Fred Cohen "invented" this anti-malware approach in discussing the
[mitigation of computer viruses in his seminal (Ph.D. thesis) research
[of the properties of computer viruses.  AFAIK he did not patent the
[idea, and he certainly did implement it in an unsuccessful commercial
[product so there is solid prior art.  Further, there are several more
[recent implementations of more-or-less the same idea.
[
[snip]

 slack suppliers...
[
[
[Regards,
[
[Nick FitzGerald
[
[
[
[------------------------------
 [***********************************************

Smarty pants :)

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/