Is Anti-Virus a Necessary Evil?

Similar documents
An Introduction to Virus Scanners

Solving Virus Problems by System Administrators- a TRIZ perspective

Overcoming limitations of Signature scanning - Applying TRIZ to Improve Anti-Virus Programs

Inventions on using LDAP for different purposes- Part-1

Inventions on LDAP data storage- A TRIZ based analysis

Evolution of User Interfaces for the Visually Impaired- Part- 1

Contradictions in Improving Speed of Virus Scanning

Implementing Virus Scanning in Computer Networks

Inventions on LDAP data management- a TRIZ based analysis

Demonstrating contradictions in a Graphical User Interface

Using TRIZ to Design the Future Keyboard

Evolution of User Interfaces for the Visually Impaired

Inventions on auto-configurable GUI-A TRIZ based analysis

Protection Against Malware. Alan German Ottawa PC Users Group

A Review Paper on Network Security Attacks and Defences

Get BitDefender Business Security 3 Years 15 PCs pc software site download ]

Get BitDefender Business Security 2 Years 70 PCs all software product key finder ]

Free Download BitDefender Business Security 3 Years 5 PCs full version free software download ]

Review BitDefender Business Security 2 Years 1000 PCs free pc software downloading sites ]

Methods of Repairing Virus Infected Files, A TRIZ based Analysis

Why is it Difficult to Find a Good Free Web Host

Coupon BitDefender Corporate Security 1 Year 45 PCs best site for free software download ]

Review Kaspersky Internet Security - multi-device 2015 online software downloader ]

User Guide. This user guide explains how to use and update Max Secure Anti Virus Enterprise Client.

Management of IT Infrastructure Security by Establishing Separate Functional Area with Spiral Security Model

Free Download BitDefender Business Security 2 Years 30 PCs web software free ]

3.5 SECURITY. How can you reduce the risk of getting a virus?

Easy Activation Effortless web-based administration that can be activated in as little as one business day - no integration or migration necessary.

Coupon BitDefender Corporate Security 3 Years 10 PCs internet download software for pc ]

The 10 Disaster Planning Essentials For A Small Business Network

Prevx 3.0 v Product Overview - Core Functionality. April, includes overviews of. MyPrevx, Prevx 3.0 Enterprise,

Full Edition BitDefender Business Security 3 Years 10 PCs free computer software downloads for windows ]

ACN Premium Technical Support. 24/7/365 Remote Computer Support

Symantec Protection Suite Add-On for Hosted Security

Second International Barometer of Security in SMBs

Online Scams. Ready to get started? Click on the green button to continue.

Inventions on Extending LDAP functionality- A TRIZ based Analysis

Discount Bitdefender Security for SharePoint website for free software ]

How To Remove Virus From Computer Without Using Antivirus In Windows Xp

Electronic Identity Theft and Basic Security

Executive Summery. Siddharta Saha. Downloaded from

Inventions on drag and drop in GUI

Simplifying inventive standards (Part-3)

Security Awareness. Presented by OSU Institute of Technology

Get Max Internet Security where to buy software for students ]

Inventions on GUI for Eye Cursor Controls Systems

Inventions on dialog boxes used in GUI A TRIZ based analysis

Kaspersky Open Space Security

Zillya Internet Security User Guide

ITU WSIS THEMATIC MEETING ON CYBERSECURITY, GENEVA, SWITZERLAND, 28 JUNE -1 JULY PAPER ON THE STATE OF CYBERSECURITY IN UGANDA.

Discount Kaspersky PURE 3.0 internet download software for windows 8 ]

How To Remove Personal Antivirus Security Pro Virus

Avira Free Mac Security Version HowTo

The Value of Automated Penetration Testing White Paper

Free Download BitDefender Small Office Security 1 Year 1000 PCs trial version software free download ]

Duplication and/or selling of the i-safe copyrighted materials, or any other form of unauthorized use of this material, is against the law.

Kaspersky Internet Security - Top 10 Internet Security Software in With Best Antivirus, Firewall,

Single Product Review. escan Internet Security 11. Language: English September 2010 Last revision: 13 nd October

Quick Heal AntiVirus for Server. Optimized Antivirus Scanning. Low on Resources. Strong on Technology.

Seqrite Antivirus for Server

Cracked BitDefender SBS Security 2 Years 2000 PCs downloads softwares for pc ]

ENDPOINT SECURITY WHITE PAPER. Endpoint Security and the Case For Automated Sandboxing

How To Remove A Virus Manually Windows 7 Laptop Using Antivirus Program

User s Guide. SingNet Desktop Security Copyright 2010 F-Secure Corporation. All rights reserved.

Using TRIZ for Minimizing Cursor Movements in GUI

SaaS Flyer for Trend Micro

Security. The DynaSis Education Series for C-Level Executives

Advanced Computer Skills and Hardware Instructor: Jonathan Barkand ( )

Quick Heal Total Security for Mac. Simple, fast and seamless protection for Mac.

How To Remove Personal Antivirus Security Pro Virus Windows 8

Discount BitDefender SBS Security pc computer software ]

>839&Buy: 'BitDefender Security for SharePoint' by Bitdefender Discount Code

BUFFERZONE Advanced Endpoint Security

McAfee S DO s AnD DOn ts Of Online Shopping

Botnets: major players in the shadows. Author Sébastien GOUTAL Chief Science Officer

Comparison Of Antivirus Software

TITLE FIELD OF THE INVENTION BACKGROUND OF THE INVENTION

$540+ GST Paid Annually. Professional Website Hosting Service HOSTING:: WHAT YOU GET WORDPRESS:: THEME + PLUG-IN UPDATES

Quick Heal Total Security for Mac. Simple, fast and seamless protection for Mac.

Quick Heal Total Security for Android. Anti-Theft Security. Web Security. Backup. Real-Time Protection. Safe Online Banking & Shopping.

Quick Heal Total Security Multi-Device (Mac) Simple, fast and seamless protection for Mac.

AUTOMATED PENETRATION TESTING PRODUCTS Justification and Return on Investment (ROI)

USG2110 Unified Security Gateways

PROTECTING YOUR BUSINESS ASSETS

The tale of one thousand and one ADSL modems

Online Security and Safety Protect Your Computer - and Yourself!

Test Strategies & Common Mistakes International Antivirus Testing Workshop 2007

FRISK Software International F-Prot AVES Managed Security Service

A Step by Step Guide to Postcard Marketing Success

Securing Today s Mobile Workforce

Defend what you create. Why Dr.Web

Quick Heal Total Security

Manually Remove Of Xp Internet Security Protect Virus Manually

2008 CAMS-ii Users Conference

Free antivirus software download

FAQ. Usually appear to be sent from official address

A WICK HILL & FINJAN WHITE PAPER

Spam Protection Guide

BUFFERZONE Advanced Endpoint Security

10 Inventions on Key Guides and Keyboard Templates

Transcription:

From the SelectedWorks of Umakant Mishra May, 2014 Is Anti-Virus a Necessary Evil? Umakant Mishra Available at: https://works.bepress.com/umakant_mishra/124/

Is anti-virus a Necessary Evil? Using TRIZ Ideality and Contradictions to find out what is Necessary and what is Evil * By- Umakant Mishra, Bangalore, India http://umakantm.blogspot.in Contents 1. Anti-Virus Programs: a Background...2 2. Using Ideality to determine what is desirable...2 3. The undesirable functions of an anti-virus program...3 4. Using contradictions to differentiate what is Useful and what is Evil...4 4.1 The problem of selection and procurement...4 4.2 Problem of Anti-Virus renewal...5 4.3 Problem of updating Virus Database...5 4.4 Problem of Scanning Time...6 4.5 Problem of system performance...6 4.6 Problem of false positives...6 5. Summary and Conclusion...7 Reference:...7 * This paper was first published in the TRIZ featured Articles of Altshuller Institute of TRIZ studies (USA) during Aug 2013, currently available on the web at http://www.aitriz.org/triz-articles/trizfeatures/628-anti-virus. This is a repeat publication.

1. Anti-Virus Programs: a Background While everybody is becoming more and more dependent on computers there are some unscrupulous people who continuously try to misuse the technology and get illegal and illegitimate benefit out of this sophisticated environment. Today the Internet is like a busy street or open market place where you find almost everything you want. As there are some obvious risks when you stand or move in a busy street such as you are likely to be pick pocketed or cheated or even knocked out by a rash driving vehicle. Similar threats loom over the head of a user when he is exposed to the Internet. There are viruses, malware, spyware, spam, hackers and other malefic forces who not only damage the computer system of innocent computer users but also do more dangerous things like stealing their confidential data or stealing their identity to make bank transactions on their behalf. An anti-virus program is generally considered as a remedy to all the above problems. The anti-virus program (including anti-spyware, internet guard etc.) not only detects the malware in your system but also guards the computer system from external attacks while you are surfing the Internet. It is supposed to detect if a spyware is stealing your passwords or a hacker is making an inward connection to squeeze your PC. But is the current age anti-virus program really giving a remedy to all these problems? Many people think that an anti-virus program along with its siblings like anti-spyware, antiadware, internet guard etc. create a lot of burden on the user. While the computer users cannot afford to avoid using anti-virus programs most user fell it as a necessary evil. 2. Using Ideality to determine what is desirable According to the concept of Ideality, the best anti-virus is no anti-virus or a virus free environment where there is no need of any anti-virus. However, for many practical reasons the above Ideal Final Result (IFR) is not possible to achieve in the present circumstances. When the ultimate IFR is not possible to achieve the problem solver has to take a step backward and consider a lower level IFR 1. The best solution is that which is closest to the Ideal solution. The best solution is that which fulfils all the desirable functions of an anti-virus program without having any of its drawbacks. 1 Umakant Mishra, Using TRIZ for Anti-Virus Development, Chapter-6: Using Ideality to find the Ideal anti-virus solution. Is Anti-Virus a Necessary Evil, by Umakant Mishra 2

The desired solution from different prospective From users perspective From a practical perspective The computer should never get infected The computer should never get infected (no need of purchasing, installing or after using some kind of protection like maintaining any anti-virus software) installing an anti-virus product. The user should not spend money on buying anti-virus products nor waste time and energy on installing and maintaining those products. The user should not waste valuable system resources for running anti-virus that could have been used for other purposes to increase productivity. The anti-virus product should be free or at least cheap and should be extremely easy to install and maintain. The anti-virus should run fast and consume minimum system resources. As a no virus environment is practically not possible, using an anti-virus is the most accepted solution in the current scenario despite of its various drawbacks. 3. The undesirable functions of an anti-virus program Any system is built to achieve its Main Useful Functions (MUF). The concept of Ideality in TRIZ helps us to determine what are the useful (or desired) functions of a system and what are the harmful (or unwanted) functions. If we apply that concept on an anti-virus system we can find the actual anti-virus requirements of an end-user and how much of it he is getting from an anti-virus program. Unwanted Functions Useful functions of Anti-virus program The Anti-Virus System A user gets an anti-virus program with a view to get rid of one type of problem, i.e., virus infection. But unfortunately after installing the anti-virus he gets into more and more problems of different types. The problem begins at the time of searching for a good anti-virus and continues throughout the life afterwards during scanning, updating, upgrading, renewing, reinstalling etc. Is Anti-Virus a Necessary Evil, by Umakant Mishra 3

The concept of Ideality tells us that the Ideal anti-virus system should consist of all useful functions and should be void of any harmful functions. But this feature of ideality is not easy to achieve. While improving the anti-virus system in this direction we come across various different contradictions. When we try improving one part (or aspect or functionality) of the anti-virus system it results in worsening another part (or aspect or functionality) of the system. These situations are called contradictions. Defining the contradictions help us clearly visualize what is desirable and what is not desirable in a system 2. We will not discuss the drawbacks and limitations of anti-virus systems as we have discussed it earlier in separate articles 3. We will just illustrate a few contradictions solving which can eliminate the evilness of an anti-virus program. 4. Using contradictions to differentiate what is Useful and what is Evil Contradictions are conflicting situations in a system where improving one parameter of the system affects another parameter of the system which results in a deadlock situation. For example, scanning all types of viruses requires a lot of system resources thereby makes a system slow. In this example, scanning is desirable but affecting system performance is undesirable. Before solving a problem it is important to define a problem. Formulating the right contradiction defines the exact nature or technicality of the problem and helps to solve the problem in the right way. The following are some of the problems faced by users presented in the form of contradictions. These contradictions clearly differentiate as what is desirable and what is undesirable in an anti-virus system. 4.1 The problem of selection and procurement Selection and procurement of the right anti-virus product is a difficult job for an ordinary computer user. The user has to compare various aspects of the product like the price of the anti-virus, renewal costs, user friendliness, performance, reliability, load on computer resources etc. An ordinary user cannot be sufficiently knowledgeable to evaluate various aspects of an anti-virus software in order to choose the right product. 2 Refer to other articles on contradictions in the reference. 3 Umakant Mishra, Methods of virus detection and their limitations, http://papers.ssrn.com/abstract=1916708 Is Anti-Virus a Necessary Evil, by Umakant Mishra 4

The common user wants to install an anti-virus program that is best in its performance but cheapest in price. But choosing the best antivirus is not easy even for an experienced technocrat. Even specialized organizations engage full time professionals for doing anti-virus evaluations. The common user wants to use the best anti-virus but does not want to spend time on evaluating anti-virus products. 4.2 Problem of Anti-Virus renewal Even if a person buys an anti-virus product his difficulties are not over. In order to ensure continuity of anti-virus service, the current day anti-virus venders renew the product by automatically taking money from the credit card numbers given by the customers. Although the problem of forgetting about renewing of the antivirus is solved, this mechanism leads to other problems as below. If the customer does not opt for automatic renewal then he may forget to renew the anti-virus product at the end of the year which may result in discontinuance of the anti-virus service. On the other hand if he opts for automatic renewal then the money will be taken from his credit card even if he has stopped using that product. The customer wants an automatic renewal but he doe not to pay money if he has already discontinued using that product. 4.3 Problem of updating Virus Database With the current mechanism of virus detection, installing an anti-virus program is not enough to prevent viruses. One has to update the virus definition database on a regular basis. But updating the virus database is a boring job and the user often avoids to update until the virus affects him again. We want to scan for the latest viruses but we don t want to download the latest virus database from the Internet because it is a boring and time consuming job. Even if we update the virus database we don t want to spend time and resources for the purpose. Is Anti-Virus a Necessary Evil, by Umakant Mishra 5

4.4 Problem of Scanning Time The continuous increase in the population of viruses increases the size of signature database which in turn increases the required scanning time. With hundreds of thousands of possible virus types and hundreds of gigabytes of file storage a complete virus scan can take an enormous time which is simply not acceptable to any user. If a scanner includes less number of signatures or less number of algorithms then there is possibility of some viruses being escaped. On the other hand if a scanner includes all available signatures and all possible algorithms then the scanning will take very long time. We want to apply more scanning methods to detect all types of viruses, but at the same time we want to apply less scanning methods to finish the scanning fast. 4.5 Problem of system performance Running an anti-virus consumes significant amount of system resources and affects the system performance negatively. An anti-virus loaded system takes more time to boot, more time to shutdown and runs slow while executing other programs. That s why many users don t like running an anti-virus. We want to run an anti-virus to keep the computer free from viruses. But we don t want the other programs to run slow because of the burden of anti-virus on the computer. In other words, we want the anti-virus to scan the computer, but we don t want it to affect the performance of other programs. 4.6 Problem of false positives There are situations where the anti virus program finds a file to be infected because of insufficient heuristics. Some device drivers are stopped because of false positives. In other cases the anti-virus finds that a system file has been modified but it cannot be sure about whether the file has been modified by a virus or by the user. In such a situation, if the program generates a virus alarm it may lead to a false positive. Is Anti-Virus a Necessary Evil, by Umakant Mishra 6

If the anti-virus program is not definitive about a suspicious alternation in a system file and raises a virus alarm then it may lead to a false positive. On the other hand if it ignores such a suspicious alteration then it may lead to a false negative. Both the situations are dangerous. 5. Summary and Conclusion While the anti-virus has become a necessity, it has many negative impacts on our day-to-day computer usage. The anti-virus frequently connects to internet to download its updates and patches and consumes our Internet bandwidth. When the anti-virus scans the computer, it consumes significant amount of system resources thereby making all other programs running slow. An anti-virus program consumes more memory and processor than an average harmful virus. Hence, the anti-virus program is considered as a necessary evil by almost all users. While there is no problem of it being necessary, there is a need to make it free from its evil characteristics. This is possible by finding and eliminating contradictions within the anti-virus system. The TRIZ method of defining contradictions clearly points out the conflicts in the system, showing what is necessary (or useful or desirable) and what is not necessary (or harmful or undesirable). However, there are also contradictions in the super-system of an anti-virus system. While the end user wants a virus-free environment and does not want to see any computer virus in the world, the anti-virus developer does not want the same. The anti-virus developer wants some virus to survive for the survival of their business. Solving contradictions at higher level in super-systems can lead to tremendous results. Reference: 1. Umakant Mishra, Using TRIZ for Anti-Virus Development- Building better software through Continuous Innovation, 2013, http://pothi.com/pothi/book/umakant-mishra-using-triz-anti-virusdevelopment 2. Umakant Mishra, An Introduction to Computer Viruses, http://papers.ssrn.com/abstract=1916631 Is Anti-Virus a Necessary Evil, by Umakant Mishra 7

3. Umakant Mishra, An Introduction to Virus Scanners, http://papers.ssrn.com/abstract=1916673 4. Umakant Mishra, Methods of Virus detection and their limitations, http://papers.ssrn.com/sol3/papers.cfm?abstract_id=1916708 5. Umakant Mishra, Solving Virus Problems by Anti-Virus Developers - A TRIZ Perspective, http://papers.ssrn.com/sol3/papers.cfm?abstract_id=1978385 6. Umakant Mishra, Solving Virus Problems by Computer Users- a TRIZ perspective, Available at SSRN: http://ssrn.com/abstract=1977308 or http://dx.doi.org/10.2139/ssrn.1977308 7. Umakant Mishra, Solving Virus Problems by System Administrators- a TRIZ perspective, http://papers.ssrn.com/abstract=1977496 8. Umakant Mishra, Introduction to the Concept of Ideality in TRIZ, TRIZsite Journal, available at http://papers.ssrn.com/abstract=2273178 9. Umakant Mishra, The Ideal IFR is no IFR- Criticism to the TRIZ concept of Ideality, http://ssrn.com/abstract=2282002 10. Umakant Mishra, Improving Speed of Virus Scanning- Applying TRIZ to Improve Anti-Virus Programs, http://papers.ssrn.com/abstract=1980638 11. Umakant Mishra, Overcoming limitations of Signature scanning - Applying TRIZ to Improve Anti-Virus Programs, http://papers.ssrn.com/abstract=1980629 12. Umakant Mishra, Improving Speed of Virus Scanning- Applying TRIZ to Improve Anti-Virus Programs, TRIZsite Journal, Apr 2007 http://papers.ssrn.com/abstract=1980638 13. Umakant Mishra, Finding and Solving Contradictions of False Positives in Virus Scanning, available at http://arxiv.org/abs/1306.4652 14. Umakant Mishra, Contradictions in Improving Speed of Virus Scanning, TRIZsite Journal, May 2012, available at http://arxiv.org/abs/1306.4660 15. Umakant Mishra, How do Viruses Attack Anti-Virus Programs, TRIZsite Journal, Jun 2012, available at http://arxiv.org/abs/1307.5420 Is Anti-Virus a Necessary Evil, by Umakant Mishra 8

About the author After working for more than 18 years in various fields of IT in different organizations Umakant is currently carrying out independent research on TRIZ and IT since 2004. He last worked as Director and Chief Technology Officer (2000-2004) in CREAX Information Technologies (Bangalore). Before that he worked as IS/IT manager (1996-2000) for ActionAid India (Bangalore). Umakant is a Master in Philosophy (MA), Master in Business Administration (MBA), Bachelor in Law and Logic (LLB), Microsoft Certified Systems Engineer (MCSE+I), Certified Novel Engineer (CNE), Master Certified Novell Engineer (MCNE), Certified Intranet Manager (CIM), Certified Internet Professional (CIP), Certified Software Test Manager (CSTM) and holds many other global IT certifications. Umakant has authored the books "TRIZ Principles for Information Technology", Improving Graphical User Interface using TRIZ, Using TRIZ for Anti-Virus Development etc. and working on a book on Management Information Systems. Many of his articles are available in SSRN elibrary (http://ssrn.com/author=646786), bepress (http://works.bepress.com/umakant_mishra), Arxiv (http://arxiv.org/a/mishra_u_1) etc. More about Umakant is available at http://umakantm.blogspot.in. Is Anti-Virus a Necessary Evil, by Umakant Mishra 9

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback