Recently, security experts in the field – released a new version of McAfee's consumer security package, which is for the McAfee anti-virus market in 2009 to prepare a gift, with security software on this question, the reporter interviewed close to the McAfee Asia-Pacific product manager of the Miss Lin Ailing and Marketing Manager Mr. Gao Qiang, McAfee The McAfee Security Suite 2009, as well as the development of a detailed interpretation. Lin Ailing
: in 2009 there are three key products, the first is the timeliness of protection; products on the user's experience, in addition to the protection other than that of non-interference; there is a comprehensive, all-round, only to the user can more fully Feelings. What is the timeliness of
? update is timely, if not up-to-date protection for users, there is no effect, the update is the most important. Non-interference, a lot of time users will find a lot of anti-virus software will prevent their access and use of the machine, so to achieve the best protection and the use of computer users to meet the needs of the balance between is particularly important. Finally, the issue is a comprehensive, on a single machine can have a lot of it is imported, security threats through a lot of ways to influence the computer, it must be a comprehensive security products to protect computers is to be taken into account.
AvertLab is the world's McAfee virus research center, from the year AvertLab2008 findings of view: Every 30 seconds a malicious software; 38% of the malicious software is emerging in 2007, and we found that malicious software is not the main purpose of Destruction of user information, but the economic benefits. Lin Ailing
: From our data, released in time to update the virus, usually competitors in the 3600 second time about an update release. This is a release from their point of the yuan, publish updates to each user, each of the customers that have been updated, this will be very difficult to estimate the time. Other vendors time to update the 2009 version has been upgraded to reach 900 seconds. McAfee and the time? 0.1 seconds, we have to Zenmeyangzuo? This is mainly due in 2009 issued by the new technology: ActiveProtection, the timeliness of protection. For example: the user received a new message or the Internet to download new software, the software will be scanned on this machine. If the scan at a time when it is not found in the existing library of HIV virus, but we suspect that the documents are in doubt, we will be able to mark up this application of the McAfee virus heuristic scanning technology, in the file after the tag Transfer to a back-end database, the back-end databases from various channels to collect information to determine the suspicious files for viruses, will determine the outcome of feedback to the client.
So you can imagine, this is not an update, this time of 0.1 seconds is a DNS response time, why do so quickly access the information? because we only put a fingerprint file to our server to judge, said that the server Or is not a virus, and then come back feedback, so that is why we can reach 0.1 seconds. In 0.1 seconds when the file can be isolated.
question: This is the virus to determine suspicious behavior to judge it based on?
Lin Ailing: The act is one of the judge. How to ensure that this act is to determine accurate, McAfee aims to: document screening rate, low false alarm rate. So you can see Avertlabs record, our rate of false positives is very low, how can we reduce the rate of false positives? We ActiveProtection the back-end server is the ultimate core, we all channels can be found in fact a lot of new The virus or malicious software. Avertlab we have a large number of researchers, including: vulnerability researchers, researchers refuse, and so on, so many researchers put their results into the database inside, so the database ActiveProtection is perfect, powerful, we Can be conducted to determine the various aspects, such as web traffic from the judge, to judge from the email, junk e-mail from the judge.
question: If ActiveProtection database does not have such a new virus?
Lin Ailing: The client is ScanEngine heuristic scanning, is the act of judging. After the judge, ActiveProtection database to confirm that this is not a virus? Like you said, the client suspected the documents in question, and its transmission to the back-end server, the server can not find any evidence that this is a virus However, the client can isolate suspicious of this document.
to do a vivid metaphor, you suspect there are problems at home, close the door first before it can be easily dealt with inside the house. Activeprotetion will be able to tell you which emergency room so you can easily deal with the problem.
If you update to protect, it can give you a 900 second update, issued to each of the user's machine, to use at least 1-2 weeks, as there might be problems because the client did not receive updated For example, users do not have a week online.
high-strength: a lot of virus is a need to update the user's confirmation, you need to be confirmed after the upgrade, there will be a certain time period of vulnerability, and to update the update interval there is a gap, this time the virus could easily attack . That is why we have been emphasizing this in a timely manner and customers. Lin Ailing
: from the detection rate, according to data WESTCoastLab we can see, in February 2008 made the detection rate in the trial of McAfee2008 detection rate is 95%, in June 2008 test version of 2009 when, McAfee2009 the Detection rate has increased to 99.5 percent. This would also improve the ActiveProtection due to the technology.
question: ActiveProtection behind the adoption of a specific kind of technology do?
Lin Ailing: heuristic scanning engine used in order to infer whether the suspicious file, from our scanning engine to send the document back-end database of fingerprints, samples of this size in the 100k or so.
question: it's the correct rate is very high? I think this is a suspicious file, and then proceed to really test the virus is found, the correct rate is very high?
Lin Ailing: McAfee2009 use in the home version of the machine, the user does not need to judge Do not want to isolate, automatic-style.
question: ActiveProtection this is not a security cloud?
Lin Ailing: I think we can say so because it is the message sent to the back-end systems, back-end systems to determine to do, if you from this point of view, it should be A cloud computing.
question: I ActiveProtection the trial after the discovery of this function in the software inside does not prompt any user to know how it is not open, open and non-open? I tried for quite some time, is turned on by default.
Gao Qiang: We are on the 14th from ActiveProtection up to the client, that is to say the technology for each user can enjoy, and we can not be defined as the technology goes, the safety net, but we have the virus database Information on the server side, you can just see the (AV) of the measure, which the 09 version, there is in fact a test version of 08, meaning there is no difference between a ActiveProtection, if ActiveProtection the future, a detection rate of this significant improvement, there are a large part of ActiveProtection because of the introduction of this technology.
question: I see you here, with enterprise-class spam protection, you have to write it in the spam protection, rather than e-mail virus protection. I would like to know that you are in the 09 integrated security suite inside it? Out or as a separate part of the 09. Should be a virus mail, spam, then your performance was very high. If you will be able to withstand 99% of the anti-spam, junk e-mail gateway on the need. Lin Ailing
: It should be inside the package. It is necessary to return to the AvertLab, AvertLab is the core of McAfee, whether personal or business-class products, can share the same platform. This means that individual users can enjoy business-class protection of the reasons. In addition ActiveProtection in our enterprise version of the product is there, known as Artemis, and has a market. It should be emphasized that the same database to share, namely: business users from spam, where to get the report will be placed on the database, so the user's personal information to the customer will be.
question: new products on the user experience, the more obvious features of what?
Lin Ailing: We are in full-screen movies, play games, it can not be a disturbance, the product will not be any pop-up window to tell you that a virus or Is updated, does not interfere with you. Possible, CPU important level will be lowered, it will interfere with you watching TV or playing games. All updates are carried out in the background.
in the user's experience, the goal of interference from this point of view, McAfee09 years have done a lot of optimization, for example, with our products in 2008 compared to upgrade the scanning system-wide 13% open the PDF is also to enhance the speed of 19 %, The most important thing is to start the product is 20% so far, many OEM products will be very concerned about the sleep from the start, as well as the resumption of these two points, this year, Microsoft has a lot of projects are very performance-oriented, so that OEM to participate in their most important The user experience is to start the machine performance advantage, which is in our own projects there to investigate the reasons for doing this, because we know so far, the OEM and Microsoft have such a consensus, it is necessary to PC The experience to do the best. The start time must be the number of seconds from sleep should be to restore the number of seconds, and Microsoft now have a tendency, so we will go along with this trend.
questions: speed, I have two questions, one that is as far as I know, McAfee in the past have not done anything to optimize the speed, I would like to know the speed of antivirus software on the optimization in the eyes of McAfee is what kind of Importance? Future will continue to do it? Brbrbr Lin Ailing: will continue to do so. Very simple, because if Microsoft has PCOEM with this trend, the PC is the best speed, we definitely have to go with the trend, as a McAfeeConsumer this, PCOEM is also one of our biggest business, the world's more than 50% of all machines By McAfee to protect, so we must be sure that we will not be affected by OEM machine McAfee product performance. Therefore, we will continue to improve our performance.
Gao Qiang: This is a very important direction, the individual version of the business, the partners account for a very large proportion, in addition to the retail version, like Dell, which is in fact tied up to sell our software The end-users, and Acer, Samsung, NEC, Hewlett-Packard, and so are our software bonding in the notebook or desktop above, so as Microsoft or other OEM manufacturers already have such a consensus should be more user experience Yes, our task is to make this a safe speed, the impact of computer CPU down to the lowest, which is the future development of a one. Lin Ailing
: in June when we have to do in this matter, the 2009 version has been upgraded early next year, we will plan a number of products, users can download the new version, and will continue to have more functions, Better performance.
question: I remember that in 1999-2000 there is a version of McAfee's Tinghuo, then the individual user as if a voice that seems to have suddenly disappeared like?
Lin Ailing: I have heard, there is a period of time McAfee loud, When our Consumerteam not be so great. In the world, we are now in the absence of a global enterprise sub-group and individual user's team, the individual in the Asia-Pacific over the last three years have developed rapidly over the past two years, including the mainland next year will be our focus, we will have the resources On the side, the expansion will be here.
question: the economic crisis on the McAfee area in North America and Europe have any impact?
Gao Qiang: Q3 financial results came out, we have 11 consecutive quarter of double-digit growth has been, Q4, we also estimated double-digit growth in the The entire security vendors inside the camp, from the business point of view, our growth momentum is the first and fourth quarter, we are seeing now is a good development.
question: We are the safety of next year to have a projection? or proceed with investigation and research?
Gao Qiang: We AvertLabs there will be some of the report, to give you time, including some of the behind will be safe virus outbreak Trend, which should be protective, a trend analysis will come out right away, because the end of the year. Are interested, you can McAfeeAvert to take a look at the blog, very regrettable that there is no Chinese, the English are, but there is a lot of fun analysis, I have just read one. Do you know the Internet is now the most threat to the network who were not? (Brad. Pitt), that is what we do fun things.

评论暂缺 »

还没有任何评论。

这篇文章上的评论 RSS feed TrackBack URL

留下评论

发表评论您必须先登录。