Malware Prevention System

C-DAC Hyderabad is currently focusing in the development of end system based Malware Prevention System. Malware Prevention System is an effort to address the problem of untrusted code. There is always a risk in downloading untrusted code due to the possible presence of viruses, worms or other malicious entities. In this ongoing project, no specific malware is considered and any application is treated as untrusted code.  Application's acceptable behaviour is modeled and is enforced at runtime. Application’s behaviour is captured in terms of system calls and arguments, which is analyzed against critical security policies and enforced at runtime. This eliminates the execution of malicious code hidden in the process which is not projected in the model. This solution is being designed for both Windows and Linux operating systems.

Features and Benefits

• Behavior modeling
• Verification of application against critical resource access
• Process Execution Control
• Enforcing the model at run time
• Real Time and automated malware prevention
• Learning acceptable behaviour of applications
• Guard from application exploits and implicit malicious activity
• Fine grained monitoring of file, network, registry & memory access
• Co-existence with other antivirus solutions
• Prevents Zero-day attacks