Presentation is loading. Please wait.

Presentation is loading. Please wait.

Protecting your mobile devices away from virus by a cloud-based approach Wei Wu.

Published byLorena Underwood Modified over 6 years ago

Similar presentations

Presentation on theme: "Protecting your mobile devices away from virus by a cloud-based approach Wei Wu."— Presentation transcript:

1 Protecting your mobile devices away from virus by a cloud-based approach
Wei Wu

2 Cloud Computing Provision of computational resources on demand via a computer network Servers in data center provide high quality computation services

3 Resource poverty of mobile devices versus fixed devices
The disparity between the resource constraints of mobile and fixed devices will remain and must be accounted for in the types of application selected for mobile cloud computing

4 Mobile Cloud Computing
Users do not need to have highly technical hardware to use applications as complex computing operations are run within the cloud Offload the computer-intensive applications onto ubiquitous, unlimited computing resources in the cloud

5 Application and cloud infrastructure mapping
Security defense deployment Computation intensive Real-time monitoring Energy consuming

6 What is Anti-virus engine?
The engine, the core of any anti-virus product, is a software module that is purpose-built to find and remove malicious code. The anti-virus Engine provides Web and mail security Archiving and fax Networking security

7 Migrate the anti-virus deployment to the cloud
Anti-virus engine running on the cloud instead of running on the mobile devices energy saving provide complex deployment: multiple anti-virus engines working together

8 Detection Rate of AV engines

9 Single AV engine is not enough
There is no single anti-virus engine on the market that is always the fastest and most effective at identifying viruses, Trojans and other threats. Different Anti-Virus Scan Engine has different response time A layered scanning solution that combines multiple engines to greatly increase changes of having at least one of those virus engines updated on time

10 Cloud-Based Anti-virus Approach
Malware detection on end hosts based on providing anti-virus as a cloud network service Enable identification of malicious and unwanted software 10 AV engine: Avast, AVG, BitDefender, ClamAV, F-Prot, F-Secure, Kaspersky, McAfee, Symantec, and Trend Micro 2 behavioral engines (Norman Sandbox and CWSandbox)

11 Cloud-Based AV Approach
Two Key Changes Antivirus as a network service Multiple, heterogeneous detection engines in parallel Benefits better detection of malicious software enhanced forensics capabilities retrospective detection improved deployability and management 10 anti-virus engines and 2 behavioral detection engines

12 Anti-Virus Engine – ClamAV
Clam AntiVirus is an open source anti-virus toolkit for UNIX, designed especially for scanning on mail gateways It provides a number of utilities including a flexible and scalable multi-threaded daemon, a command line scanner and advanced tool for automatic database updates The core of the package is an anti-virus engine available in a form of shared library

13 Deployment Architecture
HTTP Antivirus Proxy a proxy with a ClamAV anti-virus scanner continuous, non-blocking downloads and smooth scanning of dynamic and password protected HTTP traffic HAVP anti-virus proxy has a parent and transparent proxy mode It can be used with squid or standalone Features HTTP Antivirus proxy Multiple scanner support at the same time Scans complete incoming traffic Smooth scanning of dynamic and password protected traffic Can used with squid or other proxy Parent proxy support Transparent proxy support Process change to defined user and group Use Clamav (GPL antivirus) Written in C++

14 Deployment Architecture
HAVP anti-virus proxy performs the parent mode and the transparent proxy mode in separate deployments Squid: Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more; Provide Access Control List for filtering

15 What is going to be shown?
After being successfully deployed, try this link

16 Conclusion The cloud-based anti-virus approach is making use of the powerful cloud, providing comprehensive defenses. Offloading the work to the cloud, the mobile devices will save more energy.

17 Thank you! Any Questions?

18 References A. Carroll and G. Heiser. An Analysis of Power Consumption in a Smartphone. In Proceedings of the 2010 USENIX Annual Technical Conference Next Generation AntiVirus – Cloud AV Configuring Squid & HAVP(ClamAV) in Ubuntu J. Oberheide, K. Veeraraghavan, E. Cooke, J. Flinn, F. Jahanian, Virtualized In-Cloud Security Services for Mobile Devices. MobiVirt '08 Proceedings of the First Workshop on Virtualization in Mobile Computing ACM New York, NY, USA, 2008

Download ppt "Protecting your mobile devices away from virus by a cloud-based approach Wei Wu."

Similar presentations

Unified Communications Bill Palmer ADNET Technologies, Inc.

Unified Communications Bill Palmer ADNET Technologies, Inc.
1 Effective, secure and reliable hosted email security and continuity solution.

1 Effective, secure and reliable hosted security and continuity solution.
Introducing WatchGuard Dimension. Oceans of Log Data The 3 Dimensions of Big Data Volume –“Log Everything - Storage is Cheap” –Becomes too much data –

Introducing WatchGuard Dimension. Oceans of Log Data The 3 Dimensions of Big Data Volume –“Log Everything - Storage is Cheap” –Becomes too much data –
Chapter 22: Cloud Computing and Related Security Issues Guide to Computer Network Security.

Chapter 22: Cloud Computing and Related Security Issues Guide to Computer Network Security.
Introducing Kaspersky OpenSpace TM Security Introducing Kaspersky ® OpenSpace TM Security Available February 15, 2007.

Introducing Kaspersky OpenSpace TM Security Introducing Kaspersky ® OpenSpace TM Security Available February 15, 2007.
1 Trend Micro InterScan Web Security Suite ™ 2.5 戴 燊 Samson Tai 趨勢科技 台灣區技術行銷部 技術顧問.

1 Trend Micro InterScan Web Security Suite ™ 2.5 戴 燊 Samson Tai 趨勢科技 台灣區技術行銷部 技術顧問.
Kaspersky Lab: The Best of Both Worlds Alexey Denisyuk, pre-sales engineer Kaspersky Lab Eastern Europe 5 th April 2012 / 2 nd InfoCom Security Conference.

Kaspersky Lab: The Best of Both Worlds Alexey Denisyuk, pre-sales engineer Kaspersky Lab Eastern Europe 5 th April 2012 / 2 nd InfoCom Security Conference.
Kaspersky Open Space Security: Release 2 World-class security solution for your business.

Kaspersky Open Space Security: Release 2 World-class security solution for your business.
Customized solutions. Keep It Secure Contents  Protection objectives  Endpoint and server software  Protection.

Customized solutions. Keep It Secure Contents  Protection objectives  Endpoint and server software  Protection.
Towards Extending the Antivirus Capability to Scan Network Traffic Mohammed I. Al-Saleh Jordan University of Science and Technology.

Towards Extending the Antivirus Capability to Scan Network Traffic Mohammed I. Al-Saleh Jordan University of Science and Technology.
Plan Introduction What is Cloud Computing?

Plan Introduction What is Cloud Computing?
1. 2 Presentation outline » One antivirus engine is not enough » IT pain points » The product » Testimonials » Kudos » Conclusion.

1. 2 Presentation outline » One antivirus engine is not enough » IT pain points » The product » Testimonials » Kudos » Conclusion.
Final Presentation 4/21/2010 By Guofu Xiong, Yuli Deng.

Final Presentation 4/21/2010 By Guofu Xiong, Yuli Deng.
©2003–2008 Check Point Software Technologies Ltd. All rights reserved. CheckPoint new security architecture and R70 highlights.

©2003–2008 Check Point Software Technologies Ltd. All rights reserved. CheckPoint new security architecture and R70 highlights.
Cloud Computing.

Cloud Computing.
TRUSTPORT PRODUCT PORTFOLIO Marcela Parolkova Sales Director.

TRUSTPORT PRODUCT PORTFOLIO Marcela Parolkova Sales Director.
Authors:Jon Oberheide, Kaushik Veeraraghavan, Evan Cooke, Jason Flinn, Farnam Jahanian Electrical Engineering and Electrical Engineering and Computer Science.

Authors:Jon Oberheide, Kaushik Veeraraghavan, Evan Cooke, Jason Flinn, Farnam Jahanian Electrical Engineering and Electrical Engineering and Computer Science.
Pre-Release Information Aug 17, 2009 Trend Micro Web Gateway Security InterScan Web Security Virtual Appliance v5 Advanced Reporting and Management v1.

Pre-Release Information Aug 17, 2009 Trend Micro Web Gateway Security InterScan Web Security Virtual Appliance v5 Advanced Reporting and Management v1.
ClamAV An Introduction PacNOG I Workshop June 21, 2005 Nadi, Fiji Hervey Allen.

ClamAV An Introduction PacNOG I Workshop June 21, 2005 Nadi, Fiji Hervey Allen.
Exchange Deployment Planning Services Exchange 2010 Complementary Products.

Exchange Deployment Planning Services Exchange 2010 Complementary Products.

Similar presentations

Ads by Google