Dazuko: an open solution to facilitate 'on-access' scanning

John Ogness H+BEDV

Dazuko: an open solution to facilitate 'on-access' scanning

One of the most fundamental forms of virus protection is at the file access level. By scanning files as they are opened or executed, malicious code can be blocked before having an opportunity to cause damage. However, with the constant evolution and availability of various operating systems, there is a continual redundant effort by anti-virus organizations to implement file access monitoring. This results in variable performance and a lack of support for certain platforms. This paper presents an open source project, Dazuko, which provides a standard interface for handling file access control. The project aims at developing the Dazuko module to work with many different operating systems while maintaining a common interface. By providing the anti-virus community with an open file access control standard, a broad range of supported systems with reliable performance can be established.

Poll

How should software and OS patching/security updates be managed?
Manually, at the user's discretion
Automatically via an optional, user-defined schedule
Automatically via a fixed, but optional schedule
Automatically via a fixed schedule, on by default with opt-out system
Automatically and silently, with no option to run unpatched

Leave a comment
View 19 comments
Jobs Career Sidebar

Virus Bulletin

In this month's magazine:
  • Same malware, different code
  • Can you spare a seg?
  • Kernel mechanics of Rustock
  • Early warning approaches to combat typosquatting
  • The challenges of collecting and monitoring URLs that point to malware
  • Norman Network Protection Appliance
  • Anti-spam comparative review July 2009
Virus Bulletin 07 2009
Subscribe now!
Virus Bulletin currently has 165,680 registered users.