Dazuko: an open solution to facilitate 'on-access' scanning

John Ogness H+BEDV

Dazuko: an open solution to facilitate 'on-access' scanning

One of the most fundamental forms of virus protection is at the file access level. By scanning files as they are opened or executed, malicious code can be blocked before having an opportunity to cause damage. However, with the constant evolution and availability of various operating systems, there is a continual redundant effort by anti-virus organizations to implement file access monitoring. This results in variable performance and a lack of support for certain platforms. This paper presents an open source project, Dazuko, which provides a standard interface for handling file access control. The project aims at developing the Dazuko module to work with many different operating systems while maintaining a common interface. By providing the anti-virus community with an open file access control standard, a broad range of supported systems with reliable performance can be established.

 del.icio.us  digg this! digg this

Quick Links

Poll
The Japanese government is reported to have commissioned a 'defensive virus'. Is 'defensive' malware ever a good idea?
Yes
No
I don't know
Leave a comment
View 10 comments

99 Subscription Promo

Virus Bulletin
In this month's magazine:
  • Living the meme
  • If Svar is the answer...
  • Static analysis of mobile malware
  • And the devil is six: the security consequences of the switch to IPv6
  • Behind enemy lines: reporting from the CCC 28C3 Congress
Virus Bulletin 02 2012
Subscribe now!

Virus Bulletin currently has 224,204 registered users.