Showing posts with label anti-virus software. Show all posts
Showing posts with label anti-virus software. Show all posts

15 May 2009

Georgia Learns Why Open Source is Better

Georgia has some concerns about closed-source code:

Kaspersky anti-virus, one of the most popular software programmes worldwide, has unofficially been declared a spy programme in Georgia. State organizations are avoiding installing Kaspersky, afraid of information leaks.

“The reason is that Kaspersky anti-virus is projected by Eugene Kaspersky, CEO of Kaspersky Lab, who is of Russian origin. Officials from the Ministry of Defence are afraid that with the help of Kaspersky software it will be possible for the leak of confidential news to occur,” George Kofenlu, Product Manager of UGT, told The FINANCIAL.

Maybe they'd like to start using ClamWin: free and open to scrutiny.

Follow me @glynmoody on Twitter or identi.ca.

09 April 2008

Security? - Don't Bank on It

A useful article here dissecting what's wrong with the latest version of the UK Banking code, "the voluntary consumer-protection standard for UK banks", which was released last week:

Until the banks are made liable for fraud, they have no incentive to make a proper assessment as to the effectiveness of these protection measures. The new banking code allows the banks to further dump the cost of their omission onto customers.

When the person responsible for securing a system is not liable for breaches, the system is likely to fail. This situation of misaligned incentives is common, and here we see a further example. There might be a short-term benefit to banks of shifting liability, as they can resist introducing further security mechanisms for a while. However, in the longer term, it could be that moves like this will degrade trust in the banking system, causing everyone to suffer.

The House of Lords Science and Technology committee recognized this problem of the banking industry and recommended a statutory change (8.17) whereby banks would be held liable for electronic fraud. The new Banking Code, by allowing banks to dump yet more costs on the customers, is a step in the wrong direction.

I also wonder what the banks' attitude to people using GNU/Linux systems might be, given the following requirement:

Online banking is safe and convenient as long as you take a number of simple precautions. Please make sure you follow the advice given below.

• Keep your PC secure. Use up-to-date anti-virus and spyware software and a personal firewall.

Since GNU/Linux users tend not to run anti-virus programs, and don't use traditional firewalls: does that mean they're always liable?

26 January 2007

There is no War on...Botnets

After the War on Drugs, and the War on Terror, now, it seems, we are to have a War on Botnets:

Mr Toure said that whatever the solution, the fight against botnets was a "war" that could only be won if all parties - regulators, governments, telecoms firms, computer users and hardware and software makers - worked together.

But it is a truth universally acknowledged, that as soon as you declare "war" on some amorphous entity like "drugs" or "terror" or "botnets", you've already lost, because you shift from the practical to the rhetorical.

This is all about security theatre: talking tough instead of acting intelligently. Sorting out botnets does not require a "war": it's simply a matter of telling Windows users the truth about their bug-infested system, getting them to use a firewall and anti-virus software and - maybe, one day - getting them to understand that downloading or opening unknown software is hugely risky.