Windows Defender runs analysis 90 billion per day through

Microsoft has released a white paper, which describes the evolution of the Windows Defender anti virus and the methods currently used to ward off malicious software. Evolution of malware prevention (PDF) defines “Anti Virus” generally as “a product that prevents malicious programs that infect my device”.

 security (image: Shutterstock)

the conventional definition of anti virus software is now clearly outdated, since it not long ago only to computer viruses go. DS applies also for Windows Defender anti virus. “If you protect more than one billion customers and every day make a decision around 90 billion potentially malicious encounters – then it goes beyond just the traditional antivirus software”, argues in a blog Holly Stewart, principal research manager at Microsoft.

“the original method for the development of antivirus solutions so customers using conventional means to protect, by people writing signatures based on malware analysed by them, essentially – that is as good as dead” continues the Microsoft Manager. Succeeded by now Microsoft, effectively to scale the human expertise. “For any malicious signal that we manually examine, we provide protection for an average additional 4500 threats and 12,000 customers. “That runs on 99.98 percent of the detected threats relative to the 0.02 percent manually examined beyond – a pretty good relationship.”

Microsoft according to 97 percent of malware detected locally on the client system. In addition but it sends suspicious signals, data and files to the cloud-protection system. Heuristic detection, behavior analysis and client-based machine learning models work according to this, to identify these potential threats and to address it in the cloud with their greater computing power. There also hundreds of different machine learning models for simple linear models should run at the same time neural networks up to deep, to make a ruling within milliseconds. The hard work achievements is in the cloud, to avoid affecting the performance of client systems. “

 Windows Defender anti virus processes signals in addition to the cloud (image: Microsoft). Windows Defender anti virus processes signals in addition to the cloud (image: Microsoft).

30 to 40 percent of daily detections of malware at the customer refer according to Stewart on malicious software, which is observed in the ecosystem more than once. Client-based signatures could be effectively used against these types of threats. The remaining encounters handle but for the first time observed threats – and the observed unique attacks and that actually applies signals to 96 percent.

Microsoft sees Windows Defender anti virus as just a key component in the defense against malware and other types of threats. Windows Defender ATP (advanced threat protection), that threat recognition memory and kernel sensors improve creators update Windows 10 and clearly presented results are also designed to safeguard. This security solution protects business users from complex threats. The new technology was been successfully used against zero-day attacks on Windows.

the producers of antivirus software have a very different assessment of Microsoft’s security solutions. Kaspersky Lab about refers to “below-average” test results for Windows Defender. Founder Eugene Kaspersky accuses also anti-competitive behavior of Microsoft because the software concern try using unfair means to replace antivirus software compatible with Defender. Therefore a Kaspersky wants to submit official antitrust complaint to the European Commission.

WEBINAR

what next – BB´s storage & co: the enterprise cloud!

get to know the building blocks of enterprise cloud platform in this audio Webinar. Learn how to achieve maximum freedom and flexibility for your applications. More outcome achieved with less input – specific application examples. [Update: the webinar has already occurred.] Register now and look at the record.

Be the first to comment

Leave a Reply