Problem solve Get help with specific problems with your technologies, process and projects.

Does cloud-based antivirus provide better malware detection?

Expert John Strand explains some of the drawbacks of a cloud-based antivirus system.

Can cloud-based antivirus provide better malware detection than regular antivirus?
Yes, it can. Many antivirus vendors develop different signatures for a given set of malware. However, signatures will differ from one antivirus vendor to another, and some of the antivirus obfuscation techniques that can be employed may not dodge all antivirus products successfully.

However, there is a drawback to this approach. If you wish to implement a cloud-based system, you will need a site license for every product you are planning on implementing. Such an approach can get costly. Personally, I do not believe this to be a viable solution because it is trivial for an attacker to create a virus that can bypass many if not all antivirus products buy testing it at sites line Virus Total, a free website service that scans files for obvious viruses, worms, Trojans and other malware.

I would also recommend looking into other products that take an application whitelist approach to malware defense. With whitelisting, an organization's systems are only allowed to run software that is approved by the IT department. Anything new (including many types malware) is denied by default. Products from Lumension Security Inc., CoreTrace Corp., as well as Cisco Systems Inc's Security Agent show promise in this area.

More information:

  • Learn how cybercriminals were more savvy than ever in 2008.
  • Get the latest news and expert advice on malware and viruses.
  • Dig Deeper on Malware, virus, Trojan and spyware protection and removal

    Have a question for an expert?

    Please add a title for your question

    Get answers from a TechTarget expert on whatever's puzzling you.

    You will be able to add details on the next page.

    Start the conversation

    Send me notifications when other members comment.

    Please create a username to comment.