Beruflich Dokumente
Kultur Dokumente
AND
SOFT SKILL
PRESENTATION ON
VIRUS
&
ANTIVIRUS
Presented
By,
NITIN PATIL.
Roll No.- 37
Virus
Virus vs. Anti-Virus:
The Arms Race
by---------------------Nitin patil
Outline
Viruses
Anti-Viruses
Discussion
Viruses
A virus is “a program that can ‘infect other programs by
modifying them to include a possibly evolved copy of
itself.” - Fred Cohen
Fred Cohen seems to have been the first to define the
term virus, but the concept had been discussed earlier
and there were some viruses out in the wild before he
began his research.
How does a computer virus identical with a
biological virus?
------------Just as a biological virus injects its own
genetic information into a cell and interferes with
the body’s normal operations, a computer virus is a
program written to interfere with the proper
functioning of a computer. It may damage
programs, delete files, reformat hard disks and
perform other forms of destructive acts.
Viruses example
The WM.Nuclear Microsoft Word macro virus infects Word documents during
opening, saving, and printing by adding a set of macros to them. On April 5th it
attempts to overwrite critical system files, and it occasionally adds the text "STOP
ALL FRENCH NUCLEAR TESTING IN THE PACIFIC!" to the current document.
(Information from Symantec’s security bulletin.)
programmer to write.
Viruses aren’t necessarily big
Cohen reports on a UNIX shell script virus that was only 7 lines long
… and basically any other nasty thing you can not think of.
Isolation
One way to protect against infection is to isolate systems, users, and/or
information to make it difficult or impossible for a virus to spread widely.
Total isolation is a sure cure.
Total isolation probably isn't practical for most users…
possible.
Cohen argues this by proposing a virus that infects only when the
detection algorithm thinks it isn’t a virus.
Anti-virus programs must make do with more limited solutions, such
as scanning for a virus signature.
Virus detection problems
According to Cohen, the following are undecidable:
Detection of a virus by its appearance
Detection of a virus by its behavior
Detection of an evolution of a known virus
Detection of a triggering mechanism by its appearance
Detection of a triggering mechanism by its behavior
Detection of an evolution of a known triggering mechanism
Detection of a virus detector by its appearance
Detection of a virus detector by its behavior
Detection of an evolution of a known viral detector
Known clean system
Some virus detection techniques require you to start from a clean system.
DOS users used clean boot disks to defeat stealth viruses…
What if every UNIX vendor had been infected with Ken Thompson’s
C compiler virus? Even their “clean” distribution media would be
infected…
Discussion-
Anti-virus can win in the
future?
Thanks
You……………………………………