Whom do you trust?
Published: 06 Feb 2006
A recent survey commissioned by IBM states that overall user confidence in the Internet is going down as the result of increased phishing and pharming attacks. Thirty-eight percent of the 700 people surveyed do not or will no longer bank online. Thirty-seven percent of those surveyed do not or will no longer provide credit card information online. Fifty percent won't use shared wireless connections in an airport or cafe. Sixty-four percent won't conduct online transactions on a networked computer. And three out of four think they're more likely to become victims of a cybercrime, such as identity theft, as opposed to a physical crime, such as robbery.
Given this erosion of online personal trust, there appears to be plenty of room for security vendors to market themselves as providers of effective desktop and notebook solutions. Later this year, both Microsoft and Symantec will roll out managed online security services, offering everything from remote-controlled antivirus protection to hard drive optimisation in one neat little package. These services will go beyond just providing the necessary software -- they'll include 24/7 remote monitoring of your desktop PC and the automatic application of patches and updates when necessary. Think of it as having an IT staff on call to keep your home computer up and running. This will also create the first real head-to-head competition for the two software giants. But more importantly, it'll force a difficult security question for some users: who do you trust more?
Microsoft OneCare
Back in 2003 when Microsoft bought the Romanian antivirus vendor GeCad, there was considerable speculation whether the software giant would offer a Microsoft-branded antivirus product to compete with Symantec and others, or simply fold such protection into the upcoming Windows Vista operating system. Microsoft did neither and, instead, announced last year that it would create an online service that customers could subscribe to annually that would deliver full technical support for the security and overall health of their PCs. Now available in a free public beta, Microsoft OneCare offers antivirus, anti-spyware and anti-phishing tools, as well as disk defragmentation tools plus backup and recovery solutions. The final cost of the service has not yet been announced.
Given the increasing size and complexity of boxed Internet Security suites, making OneCare a downloadable service makes sense. Microsoft can add and subtract tools and features behind the scenes without the end user having to uninstall and reinstall apps. But the OneCare beta came under fire last week for supporting an insecure outbound firewall setting as default. And, frankly, having Microsoft monitor and fix your broken computer strikes me as disingenuous. I've already called Microsoft's service 'SopranoCare', since the software giant seems to be asking for 'protection' money from its users. It's like Microsoft's saying to the customer, 'yeah, we wrote shoddy code, but pay us an annual fee, and we'll protect you from viruses and other malicious code'.
Symantec's Genesis
Symantec is also working on a managed-service solution code-named Genesis, which will include features that run the gamut from antivirus to disk optimisation. Tom Powledge, director of product management at Symantec, says that with Genesis, the company is starting from scratch, taking components from its existing standalone security and performance products and revisiting the code, perhaps moving away from current signature-based dependencies that date back to the early 1980s. Symantec is looking to streamline Genesis, optimising cutting-edge behaviour-based heuristic tools obtained from its recent purchase of WholeSecurity. The final cost has not been announced.
Symantec's solution, I think, is better. First, Symantec is not Microsoft, so at least you get the benefit of a third party observing the health of your Microsoft-OS system. Also, Symantec has its own worldwide threat system: it owns Network Operations Center, with thousands of systems worldwide creating an up-to-the-minute snapshot of the Internet's health. Symantec should, in theory, be able to tweak its Genesis behaviour rules on individual desktops worldwide in a flash to respond to emerging threats. Say a threat comes down the line that's not related to Microsoft: will Microsoft have the same fast turnaround as Symantec? I wouldn't hold my breath. On the other hand, who's to say that Microsoft won't start supplying its Windows security updates to its OneCare customers first, then later to the general public?
| Microsoft and Symantec's solutions compared | ||
|
| ||
| OneCare (Microsoft) |
Genesis (Symantec) | |
|
| ||
| Antivirus | yes | yes |
| Anti-spyware | yes | yes |
| Firewall | yes | yes |
| Automatic Windows updates | yes | no |
| Backup to CD, DVD | yes | yes |
| Internet backup | no | yes |
| Defragments hard drives | yes | yes |
| Removes unnecessary files | yes | yes |
| Boxed edition available | yes | yes |
|
| ||
But...Symantec?
Over the years, I've taken Symantec's individual consumer products to task for being out-of-step with today's security market, and we've granted Editors' Choice awards to other vendors in our anti-virus, antispam, and Internet Security suites roundups. That said, credit should be given where it's due. Of late, Symantec has been taking the lead within the security community by helping to create a new anti-spyware coalition; Symantec was recently one of the principal partners in announcing the first-ever standardised testing platform for antispyware software. Rolling out a new managed-care solution for desktops strikes me as another step in the right direction -- assuming, that is, that the company really does improve the products and services it offers.
Symantec is not without its own Microsoft-security moments, of course. There was the recent disclosure that a long-time feature within Norton SystemWorks that allows you to undelete deleted material can also be described (and used) as a rootkit. There are also recent buffer overrun issues within Norton AntiVirus.
Any other choices? Perhaps
Microsoft and Symantec are not alone in planning online managed-security solutions. The pieces of the puzzle exist within other security giants, as well; Trend Micro, McAfee, and CA (formerly Computer Associates) have all purchased smaller security and PC-performance vendors in the last few years and could easily announce similar service plans at any time. As software moves away from boxed media distribution and becomes a strictly downloadable service option in the near future, the question becomes not whether online managed security makes sense for desktop users, but from whom? Whom do you trust?
Related articles
Your antivirus software has B.O.
Tech Guide Security researchers are seeking the next big flaw in Internet Explorer, but is anyone checking the security programs? One researcher has found that most antivirus applications suffer from critical buffer-overflow errors. Fortunately, most security vendors are responsive. [12 Dec 2005]
Windows Vista December CTP
Preview Microsoft's December Community Technology Preview release of Vista brings the fledging operating system one step closer to being feature complete. Learn what Vista has in store for you. [20 Dec 2005]
Will Windows Vista eliminate third-party security applications?
Buyer's Guide Among the many changes seen in early releases of the new Windows Vista operating system, Microsoft is adding several built-in security applications that could make third-party security software unnecessary -- or could they? [09 Jan 2006]
Did you find this article useful?
45 out of 101 people found this useful
Full Talkback thread
1 comment
