How it works
Patented technology
FinalAV Security is an anti-virus based on patented technology with no zero-day vulnerability and no signature updates; truly scalable and commercially compelling.
The theoretical principle behind FinalAV’s technology is that “the security software only needs to enforce policies to ensure than software that is capable of virus behaviour is certified by the developer, thus enabling prosecution if malicious behaviour occurs”.
FinalAV Security is an anti-virus based on patented technology with no zero-day vulnerability and no signature updates; truly scalable and commercially compelling.
The theoretical principle behind FinalAV’s technology is that “the security software only needs to enforce policies to ensure than software that is capable of virus behaviour is certified by the developer, thus enabling prosecution if malicious behaviour occurs”.
The burden of protection shifts to the developer from the users and security companies
Under the new security framework, if you are a software developer and your product needs to perform functions that would also be required by a virus (e.g. create copies of itself, create or modify executable files, use cryptographic functions, access non-secure Internet sites, etc), then you need to authenticate your product.
This is not unlike the approach in other industrial sectors: would anybody seriously consider installing machinery in one’s manufacturing plant that is developed by an unknown vendor who is not legally liable if the machinery actually behaves maliciously effectively destroying your plant?
Under the new security framework, if you are a software developer and your product needs to perform functions that would also be required by a virus (e.g. create copies of itself, create or modify executable files, use cryptographic functions, access non-secure Internet sites, etc), then you need to authenticate your product.
This is not unlike the approach in other industrial sectors: would anybody seriously consider installing machinery in one’s manufacturing plant that is developed by an unknown vendor who is not legally liable if the machinery actually behaves maliciously effectively destroying your plant?
The core of FinalAV Security’s solution is the Security Policies Enforcement Engine (SPEE), which takes care of uniquely identifying the authors behind each software module, and based on a set of security policies determine which actions are allowed or note in a computer system.
Allows prosecution of hackers... so a deterrent
If you’re a hacker, you need to understand that you can be legally prosecuted if your authenticated software acts maliciously… will you still go ahead? And if you don’t authenticate it, the security software layer will effectively cripple its malicious functionality.
Allows prosecution of hackers... so a deterrent
If you’re a hacker, you need to understand that you can be legally prosecuted if your authenticated software acts maliciously… will you still go ahead? And if you don’t authenticate it, the security software layer will effectively cripple its malicious functionality.
Conclusion: a new security framework with clear advantages over the legacy anti-virus
1. No zero-day vulnerability - stops threats even if they have never been detected in the 'wild'
2. No signature updates, which makes it safer, simpler and cheaper; safer because you cannot 'go outdated', simpler because there are no signature subscriptions to keep updated, and cheaper because not having to run a virus lab FinalAV can afford lower prices and still get better margins
3. Allows prosecution of hackers via the digital signatures, acting as a deterrent; this is the only solution in the market that attacks the root of the problem (i.e. the hacker's way of living)
4. A proactive, not a reactive solution; in the old signature based system, somebody has to get infected before protection will be available
5. No 'false positive' problems that are the result of trying to use the signature based approach to stop polymorphic viruses; not a 'false positive' can cripple a system
6. Scalable solution, as it does not depend on the 'virus lab services' to continually detect malware in the wild, create signatures, test them, and distribute them
1. No zero-day vulnerability - stops threats even if they have never been detected in the 'wild'
2. No signature updates, which makes it safer, simpler and cheaper; safer because you cannot 'go outdated', simpler because there are no signature subscriptions to keep updated, and cheaper because not having to run a virus lab FinalAV can afford lower prices and still get better margins
3. Allows prosecution of hackers via the digital signatures, acting as a deterrent; this is the only solution in the market that attacks the root of the problem (i.e. the hacker's way of living)
4. A proactive, not a reactive solution; in the old signature based system, somebody has to get infected before protection will be available
5. No 'false positive' problems that are the result of trying to use the signature based approach to stop polymorphic viruses; not a 'false positive' can cripple a system
6. Scalable solution, as it does not depend on the 'virus lab services' to continually detect malware in the wild, create signatures, test them, and distribute them