Thought I share this, AV-TEST will be re-testing Windows 8.1 in May, while Update 1 expect in April. So could Windows Defender perform better next time around.. even though PPHC exists in Windows Defender since December 2013, see links for comments by AV-TEST.
Behavioral Monitoring' and PPCH - TabletPCReview and NotebookReview
Introduced along with hundreds of other features in Windows 8.1, the new security capabilities include PC or tablet-based "behavioral monitoring," along with the cloud-enabled, server-based Provable PC Health (PPCH). Both technologies are designed to protect against "Zero Day" threats and other exploits that haven't shown up yet in antivirus databases.
"Anti-malware solutions that rely solely on signature based detection face big challenges in detecting polymorphic malware and keeping up with new varietals of malware that are released daily. To address this in Windows 8.1 we introduced behavior monitoring capability in Windows Defender. With it we can detect polymorphic and repackaged malware families based on familiar patterns of malicious behavior on the device," said a Microsoft spokesperson, in another email to TPCR.
"Our end user goal of PPCH, as with Windows Defender, is to protect our customers with little or no user interaction and to leverage existing user workflows. Therefore PPCH doesn't include new user experiences and notification mechanisms. We leverage the existing infrastructure and enable them to surface new notifications and actions. For example, if an active keylogger were found and removed from the user's PC, the notification would be presented to the user in the Action Center. In addition, the cloud could initiate an account remediation action like a password reset since the MSA would be at risk. If a more serious malware infection was detected by our cloud Service, we will send immediate signatures to the client which could also trigger a user notification for advanced remediation action. The protection enhancements are designed to be seamless with the current user's experiences."
---
Discussion for AV-TEST Nov/Dec 2013 results - http://malwaretips.com/threads/25-i...-are-put-to-the-test-using-windows-8-1.22660/
Behavioral Monitoring' and PPCH - TabletPCReview and NotebookReview
Introduced along with hundreds of other features in Windows 8.1, the new security capabilities include PC or tablet-based "behavioral monitoring," along with the cloud-enabled, server-based Provable PC Health (PPCH). Both technologies are designed to protect against "Zero Day" threats and other exploits that haven't shown up yet in antivirus databases.
"Anti-malware solutions that rely solely on signature based detection face big challenges in detecting polymorphic malware and keeping up with new varietals of malware that are released daily. To address this in Windows 8.1 we introduced behavior monitoring capability in Windows Defender. With it we can detect polymorphic and repackaged malware families based on familiar patterns of malicious behavior on the device," said a Microsoft spokesperson, in another email to TPCR.
"Our end user goal of PPCH, as with Windows Defender, is to protect our customers with little or no user interaction and to leverage existing user workflows. Therefore PPCH doesn't include new user experiences and notification mechanisms. We leverage the existing infrastructure and enable them to surface new notifications and actions. For example, if an active keylogger were found and removed from the user's PC, the notification would be presented to the user in the Action Center. In addition, the cloud could initiate an account remediation action like a password reset since the MSA would be at risk. If a more serious malware infection was detected by our cloud Service, we will send immediate signatures to the client which could also trigger a user notification for advanced remediation action. The protection enhancements are designed to be seamless with the current user's experiences."
---
Discussion for AV-TEST Nov/Dec 2013 results - http://malwaretips.com/threads/25-i...-are-put-to-the-test-using-windows-8-1.22660/
