Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Software
Security Apps
Other security for Windows, Mac, Linux
LMT AntiMalware
Message
<blockquote data-quote="Lenny_Fox" data-source="post: 876465" data-attributes="member: 82776"><p>[USER=86954]@LeMinhThanh[/USER]</p><p></p><p>Thanks for the rapid response, I have another question and a suggestion:</p><p></p><p>Question: when are you planning to move the AI to client side (to prevent overloading your own server)?</p><p></p><p>Suggestion: because your program uses several interesting detection mechanisms (e.g. heuristics, AI and Yara), you could position it as a true client side host intrusion detection system. In this scenario the heuristics, AI and Yara engine only function is to detect something suspicious (the intrusion detection part), next the VirusTotal check is triggered and depending on user setting a block (e.g. more than 10) or a prompt (less than 10 but more than 5 AV's on virus total think it is malware) or a message (less than 5) is shown.</p><p></p><p>This has the advantage that you can fine tune your protection mechanisms, without having to worry about false positives (detection based on your engines, but block is dependant on VT-results and the settings of the user) and you will be allowed to use VT (because your program feeds VT based on its own detection's) and you have a unique selling point (a consumer host intrusion detection system with user configurable VT intrusion prevention check).</p><p></p><p>Regards</p><p></p><p>Lenny</p></blockquote><p></p>
[QUOTE="Lenny_Fox, post: 876465, member: 82776"] [USER=86954]@LeMinhThanh[/USER] Thanks for the rapid response, I have another question and a suggestion: Question: when are you planning to move the AI to client side (to prevent overloading your own server)? Suggestion: because your program uses several interesting detection mechanisms (e.g. heuristics, AI and Yara), you could position it as a true client side host intrusion detection system. In this scenario the heuristics, AI and Yara engine only function is to detect something suspicious (the intrusion detection part), next the VirusTotal check is triggered and depending on user setting a block (e.g. more than 10) or a prompt (less than 10 but more than 5 AV's on virus total think it is malware) or a message (less than 5) is shown. This has the advantage that you can fine tune your protection mechanisms, without having to worry about false positives (detection based on your engines, but block is dependant on VT-results and the settings of the user) and you will be allowed to use VT (because your program feeds VT based on its own detection's) and you have a unique selling point (a consumer host intrusion detection system with user configurable VT intrusion prevention check). Regards Lenny [/QUOTE]
Insert quotes…
Verification
Post reply
Top