CyberForceField could be the key to desktop security

Traditional desktop security would improve beyond recognition if applications could be controlled to a point where they cannot access any part of the system that they do not need to, according to Alcy Infinity, co-founder of Timesavers International.

The failure of current desktop security practices were highlighted last week when Ivan Krstić, director of security architecture for the One Laptop per Child project, opened the AusCERT 2007 conference by pointing out that modern computer security is based on a premise that was created 35 years ago -- when computers were unconnected.

Krstić said modern computers "run untrusted code every time they visit a Web site".

One possible solution is to virtualise applications so they can only run in a specific area of the computer's memory and only access specific resources, according to Timesavers International's Infinity.

He told ZDNet Australia in a telephone interview on Tuesday, that he has developed a security application called CyberForceField, which has been designed specifically to solve this problem.

"The programs have too much uncontrolled power -- we need to empower the users so they know what programs are running, what they can do and how they can communicate with the Internet.

"We need to monitor every action of the program so it can only do what it is supposed to do from the day they are installed," said Infinity.

The CyberForceField is able to "compartmentalise the hard drive" and ensure programs cannot access resources they do not need, according to Infinity.

"The most secure state of a computer is one where you compartmentalise the hard drive and assign the right files to the right programs. Then you can restrict the behaviour of programs to a specific amount of files instead of the whole hard drive.

"You can then control that your e-mail program is the only program that can access your e-mail folder. Without this, any game or program you install may be able to collect e-mail addresses or check [spy on you]," he said.

Infinity said a trial version of CyberForceField will be available on the company's Web site from 14 June.

• Related stories

• Alerts

Add your opinion

1. Ahhh...hmmm...... Anonymous -- 31/05/07

   ...the Year 2000 called, they want their kernel extensions back !
   
   http://en.wikipedia.org/wiki/SELinux
   
   Geeeeez...how come it ALWAYS takes Windows guys 7 years to catch up ????

   • Reply to comment
   • Reply to story
   • Report offensive content

   1. You beat me to this Anonymous -- 01/06/07

      That's exactly what I was thinking when I read this item - SELinux had it many years ago and with the improved admin tools it's a practical solution today.
      
      And BTW - it can take them much more than 7 years to catch up...

      • Reply to comment
      • Report offensive content

   2. SELinux - NSA conection Anonymous -- 03/06/07

      SELinux has been developed by the NSA.
      The number of backdoors is probably higher than the number of its users.

      • Reply to comment
      • Report offensive content

2. Linux is not the best! Alcy Infinity -- 03/06/07

   Windows with CyberForceField is more secure than Linux. Linux is full of vulnerabilities as well. 10% of web pages contain malicious codes and most servers run Linux. Linux doesn't empower the users enough either. Open source is also open for bugs. Only a few people read the computer codes anyway. The lack of control leads to chaos and Linux is not spared.

   • Reply to comment
   • Reply to story
   • Report offensive content

   1. windows more secure than linux? Anonymous -- 03/06/07

      are you linux people going to let him get away with that?
      
      is anybody going to mention Mac OS?

      • Reply to comment
      • Report offensive content

3. Check this out Anonymous -- 04/06/07

   Symantec On-Demand Protection: provide a Virtual Desktop environment to secure Web-based applications and services. This what I use for my online banking and what not. When you close the app all data in the session is deleted to DOD standards.
   
   More info
   http://www.symantec.com/enterprise/products/overview.jsp?pcid=1322&pvid=1302_1

   • Reply to comment
   • Reply to story
   • Report offensive content

• Just In

• Most Popular

• Most Discussed

Hot Spot - What's Important

Achieve continuous availability with high performance NonStop blade technology

Looking to buy a printer? Our superguide rates the latest printers and shines a light into the industry.

Download Your Microsoft Unified Communications Fact Pack now.

Microsoft Unified Communications - Take your Self Assessment Today.

Reader Services

Popular Topics

Essentials