Kaspersky’s hardware-based antivirus system against rootkits
Few days ago, Kaspersky Lab patented a new solution combating rootkits, developed by Sr. Technology Expert, Oleg Zaitsev. It is a hardware-based antivirus system that just needs a plug-in. So, it’s not using the computer’s resources.
The device can be installed between the drive, the CPU and RAM connecting to the system bus or just being integrated into the disk controller. This solution can work alone or in conjunction with a software antivirus application. The antivirus neutralizes the most widespread type of malicious programs that infect and install themselves on the hard drive. First, it scans data written to the hard disk, identifies and blocks these programs.
Because we are talking about a hardware-based antivirus system, the operating system on the computer doesn’t affect anyhow the operations of the antivirus. It simply watches from outside the hard disk and combats the attacks of malicious programs, rootkits and bootkits. These last two are very dangerous by their natures.
Rootkits takeover the operating system’s functions and trick the antivirus not to recognize and remove them from the computer. They block the antivirus from starting, tracking and cleaning operations. But with the Kaspersky’s hardware-based antivirus, the rootkits have no chance to resist because the tracking happens outside the box and the malware can’t access the device’s memory.
This solution integrates very well with other security solutions, with server software and specialized computers. It can be a very good choice for ATM’s, laboratory computers, financial systems and others.
