Capt. Kirk orders "Shields up!", as the Starship U.S.S. Enterprise braces itself for another meteor storm or a blast from a Romulan Bird of Prey. Shields are the essential accessories that any fictional spaceship must have to be able to venture beyond the final frontier.
And with the changing nature of threats in cyberspace, the need is growing for similar protective “shields” for users, to absorb attacks and to protect online identities against both high-profile and stealthy infiltration attempts. These new types of threats often evade detection by traditional antivirus solutions and security suites, infecting users who think they are protected.
No longer satisfied with just slowing PCs or generally causing havoc, these new attacks hijack PCs, access personal information, and steal money straight out of online accounts.
One technique to protect systems comprimises shields that surround applications, denying access to OS resources or changes to hosts.
Why is this? The issue is the changing nature of malware since 2005. At first, viruses and worms were created and propagated largely for attention-seeking purposes—to create headlines and online spectaculars. Furthermore, they all shared a common method of propagation by email. This made security something of an arms race—but a race that was easy to keep up with, provided that antivirus software was used and its signatures were kept up to date.
The malware menace—but not as it was known
Over the years, methods of attack have changed. The acknowledged online
influence of organized crime has led to the development of more
stealthy, invasive attacks. The intention is not to draw attention to
the attacks, but to create malware that does not register on security
radar.
These new attacks are heavily focused on stealing personal information for financial gain. The result is a proliferation of Web threats, such as phishing attacks via fake Web sites, driveby downloads from malware-infected sites, and keyloggers that pose enormous risks to privacy. All these evoke fear among customers who have begun to significantly alter online behavior.
So if threats have moved from email to lurking in cyberspace, it makes sense to add protection to the applications that are the ubiquitous vehicles of the Internet—Web browsers. After all, browsers have become the main route that malware and other attack vectors take to infect PCs.
Shields of steel
From ancient Greece to the U.S.S. Enterprise of the 23rd century,
shielding against attacks is hardly a new concept. And it is one that
can be applied equally to the virtual world—one often-discussed
technique to protect systems from Internet-based malware comprises
shields or protective shells that surround Web-based applications.
These shields work by denying applications access to operating system resources, adding programs, or making changes to host systems. Putting these applications in protective bubbles goes a long way toward improving Internet security.
This model has been in use for years, with Java and other Internet platforms utilizing forms of it. But until now, it has not really affected the average-user applications most in need of security—namely those same Web browsers.
Choosing the right defenses
So, exactly what capabilities should a browser-based security tool
have, and what functionality does it need to deliver the best possible
protection when surfing the Internet? The following five items should
be atop any checklist when looking for a virtualized Web browser
security solution:
- Hire virtual surfers—the concept of virtual surfing is that by using virtualized browser-based security, in effect, it creates duplicate versions of users to block Web attacks. Adding a virtualization layer to seal off the Web from the Windows operating system will protect PCs, and critically, identity and personal details, against malware attacks, making it safer to surf
- Seen but not heard—opt for an unobtrusive browser-based security tool that does not change behavior and does not slow down browsing sessions. Users should not have to learn new ways to surf or buy new, super-fast PCs to fully enjoy the World Wide Web
- Right to roam—the right solution should balance the need for advanced protection with giving users the freedom to access the material they want, which is after all one of the chief justifications for the Internet. The right solution will automatically scan for malware and warn users if problems are detected, yet will ultimately give them access, if the users so choose
- Block spyware—even with full security suites, some malicious spyware may be running on PCs. Browser security should block spyware like keyloggers and screengrabbers so even if they already reside on PCs, they cannot snoop on Web browser activities
- Trust, but verify—an additional must-have item is one that verifies if the sites being visited are known for phishing or spyware. Prominent warnings should make it easy to back away from dangerous sites, though it should still provide the option for users to continue if they wish
See what's out there—engage!
New tools are emerging to help manage and contain the threats posed by
the latest Web-based malware. One way to protect PCs for free is to download the public beta
of ZoneAlarm ForceField from Check Point—the first freely available
technology to create virtual shields around Web browsers and protect
PCs against increasingly sophisticated malware.
So what benefits do shields bring to online sessions? Put simply, users cannot always know what is out there or what malware or data-theft risks seemingly harmless Web sites may harbor. Having cyberspace shields can help users boldly go where they may have been worried to go before.