Title: DEFENCE IN-DEPTH FOR CYBER SECURITY WITH CUSTOM ANTI-VIRUS SIGNATURE DEFINITION

Year of Publication: 2013
Page Numbers: 149-156
Authors: Markson Aigbodi, Karim Ouazzane, Daniel Mitchell, Vassil Vassilev
Conference Name: The Third International Conference on Digital Information Processing and Communications (ICDIPC2013)
- United Arab Emirates

Abstract:


Anti-virus software has been the main defence against malicious application and will remain so in the future. However the strength of an anti-virus product will depend on having an updated virus signature and the heuristic engine to detect future and unknown virus. The time gap between an exploit appearing on the internet and the user receiving an update for their anti-virus signature database on their machine is very crucial. Having a diverse multi-Engine anti-virus scanner in the infrastructure with the capability for custom signature definition as part of a defence in-depth strategy will help to close that gap. This paper presents a technique of deploying more than one anti-virus solution at different layers and using custom anti-virus signature from the ClamAV anti-virus software as part of a defence in-depth strategy.