Next: Signature Scanning and Algorithmic Up: A Guide to the Selection Previous: System Overhead

Tools and Techniques

There is a wide variety of tools and techniques which can be applied to the anti-virus effort. This section will address the following anti-virus techniques:

For detection of viruses, there are five classes of techniques: signature scanning and algorithmic detection; general purpose monitors; access control shells; checksums for change detection; and heuristic binary analysis. For identification of viruses, there are two techniques: scanning and algorithmic detection; and precise identification tools. Finally, removal tools are addressed. Removal tools come in three forms: general system utilities, single-virus disinfectors, and general disinfecting programs.



konczal@csrc.ncsl.nist.gov
Fri Mar 11 21:26:02 EST 1994