SONAR (Symantec) - How IT Works

How It Works

An algorithm is used to evaluate hundreds of attributes relating to software running on a computer. Various factors are considered before determining that a program is malicious, such as if the program adds a shortcut on the desktop or creates a Windows Add/Remove programs entry. Both of those factors would indicate the program is not malware. The main use of SONAR is to enhance detection of zero day threats. Symantec claims SONAR can also prevent attackers from leveraging unpatched software vulnerabilities.

Ed Kim, director of product management at Symantec, expressed confidence in SONAR, "We've done extensive testing on emerging threats, and it catches early threats and variants of existing threats."

Read more about this topic:  SONAR (Symantec)

Other articles related to "how it works, works, it works":

Statnamic Load Test - How It Works
... Statnamic testing works by accelerating a mass upward that in turn imparts a load onto the foundation pile below the Statnamic device ...
Television Standards Conversion - Standards Conversion Methods in Common Use - Nyquist Subsampling - How It Works
... method for converting HDTV to standard definition television, but it works very poorly in reverse ... The Nyquist subsampling method of systems conversion only works for HDTV to Standard Definition Television, so as a standards conversion technology it ...

Famous quotes containing the word works:

    One of the surest evidences of an elevated taste is the power of enjoying works of impassioned terrorism, in poetry, and painting. The man who can look at impassioned subjects of terror with a feeling of exultation may be certain he has an elevated taste.
    Benjamin Haydon (1786–1846)