Desktop search and malware: friend or foe?

Anti-virus experts are experimenting with desktop search as a way of scanning for viral code. Both Google Search and Apple's Spotlight technology come with programming hooks (APIs) that allow their functions to be extended. Using these APIs, executable files might be scanned for malicious signatures.

Andy Payne and Oliver Schmelze of security firm WholeSecurity have developed a prototype malware scanner based on Google Desktop Search. In a presentation at last week's Virus Bulletin conference in Dublin, the duo demonstrated the prototype. Admittelyly, this more of an experiment into what's possible than a serious product development project: a lack of full file indexing and kernel system access makes the approach impractical at present. Desktop search and malware: friend or foe? | The Register

Linked by shanmuga Thursday, 13th October 2005 7:06AM