PC & Tech Authority - - CONTENTS -

In­tel’s im­proved threat-de­tec­tion tools, and Gmail nally gets a ma­jor over­all

in­tel has de­vised a new frame­work that will re­sult in se­cu­rity soft­ware run­ning on the graph­ics chip in­stead of the po­ten­tially over­bur­dened CPU.

In­tel has laid out two se­cu­rity fea­tures un­der the ban­ner of In­tel Threat De­tec­tion Tech­nol­ogy, in an at­tempt to shore up its rep­u­ta­tion fol­low­ing the re­cent Melt­down and Spec­tre breaches.

Firstly, it said an “Ad­vanced Mem­ory Scan­ning” fea­ture will shift the grunt work of antivirus scan­ning from the CPU to the GPU, re­duc­ing the sys­tem im­pact of se­cu­rity scans. This will also al­low se­cu­rity soft­ware to do a more com­pre­hen­sive job. Ac­cord­ing to In­tel, some mal­ware evades le-based antivirus soft­ware by never writ­ing any­thing to disk, which makes it hard to spot and means that se­cu­rity soft­ware must mon­i­tor sys­tem mem­ory. Scan­ning sys­tem mem­ory, how­ever, can have a huge hit on per­for­mance – up to 20%, In­tel claims.

“Mal­ware likes to hide in mem­ory, but scan­ning that im­pacts users in terms of per­for­mance and power us­age,” said Rick Echevar­ria, vice pres­i­dent in In­tel’s Soft­ware and Ser­vices Group. “We’re of oad­ing mem­ory scans onto in­te­grated graph­ics and by do­ing that we can in­crease the fre­quency of scans, which should im­prove de­tec­tion while bal­anc­ing per­for­mance.”

In­tel said that its early bench­mark­ing on test sys­tems showed CPU util­i­sa­tion dropped from 20% to as lit­tle as 2% when the GPU was the pri­mary num­ber cruncher.

In­tel is po­si­tion­ing Ad­vanced Mem­ory Scan­ning as a fea­ture for third par­ties to use and the com­pany said Mi­crosoft’s Win­dows De­fender Ad­vanced Threat Pro­tec­tion would add GPU-based mem­ory scan­ning.

It should work with sixth, sev­enth and eighth­gen­er­a­tion In­tel Core chips and se­cu­rity com­pa­nies said they would im­ple­ment the tech­nol­ogy in fu­ture prod­ucts.

“Us­ing the graph­ics pro­ces­sor (GPU), should al­low end­point pro­tec­tion prod­ucts to scan for ‘ le­less mal­ware’ with­out big im­pacts on CPU per­for­mance,” Sean Sul­li­van, se­cu­rity ad­vi­sor to F-Se­cure, told PC Pro. “And as

le­less mal­ware is an in­creas­ing risk, that could very well be an im­por­tant bene t. It’s al­ways a bene t to re­duce CPU im­pact.”

The sec­ond el­e­ment of In­tel’s new fo­cus on hard­ware threat­de­tec­tion in­volves teleme­try and study­ing pro­ces­sor ac­tiv­ity to mon­i­tor for anom­alies. Win­dows De­fender, for ex­am­ple, al­ready mon­i­tors ma­chine ac­tiv­ity, look­ing for spikes that might sug­gest the pres­ence of mal­ware even if it can’t iden­tify the ac­tual strain.

In­tel’s “Ad­vanced Plat­form Teleme­try” is sim­i­lar, but rather than look­ing at what’s go­ing on within the op­er­at­ing sys­tem, In­tel’s teleme­try uses met­rics such as the pro­ces­sor’s in­te­grated per­for­mance coun­ters to spot un­usual pro­ces­sor ac­tiv­ity. In­tel says the teleme­try in­for­ma­tion should spot rogue pro­cesses with­out cre­at­ing false pos­i­tives.

In­tel’s Ad­vanced Mem­ory Scan­ning fea­ture will shift antivirus scan­ning from the CPU to the GPU

Newspapers in English

Newspapers from Australia

© PressReader. All rights reserved.