Intel Sets Hacker TrapBy John G. Spooner | Posted 2006-04-26 Email Print
Modernizing Authentication — What It Takes to Transform Secure Access
A chipset designed to automate labor-intensive corporate PC support will also create security buffers that can identify the signs of a malware infection and shut it down fast.Intel wants to lay a virtual trap for hackers.
The chip maker, which launched its vPro brand for business desktops April 24, aims to increase PC security by stepping up the vPro machines' abilities to proactively guard against malware.
The company will employ virtualization technologywhich can partition a PC to run different types of software simultaneouslyto set up a new type of security checkpoint inside each machine.
That checkpoint, which is expected to be the first of its kind for client PCs when it arrives in vPro Professional PCs in the third quarter, can guard a machine by monitoring network traffic into it and intervening if it exhibits behavior patterns consistent with an infection.
"We had to come up with some better, more proactive, more intelligent [and] more automated ways to defend our systems," said Gregory Bryant, general manager for the Digital Office Platforms Group at Intel, in Santa Clara, Calif.
Setting up the security checkpoint involves using an Intel-written virtualization program to create a separate security partition that stands between the network and the PC's OS, applications and data to stop malware before it reaches the more sensitive areas, Bryant said.
The action, he said, can augment traditional anti-malware software by acting automatically if it detects an attackit can shut off the PC's network access, for examplewhereas updating anti-virus signatures is a reactive response to a threat.
The partition approach would help speed anti-malware signature distribution to PCs as well, given that anti-malware signatures would only have to be made compatible with the security agent itself, not other types of software.
Symantec, Intel's first vPro security partner, will offer a security agent that will reside in the partition, which it says is both more proactiveit will include behavior analysis designed to root out zero-day attacksand quicker to deploy signatures, said Enrique Salem, senior vice president for consumer products and solutions at Symantec, in Cupertino, Calif.
vPro Professional machines will also come with TPM (Trusted Platform Module) 1.2 chips, which help in such tasks as securing passwords and data.
Read the full story on eWEEK.com: Intel Lays Hacker Trap