Secure connections could allow viruses to proliferate
By Rene Millman,
The encryption used in email messaging and secure web connections could allow virus writers to easily transmit viruses without being detected, according to a new report.
Researchers at anti-virus company Kaspersky Labs wrote in a report, entitled "Secure connections: how secure are they?", that the term "secure connection" is misleading and gives users a false sense of security as while the connection may be encrypted the data contained within could be harmful to corporate networks and user's computers.
The report said that neither firewalls, intrusion prevention systems nor anti-virus products can protect against viruses carried in a secure connection encrypted using PGP or SSL.
"Standard solutions protect computers against threats present in standard network connections, but aren't able to counter threats present in secure connections," said the report's authors. "Verifying the contents of a secure connection is impossible by virtue of its secure nature."
The researchers said that as a result, malicious data within secure channels can cause a significant amount of damage, and sometimes more than if it were to be transmitted via a standard, non-secure connection.
The researchers gave one example of webmail that offer access via a secure connection. If a virus writer sends a malicious payload to a victim, neither the webmail's anti-virus, which hasn't been updated nor will an anti-virus product on the victim's computer detect the virus as it will be encrypted in transmission. This would result in the victim's email database being deleted as it is often impossible to disinfect it.
The researcher said that users accessing secure web servers carrying a virus on a web page would not be able to detect a virus with their anti-virus product would not be able to read the encrypted data.
"Special methods have to be used in order to provide total protection against network threats," said the authors. "Another solution found by anti-virus manufacturers involves traffic verification."
You may also like...
Sponsored Links
advertisement
You may also like...
Latest Security Analysis & Insight
Who to trust after the VeriSign hack?
Davey Winder questions what data was stolen from VeriSign and wonders why the company hasn't been more forthcoming.
- Striving to solve the security skills crisis
- Would you employ a hacker or malware writer?
- Q&A: Raj Samani, CTO McAfee
- Erase and rewind: the EU and privacy
- My email address is [CENSORED]
- Is there such a thing as a secure tablet?
- 2011: The year in news
- BYOD: Old or new, good or bad?
- Are the cookie laws crumbling already?
Latest Security Reviews
Check Point 2210 Appliance review
Rating: 
advertisement
Most popular
- Will someone rid me of these troublesome Macs?
- BT considering Ofcom price cap appeal
- Google sends in Bouncer to sort out malicious apps
- Anonymous publishes FBI hacking call
- ACTA: the basics, the controversies, and the future
- Virgin 100Mbps rollout 'ahead of schedule'
- Who to trust after the VeriSign hack?
- Head to Head: Mac OS X 10.7 Lion vs Windows 7
- VeriSign admits 2010 hack
- What should RIM do to recapture the attention of businesses?
Latest News Videos in Security
IT PRO Podcast: Are UK data protection laws flawed?
PlayWe bring in two experts to talk about the problems with UK data protection law and the way it is managed.
Register for IT PRO
You'll get exclusive member benefits including free whitepapers, downloads, Webinars and weekly newsletters full of the latest IT PRO news, reviews, insight and expertise.
