charityinformation.net

For the last few months, I’ve been hearing some well-regarded security people tell me they are considering ditching their antivirus protection all together. They haven’t done it, but these individuals feel the days of having a special application scan to remove malware on your desktop are numbered. Malware has changed, but the applications to ferret them out have not.

Antivirus programs, as we know them today, are based on 20-year-old technology of pattern matching. Pattern matching may have worked in the days of the Micheangelo virus and even as recently as Netsky, but methodically matching each and every file on a computer against a list of known malware is getting tedious, if not archaic. In 2007, Symantec detected more than 1 million viruses, with two-thirds created within the calendar year. Loading 1 million signatures, or even a percentage of that if generic signatures are used, is a pretty serious undertaking.

That’s why vendors are talking to me about newer strategies for 2009 (and beyond). Among these is the exact opposite of signature file databases–something called whitelisting. If pattern matching is just another way of saying certain bad files have been blacklisted, whitelisting goes to the other extreme: it only allows certain trusted files to run on your machine.

That’s more or less what Symantec CEO John Thompson called for at this year’s RSA: “If the growth of malicious software continues to outpace the growth of legitimate software, techniques like whitelisting–where we identify and allow only the good stuff to come in–will become critical.” He actually didn’t say much more about whitelisting, yet everyone talks about this speech as though Thompson had provided clear guidance the year of whitelisting.

So how viable is whitelisting? Turns out we’ve been using it to defend against spam for years.

To see how whitelisting works on an enterprise level, I spoke with Tom Murphy, chief strategy officer for Bit9, a Massachusetts-based company that has been quietly leading the way in whitelist technology.

For several years Bit9 has been building what it calls a Global Software Registry or GSR (formerly called Bit9 Knowledgebase), cataloging “known good” and “known bad” applications and files. Murphy said Bit9 uses three methods–MD5, SHA1 and OMAC–to create a unique hash of the file and ensure that the file is what it says it is. For the moment, the catalog is used for Bit9’s enterprise products. But they’ve entered into an agreement with Kaspersky, who will be using the registry for its 2009 desktop security products.

Bit9 is not alone. SecureWave’s Sanctuary, Savant Protection, and DriveSentry have also been creating whitelisting technology for the enterprise. What’s interesting is that the big guys Google (Green Border Technologies), Microsoft (Winternals Software’s Protection Manager, and now Symantec have started paying attention to whitelisting.

Which gets us back to antivirus software.

If hosting a million antivirus signature files is daunting, how many “clean” files might there be? Think about all the versions of software that exist, not to mention the files those products create.

The downside of whitelisting, indeed the main argument, is that all those clean files outnumber the bad guys by a considerable margin. Right now, maintaining a whitelist file is impractical for the desktop.

Trend Micro (if it wants to get into the whitelist space) thinks it has the answer. For the last few years, Trend Micro has been building servers around the world to provide continuous service to its Software-as-a-service enterprise systems. Last month, Trend Micro CEO Eva Chen told me it’s time to bring that SaaS service down to the desktop. Instead of having all the signature files on the desktop, the desktop app would instead ping “the cloud” and get results from the much larger database of known malware stored there.

Make no mistake, Trend Micro is still using antivirus signature databases. Chen said even after 20 years, there are still advantages to pattern-matching antivirus signature files. For one thing, she says it’s faster than firing up a heuristic sandbox and testing each individual piece of malware. True, although we’re talking about shaving nanoseconds between the two processes. Still, with several thousand files, those saved nanoseconds do add up. So instead of running the operation on the PC, the PC sends all its unknowns to a server in the cloud and gets the results back lickety-split. An added benefit, says Chen, is that new samples are submitted in real time and evaluated quickly. In her estimate, Trend Micro can have a new signature file for an unknown threat ready within 15 minutes.

Fifteen minutes is also the new mantra over at Symantec. For its 2009 Norton products, Tom Powledge, vice president of consumer product management at Symantec, told me the new products are lighter and faster in part because they’ve jettisoned the multiple copies of the signature database found in previous versions. They’re also not scanning each and every file. Instead, the 2009 products will be building a trust index–that is, the app will declaring certain files (say photos or MP3s) clean and then not scan them again unless the files change. He showed me a graphic where roughly 70 percent of a given machine is trusted, and only that last 30 percent is actively scanned.

Like Trend, Norton is experimenting with faster new malware turnaround. Powledge says Norton should be updating not every 15 minutes, but every couple of minutes. This is a vast improvement from hourly or even daily updates by some antivirus vendors.

Given the improvements to the traditional antivirus programs proposed by Trend Micro and Symantec, are the days of antivirus applications numbered?

Yes.

I asked Murphy if white lists worked well enough to replace traditional antivirus protection at some companies. He answered, very diplomatically, “if (a customer) feel(s) that they have a control over the environment, some customers have removed antivirus off their machines.”

I’m still not convinced that white listing is the way to go, but I do know that security solutions in the enterprise space have a way of trickling down to the desktop.

(Credit:
Daniel Terdiman/CNET News.com)

No one knows who created this game, but you can be sure that it wasn’t the International Olympic Committee. Usually, an agency is hired by a client to put an ARG together. The leading ARG creation agency is a small company known as 42 Entertainment.

(Credit:
Daniel Terdiman/CNET News.com)

And August 24 is, in fact, the closing ceremony of this summer’s Beijing Olympics. As a result, it’s a fairly quick, logical jump to conclude that the ultimate goal of this game is to save the world at the closing ceremonies. Or some such.

Now, I’m not going to pretend I’m all that good at solving puzzles, so when the box arrived Friday, I was a bit at a loss to figure out what the included clues meant.

A clue on the back of the Olympic poster that came in the box reads, ‘It’s a secret someone has been keeping for a very long time.’

I don’t know if that’s a valid error message, or if it’s related to the game. But I would guess that if it is a valid error message, that site will be live and begin to have some information on it as of Monday, which is, after all, March 3.

That the Olympics would be the subject matter for an ARG is rather exciting, it seems to me, because it’s almost certain to bring a great deal of attention to the game and the genre.

Inside the box, there was a reproduction of what appears to be a 1920 Olympics poster with a figure of a discus thrower on the front, and the text, “VIIe Olympiade. Anvers (Belgique). 1920 Aout - Septembre 1920. Subsidee par les pouvoirs publics.”

A visit to that Web address returns an odd error message: “SRVE0255E: A WebGroup/Virtual Host to handle / has not been defined.”

The way these games work, there will be months of developing story line, with players all over the world working together to try to keep up. There will be active Web sites and there could well be mobs of people running around various cities trying to solve different elements of the game.

According to the leading publication on ARGs, ARGNet, this game is called, Find The Lost Ring.

Often, these games are put on as a publicity adjunct to some larger product. For example, I Love Bees, perhaps the best-known of this genre of game, was built around the larger story line for the hit Halo video game franchise and was timed to finish just as Halo 2 was set to launch.

The box included three postcards with historical Olympics pictures.

(Credit:
Daniel Terdiman/CNET Networks)

No such address exists.

Others, apparently, got other post cards, all with the same clues on the back.

On the reverse, there’s also the text, “It’s a secret someone has been keeping for a very long time.”

Update March 2, 2008, 9:49 p.m.: I discovered just after I posted this entry that there should have been a slip of paper tucked into the ball of string in my box. I don’t know whether I missed it, or whether it wasn’t there. But according to the site, Despoiler.org, the slip of paper reads, “You will soon discover an alternate reality. The adventure begins when you meet Ariadne. www.findthelostring.com.”

(Credit:
Daniel Terdiman/CNET News.com)

Unfortunately, a Whois check on that URL returned no useful information.

For months now, I’ve been hearing whispers that a big new alternate-reality game was on the way. I never got any details of what it was about, but when a box arrived at my desk on Friday filled with clues, I knew this was it, and it seems that it’s linked to this year’s summer Olympics.

Each of the three postcards had clues on the reverse, each with a date and a cryptic command. The final clue reads, ‘August 24, 2008 Save the world.’

In the meantime, if you have any idea what these clues mean, feel free to drop me a note. I’d love to know.

The clues from a new alternate-reality game that seems tied to the Olympics and which is slated to start Monday.

There was also a ball of string and three postcards with historical Olympic images on them. The reverse sides of the three cards were endowed with the clues, “March 3, 2008. Find her…,” “March 4, 2008?? Find the others…,” “March 5, 2008? Find him…,” “March 11, 2008?? Find the secret…” and “August 24, 2008. Save the world.”

The box itself, which came FedEx, had the return address of “T.L. Ring, 1920 Olympic Way, San Francisco, CA.”

If the clues are to be believed, this game will kick off in earnest Monday morning. So be prepared, if this is your thing.

For years, ARGs have been existing just below the mainstream surface. To be sure, thousands upon thousands of people have participated in the most popular ARGs, but if you were to stop random people on the street, I’d be willing to bet that most would have never heard of the genre.

If you’re not familiar with these types of games, known popularly as ARGs, they tend to be mixed-media affairs that task players the world over with solving puzzles, both individually and working with others, online and in the real world, with the goal of reaching some ultimate solution.

I’m back from Barcelona and the GSMA World Congress. For five days I was up to my ears in cell phones and tapas (not at the same time) but I came away with some fresh insights into our global mobile world. As the largest cell phone show on the planet, GSMA produced a lot of news this year. Samsung, Nokia, and Sony Ericsson all announced new models, and hundreds of other companies jockeyed for the spotlight, as well. Senior Editor Bonnie Cha and I were just two of 55,000 GSMA attendees, but we manged to track down the coolest products and hottest news from the show. Join me today Thursday, February 21, at 11 a.m. PT (2 p.m. ET) where I’ll be available to answer all your questions about what’s next in cell phones. To participate, just visit the live chat page during the given time and type your questions into the form. I’ll do my best to answer as many as I can. And in the meantime, be sure to check out our full GSMA coverage.

The relaunch of the homepage proper has been kept somewhat under wraps, likely because a “major” advertiser is set to take over the site when it debuts. But MySpace has been liberal with the details of most of the other new improvements. They’re not particularly revolutionary, but should still do a thing or two to combat user experience complaints on the social network.

The MySpace profile editing tool, for example, has been modified so that HTML expertise is less of a prerequisite. A sidebar lets users browse through themes and alter them with a color palette, rather than hard-coding changes.

MySpace additionally has a data portability project, “Data Availability,” on the way.

News Corp.’s MySpace is set to release a major redesign next week, company representatives said late Thursday evening. The site doesn’t look that different; it’s still clearly MySpace. But a number of features have been revamped to improve user experience: namely, the homepage, navigation tools, profile editor, search features, and the MySpaceTV player.

Updated at 9:47 p.m. PDT with more details.

(Credit:
MySpace)

(Credit:
MySpace)

The improved MySpaceTV player, with improved navigation.

MySpace’s chief rival, Facebook, is also set to unveil a redesigned profile page in the near future; developers on its application platform are already testing it out. MySpace’s redesign does not appear to alter the experience for developers who are building on its OpenSocial-compatible platform.

A formal release is set to go out on Monday, and the first new features will show up on the site on Wednesday.

(Credit:
MySpace)

One of the most heavily altered sections of the new MySpace is search; now, MySpace members will navigate through a set of tabs to search personal profiles, music profiles, the entire MySpace site, videos on MySpaceTV, or the Web as a whole. The site has also worked with the Lucene open-source search engine project.

The redesign effort has been under way for more than six months, with the goals of appealing to a broader demographic and letting users interact with the site more (i.e. keeping them around), and has involved in-home studies for testing purposes.

The MySpaceTV player, which technically competes with YouTube, has been improved to support high-definition video and improved full-screen mode as part of the Flash 9 release. The embeddable player now has internal search as well as a way to view the top MySpace videos; it’s still playing catch-up with the likes of YouTube, but it’s still a big improvement.

Doing a music search on the new MySpace

The new MySpace profile editor. Note the sidebar to the right.

Last Wednesday Cisco beat analysts’ second fiscal quarter sales, but the company indicated that its orders on new products had slowed in Europe and the U.S. as companies pulled back on technology spending. The company said it expects growth in the third quarter of only 10 percent instead of Cisco’s long-term growth rate expectation of between 12 percent and 17 percent, a range that Chambers expects the company to get back to within the next two to five quarters.

John Chambers

BARCELONA, Spain–Cisco Systems’ CEO John Chambers gave a little more color Monday to comments he made last week regarding a slowdown in IT spending.

The news last week spooked investors, who sent the company’s stock down about 8 percent. Cisco reported second quarter revenue of $9.8 billion, compared with $8.4 billion in the period last year. Net income for the quarter was $2.1 billion, up from $1.9 billion last year.

“In situations like this, the classical approach is to look at how long will this last and how deep will it go,” he said. “Based on what we’ve seen in the past, we think this will be relatively short in duration and relatively shallow.”

Chambers, speaking at a preview event at the Mobile World Congress ahead of his keynote speech Tuesday, told analysts and reporters that the company only started seeing a slowdown in customer orders of its networking products in January, the last month of the second quarter of Cisco’s fiscal year 2008. He also said that the current blip in orders is not as bad as previous downturns, most notably the major telecom bust of 2001.

(Credit:
Cisco)

According to the researchers, they were surprised to find that their subjects displayed a negative response to the death of an enemy. They noted that “the fact that wounding or killing the opponent elicited negative, not positive, emotional responses might be reassuring”.

In fact, I disliked dying in games so much, I would often find it easier to walk away and do something else rather than risk the health of my controller after losing such an important battle. And while I would venture to say many would agree with my assertion, one study claims it’s actually quite the opposite.

In the end, I can’t say that I truly believe people want to die in video games rather than kill virtual characters. After all, wouldn’t it take more than 36 people and a variety of games to truly prove the point?

That said, the researchers didn’t quite do a convincing enough job of ensuring that their results could be projected to the entire population of video game players. Let’s face it–if researchers surveyed only 36 people, how can we be sure that the sample was in fact representative of all gamers?

Finally, the researchers reported that “there was no evidence for desensitization of emotional responses as a function of repeated exposures to violent game events.”

According to a study performed by a number of researchers in Helsinki, Finland, gamers actually like to die in games and actually prefer that over killing other enemies.

Nonetheless, the study should act as the backbone to a variety of new studies that examine this phenomenon in the hope that eventually we will find out if people really want to kill or be killed in virtual environments.

“Given that the player knows that it is only a game, events that, in the real world, are perceived as threatening may be perceived as positively challenging,” they continued.

Dubbed “The Psychophysiology of James Bond: Phasic Emotional Responses to Violent Video Game Events,” the study examined the psychological responses of 36 young adults while they played James Bond 007: NightFire. In order to compare the results, the researchers also used Super Monkey Ball 2 as the control game to decipher the psychological differences between those who preferred dying over killing.

Ever since I played my first video game, the thought of losing or dying was awful. After all, who really wants to spend a half-hour making their way through a dangerous dungeon only to die at the end and be forced to retrace their steps to get to the boss battle?

I think I’ll choose the former if that means I’ll win.

So what does this all really mean to gamers and those that view gaming as means to violence and uncontrollable violence? Maybe there’s hope after all.

Regardless, the study shows something that no one expected and might lend some credence to the idea that gaming has nothing to do with violence and everything to do with the enjoyment of achieving a stated goal. In fact, this study does a fine job of displaying one simple truth: most people don’t really think of killing as the main point of a game, but do believe that it’s a means to an end that isn’t necessarily required.

Earlier on Monday, reports surfaced that Facebook may be close to a settlement on its longstanding legal dispute with former rival ConnectU, after several years of dismissals, appeals, and general unpleasantry. But a recent court ruling suggests that the timing may not be entirely random: a judge in a U.S. court of appeals ruled that ConnectU was allowed to reinstate its case, reversing Facebook’s request for dismissal.

ConnectU founders Cameron Winklevoss, Tyler Winklevoss, and Divya Narendra had originally filed suit against Facebook’s founders in September 2004, claiming that CEO Mark Zuckerberg had nabbed their code and business plan while employed as a programmer for ConnectU when all four were students at Harvard. Also named in the suit were four early Facebook employees as well as the Facebook corporation itself.

Documents filed last Thursday from ConnectU vs. Zuckerberg et al., which has been handled in a Massachusetts district court, reveal that a senior circuit judge in the court of appeals opted to allow ConnectU to reinstate its case.

But in the documents filed Thursday, the appeals court decision ruled clearly in favor of ConnectU. “Although the defendants have advanced other arguments, those arguments are either unavailing, or inadequately developed, or both,” the ruling read. “We reject them out of hand and, for the reasons elucidated above, we reverse the order of dismissal.”

In July, the Massachusetts court had requested that ConnectU present more concrete evidence to support its case, indicating that the would-be social-networking site didn’t have enough of an argument against Facebook. Facebook, meanwhile, argued that ConnectU’s claims were moot and requested that the case be dismissed.

“We hold that the jurisdictional claim in the amended complaint warrants full consideration and constitutes a viable hook on which federal jurisdiction can be hung,” the court document read. “Because this holding is at odds with the conclusions reached by the court below, we reverse the order of dismissal and remand for further proceedings consistent with this opinion.”

My name for this dream feature is “Twitter packs.” If anyone knows of something like this, drop me a line or respond in comments, and I’ll cover it. The same idea could work for FriendFeed; the “rooms” feature doesn’t quite do it.

Robert Balousek, my collaborator on the Swagalicio.us blog, has launched Twintro a new service to help Twitter users find people to follow outside of the usual self-reinforcing Twitterholic circle.

Here are full instructions.

I think Rob is onto something, although this little service is all about the content. Rob’s the guy manning the velvet rope, deciding who gets Twintro’d each day. I hope he has good taste. You can nominate yourself or someone else.

Related idea: I’d like it if there were a way to subscribe to the thought leaders in a particular category all at once. For example, I want to bulk-follow the best 10 or so Twitterers covering the presidential election–likewise, the best science writers and whoever is covering San Francisco politics well.

If you follow Twintro on Twitter, you’ll get updates from a different “fascinating, amusing, and thought-provoking” Twitter user every day. If you like what you’re reading, you just start following that person so you keep getting their updates. You’ll get a new person the next day.

Find more deals, coupon codes, and bargains on CNET’s Shopper.com.

CNET’s 6.6/10 rating for the ZR830 reflects the camera’s poor low-light performance and lack of an accessory shoe and microphone input–all typical for models in this price range. But if you’re shooting in well-lit environments and have only weekend-videography needs, you’ll probably be quite pleased with the ZR830’s performance.

New baby in the house? Old camcorder on its last legs? Here’s your chance to score some MiniDV goodness for a song: eCost has the Canon ZR830 camcorder for $134.99. It’s a Canon-recertified model with a 90-day warranty, and you’ll pay a few bucks for shipping, but at least there’s no rebate.

An entry-level camcorder, the ZR830 combines a 1/6-inch CCD (bigger is better, and that’s on the small side) with an unusually long optical zoom (35x!) and a widescreen LCD. It includes a handful of program modes for various shooting conditions (snow, sunset, fireworks, etc.) and can capture low-resolution still photos. Just make sure your PC has a FireWire port so you can import your video for editing. (Lots of users mistakenly assume you can do this via USB, but most MiniDV camcorders require FireWire.)

(Credit:
Canon)

(Credit:
Stephen Shankland/CNET News)

• With the 3D mode in CS4 Extended, people can paint directly on 3D objects rather than having to unwrap a skin, paint on it, then rewrap it.

Other features
The new version has a number of other features, though Nack emphasized work to polish existing abilities, too, such as the ability to select and delete multiple channels. There are some notable changes, though.

“It’s not lost on us that when you look at the rate of GPU power advancement, there’s an enormous wealth of cycles we can take advantage of now,” Nack said. “The rate of price drop and performance gain has been off the charts.”

The software will be available in October, the company said.

“Typically, when folks were building a big Photoshop rig…we never had to really concern ourselves with things like which video driver they were using. We had a very light integration. Anything was fine,” Nack said. “Now that we’re doing actual processing on the GPU, we have to be a good deal more stringent.”

Content-aware scaling lets people change the proportions of an image while protecting important areas from distortion. (Click to enlarge.)

(Credit:
Stephen Shankland/CNET News)

Adobe's Creative Suite 4 comprises many sub-brands.

The upgrade price for Photoshop is $199 for the Photoshop CS4 and $349 for CS4 Extended; prices for the new versions are $699 and $999. The Extended version adds a variety of special-purpose abilities for dealing with scientific applications, dealing with medical imagery, and creating 3D subject matter. The company also offers its consumer-level Photoshop Elements for about $100 and its online Photoshop Express for free.

One benefit of the Flash technology is it’s network-enabled. That permits integration, for example, with Adobe’s Kuler site for creating harmonious color combinations, so palettes can be imported into Photoshop. Another possibility is a “geo” tab that could be added while browsing image information, showing where on a map a geotagged photo was taken.

Photoshop, meet Macromedia
Adobe’s acquisition of Macromedia gave the company access to the Flash technology for animation and scripting, and Photoshop CS4 now employs it in the plumbing. In the past, it was tough for third-party software developers to add new features to Photoshop, but built-in Flash 10 software means Photoshop will accommodate control panels from third parties.

A companion product geared specifically for photographers, Photoshop Lightroom, has 64-bit support for both
Mac and Windows, but Adobe couldn’t do the 64-bit version of Photoshop CS4 for Mac OS X because it was busy moving to a new underlying programming foundation from Apple, called Cocoa.

“Now you can drop a SWF (Shockwave Flash file) into your Photoshop folder and extend the application,” Nack said. “This is going to be a huge shot in the arm for people developing on top of the application.”

Photoshop is a famously taxing piece of software, but beginning with the upcoming
CS4 version, it’ll be able to employ the muscle of your computer’s graphics chip for the first time.

The new version of Adobe’s flagship software product takes its first steps in using the graphics processing unit, or GPU, said John Nack, principal product manager for Adobe Photoshop. For example, the graphics chip helps Photoshop CS4 fluidly zoom in and out, rotate the canvas so artists can reorient an image for the best sketching angle, display and manipulate 3D objects, and handle color correction.

Now with 64-bit support
Another hardware change–for Windows users only–is support for 64-bit processors. Most folks won’t notice much of a speedup–perhaps 10 percent in some cases–but performance is much better in some memory-intensive areas where the 4GB limit of 32-bit software is a problem.

Another new GPU-enabled feature is called Pixel Bender, which lets people apply special effects quickly and, Adobe promises, create their own effects more easily than with today’s filter technology. However, that missed the cut for the final version of CS4 and likely will be a free update at the Adobe Labs site, Nack said

• A new tool can combine the sharpest parts of multiple photos of the same frame. It takes a couple minutes to run, but can help provide a sharp photograph of a subject–for example a series of close-up shots taken with a macro lens with a very shallow depth of field.

• The Camera Raw 5.0 import filter inherits some local-editing abilities in Lightroom 2.0, such as the ability to selectively darken or lighten particular patches of a photo.

Adobe Systems CEO Shantanu Narayen speaks at the company's CS4 launch event.

“For most people, with a 12-megapixel SLR file or doing Web design work, the difference they’ll see is pretty negligible. The inflection point from 32-bit to 64-bit really happens where you would have run out of memory and would have had to go to your virtual memory system,” storing data on the hard drive rather than in memory, Nack said. “There’s a tenfold performance increase opening up a large file.”

(Credit:
Adobe)

Using graphics chips opens up new horizons, but it poses its challenges. For one thing, graphics chips are designed to blast pixels to the screen, not back to the main processor for further work, so not all tasks can be accelerated, he said. For another, it means Adobe has to work more carefully on hardware compatibility and means some people with older machines might have to upgrade at least the video card; he recommends a card with 128MB of memory.

• Content-aware scaling, known as seam carving from its research days, lets users change an image’s proportions while protecting important areas from distortion. That’s a useful option for those adapting content for small screens on mobile devices, for example.

• Panoramic stitching gets new options: it can be used to create full 360-degree wraparounds, so the right and left edges mate correctly, and it corrects for lens vignetting, which could cause dark-and-light undulations in even-toned areas such as the sky.

Adobe plans to release a Configurator application to help people create their own panels, part of the company’s effort to make a Photoshop that can be better tailored to specific tasks. That software currently is scheduled to arrive sometime around the end of October, Nack said.