| |
PANDA 2009 retail products |
Traditional antiviruses |
| Improved Detection |
Each Panda customer acts as a malware sensor. As soon as a malicious process is detected on a user’s PC by the Collective Intelligence servers, all users worldwide automatically benefit from that specific detection in real-time. This results in close to real-time detection -not only of initial malware outbreaks- but also of targeted attacks aimed at infecting a small number of users to stay below the radar. NOTE that this model does not present any privacy issues, since no personal information is sent from the user’s PC to the Collective Intelligence server. In other words, there is no data transfer; only queries are sent from the user’s PC to the CI server. |
Traditional antivirus solutions are architected with a PC-centric philosophy. This means that a PC is treated as a single unit in time and any malware detected within that PC is considered separately from the rest of the malware samples detected in millions of other PCs. |
| Improved Desinfection |
Automated, short-lasting processing and classification. Thanks to the Collective Intelligence infrastructure, the malware collection, classification and remediation processes are automated and performed online for the vast majority of strains. |
Semi-manual, long-lasting processing and classification. Each new malware sample needs to be sent to the lab by an affected user, reversed engineered to create a detection signature and disinfection routine, sent to quality assurance for testing, uploaded to production servers, replicated worldwide, and finally downloaded and applied by customers. |
| Improved Detection & resource consumption |
No resource limitation. The scanning power used at the Collective Intelligence servers is only limited by hardware and bandwidth scaling. With Collective Intelligence, the majority of malware samples can be analyzed and classified automatically with the most resource-intensive proactive techniques in a matter of minutes. Most processes are performed ‘in the cloud’ and not on the customers’ PC, where fewer resources are available. |
Traditional antivirus solutions perform the scanning processes on the users’ PCs, taking up a lot of their limited resources. This prevents them from being able to use resource-intensive proactive techniques. |
| Improved Detection & resource consumption |
The automated malware remediation module automatically creates detection and disinfection signatures for the samples previously analyzed by the processing and classification module. Most signatures do not need to be downloaded to each customer as they operate from the cloud. |
With traditional antivirus solutions, remediation is done semi-manually. Also, all signatures need to be downloaded to the customer, consuming bandwidth and memory resources. |
|
Continuous improvement of protection tools. |
The community feature of Collective Intelligence provides full visibility and traceability of the new malware techniques and distribution points. This knowledge allows Panda to continuously improve customer protection, and has some interesting applications and benefits for law enforcement efforts. |
Traditional antivirus suppliers have partial visibility and limited traceability of malware and therefore cannot improve their products as quickly as necessary. The protection offered by their products gets worse every day. |
|
Improved Detection & resource consumption |
Panda Security’s Collective Intelligence platform includes a white-listing component that complements and improves black-list detection reducing false positives and scanning and processing times. |
Traditional antivirus solutions need to scan all files, including ‘good’ ones, and therefore consume more system resources with more false positives. |