Antivirus OS X
Mac OS X is a Unix based operating system with a graphical interface designed by Apple Inc. The first version of Max OS X was a server edition in 1999. The initial desktop release was in 2002 and has been included in every Macintosh system.
Why is OS X so secure?
Being based off Unix protects users in different ways. A virus must be allowed to write permission to an executable; however, regular Max OS X users do not have the permissions needed. Since root is the highest user possible in an operating system and many files that viruses target are owned by root, it becomes much more difficult for the virus to cause problems. In addition, Max OS X runs many programs in a sandbox environment, independent of the operating system, where they can be tested against other files.
How to stay protected without an antivirus for OS X?
One of the most important steps to maintaining a safe and secure Mac OS X systems regular system updates that will fix critical flaws in the software or exploits that can compromise a system.
Another way to stay protected is by using FileVault. With Max OS X Filevault important files can be encrypted for security in the event of a hack.In addition to that, users should be cautious using the Internet and not download unknown attachments or visit unfamiliar sites.
Why is an Antivirus for OS X is needed?
No system is 100% immune from malicious software and external security threats. If a user or system administrator risks losing a lot from downtime then having an antivirus for Mac OS X is appropriate. When investigating antivirus options, prevention is just important as detection. Types of virus detection are the following:
Dictionary methods: Used to match programs with pre-identified viruses. This allows for the deletion or quarantining of files.
- Suspicious behaviour method: Scans and monitors the behaviour of programs and raises a warning flag to the user, who then decides a course of action (whether to delete or allow).
- White listing: This method allows for the blocking of all executables except for ones that are white listed--an ideal method for very sensitive data.
- Heuristic Method: This method emulates the running of the executable before allowing permissions to fully execute the program, alerting users of suspicious activity and allowing them to take action.
- Sandbox Method: This type of detection imitates the operating system and runs the executable in simulation. After the executable is run the antivirus program scans and decides if the program is deemed a virus.
Cons of an Antivirus for OS X
While protecting the network, there are some considerations to deploying an Antivirus for OS X.
Expensive costs: Costs associated with antivirus software has gone down as more entrants enter the market; however, running a business with multiple computers and servers can become an issue.
- False Positives: False positives can become an issue for many operating system users if they are automatically forced to take action, for example when an antivirus software detects and automatically deletes a critical operating system file incorrectly identified as malware.
- Performance degradation: Since an antivirus for OS X is a program, it does take up resources and can create bottlenecks or slowdowns in the machine. When too many programs run at the same time the software can render the machine unusable.
Thursday, November 04, 2010Sophos delights Mac users with free antivirus Users will also get indefinite signature file updates as new Mac malware is discovered, and will not be pestered to upgrade to a "full" product