Microsoft Windows doesn’t have a good way to handle digital certificates that have been tampered with, Roel Schouwenberg, senior antivirus researcher at Kaspersky Lab, said Tuesday at the company’s North American Virus Analyst Summit in San Francisco. One problem is that it doesn’t clearly indicate when such certificates have been tampered with, he said. This could make it difficult to stop malware that uses digital certificates that have been altered. That will eventually impact the reputation-based approach antivirus vendors are now taking to keep users secure.
Loading ...
Kaspersky: Sham Certificates Pose Big Problem for Windows Security
Posted by: Richard Adhikari August 4, 2010 11:55 AMMicrosoft Windows doesn’t have a good way to handle digital certificates that have been tampered with, Roel Schouwenberg, senior antivirus researcher at Kaspersky Lab, said Tuesday at the company’s North American Virus Analyst Summit in San Francisco. One problem is that it doesn’t clearly indicate when such certificates have been tampered with, he said. This could make it difficult to stop malware that uses digital certificates that have been altered. That will eventually impact the reputation-based approach antivirus vendors are now taking to keep users secure.