DARPA Funded Startup to 'Bird-Dog' Rootkits 124
Ski_Bird writes "DARPA is funding a startup the supposedly has a unique approach to detect rootkits. The startup, Komoku, is ready to 'emerge from stealth mode with hardware and software-based technologies to fight the rapid spread of malicious rootkits.' They have a PCI card that doesn't necessarily determine that a rootkit is installed, only that the O/S has changed dramatically enough to warrant investigation. Microsoft, however, demonstrated a rootkit running in a virtual machine outside of the user's O/S workspace that made detection impossible."
Hardware can't be fooled like the operating system (Score:2, Interesting)
Re:Hardware can't be fooled like the operating sys (Score:4, Interesting)
Re:Notification (Score:5, Interesting)
Re:Built in OS (Score:4, Interesting)
You mean having all your OS buffer overflows built in the hardware?
'if' it works it'll just get embeded later (Score:2, Interesting)
Re:Built in OS Funny thing is... (Score:3, Interesting)
They US government (via some CIA (or other deep-cover/black-ops (so black that gravity and light and even THOUGHTS can't escape) org) front company will buy them in bulk, or encourage their sales into the US market (since the average user user/civilian/serf/subject is non-geek and won't even be SUSPICIOUS about such matters...).
Then, the US will have not only backbone, but capillary access to the Internets'* CNS.
But, China and others will have access to the circulatory system...
But, then China and the US will keep root-canaling each other... Hmmm, maybe China will not follow through on that multi-beelions "deal" with msoft. Would Linux be a better platform to be on, from a security standpoint if a PCI-based root detector can't detect a virus or unholy payload?
* Yes, Internets', not Internet's, heheheh