大家好,最近很忙,本来不想翻译它了,可是看到另一篇文章,在下改变了主意。原因一会再说。
老规矩,出错之处,大家见谅,但也欢迎大家指出,谢谢。
Rowan Trollope, senior vice president at Symantec , has a vision. He pictures a security suite that doesn't impact system performance at all—even one that makes the computer run faster. And he hopes Norton Internet Security 2009 will be that suite. Trollope shared this vision and some thoughts on Symantec's future, both in the security realm and beyond.
Rowan Trollope,Symantec 副总裁,有一个想法。他描绘出一款一点也不影响系统运行的安全套装------甚至能加速机器。他希望NIS2009就是这个套装,他对赛门铁壳的未来分享了一些观点。
What Consumers Want
上帝啊!你想要什么?
Trollope worked for Symantec in the early nineties supporting Norton Utilities, then moved to the Enterprise group. He returned to the consumer side in 2006 to take over the ailing Norton Internet Security line and turn it around; NIS 2007 and NIS 2008 are evidence of his success. But consumers don't have a clear yardstick for deciding which suite to buy. "They think Norton's pretty much the same as Kaspersky, or Microsoft ," said Trollope. "This is compounded by a feeling that maybe security isn't as important as it was. We've stopped hearing about virus threats on CNN, and Microsoft keeps trumpeting how great Vista's security is".
Trollope 在80年代早期在赛门铁壳为诺顿提供支持,后来去了企业部。在2006年,他回到了诺顿,管理不景气的NIS并取得巨大成功。NIS 2007 与2008就是成功的证据。但是用户没有清晰的标准去决定去买哪款套装。Trollope说,他们认为诺顿与KASPERSKY或者微软很像。出现这种情况源于人们感觉安全不再像以前那样重要。我们在CNN上已经听不到病毒威胁,微软也不断宣传VISTA安全性有多伟大。
To determine the right direction for the 2009 edition, Trollope's team interviewed ordinary users to find out what they want. The users presented a unified front—plain and simple, they're tired of security software that slows down their computer. Performance is the absolute number one issue. "Therefore, it's obvious that we must be the absolute best in performance. If I could create what's unquestionably the fastest security product in the world, without compromising security features, it would be very clear to the consumer why they'd buy Norton. Performance is the focus for 2009," Trollope stated
在决定2009版本正确方向时,Trollope的队伍调查了普通用户,以找出他们的需要。用户的想法很一致,直白,简单。他们厌倦拖慢系统的安全软件。效率当然成为了首要问题。因此,很明显我们的效率当然要成为最好的。如果我能制造出世界上最快的安全产品,没有减少安全功能,对于用户来说他们为什么买诺顿就很明确了。效率是2009的关键,Trollope陈述道。
Trollope explained that the effort goes way beyond merely optimizing existing code. Five hundred engineers are working on different aspects of the program, completely reworking them for speed. He observed that it takes, on average, eight minutes to install NIS 2008. He challenged the team to take as little time as possible beyond what's needed to copy the program's files. The team had to stop using Microsoft's installer and write a new installer from scratch. Their aim—installation that takes just one click and finishes in under a minute
Trollope解释道,努力不只在于优化现有代码。500名工程师正在研究程序的各个方面,为了速度完全重写它们。他观察到,平均花8分钟安装NIS2008。他挑战这支队伍,尽可能减少复制程序文件的时间。这个队伍不得不放弃Microsoft's installer ,并从一开始研究出了一个新的安装程序。他们的目标,安装仅需一次点击,在一分钟内完成。
Scanning is another slow process; the team strives to vastly increase scanning speed by using a huge whitelist of known good programs "in the cloud". Downloading updated signatures can also cause a periodic performance hit, so they invented a new type of streaming definitions. According to Trollope, they've made well over 300 individual changes specifically to improve performance and filed a number of patents on this new technology.
"We're not there yet," admitted Trollope. "We're still working on it."
NIS 2009 should go into beta testing this summer, and the final product is expected in the fall, as usual. We can hope that it will live up to this vision.
扫描是另一个缓慢的方面,他们正努力加快扫描速度,通过使用大量已知安全程序的白名单。下载更新数据也能导致周期性效率问题,所以他们研究出了新的streaming definitions(专业名词,抱歉无法准确翻译)。Trollope表示,他们已经做出了超过300处改进以提升效率,并对新技术申请一系列专利。
我们还没达到目标,Trollope说道,我们还在努力
NIS 2009将于夏季进入BETA测试,计划如平时一样秋季正式发布。我们也希望它不辜负我们的期待。
A New View of Security
安全新理念
New malware strains appear every day, and the rate is increasing. Existing solutions can't keep up. Trollope noted that in 2000, Symantec released about 10,000 new definitions, while in 2008 they anticipate over a million. The standard signature-based technique for virus detection was invented in the mid-eighties and is virtually unchanged today, though it's more refined. Non-signature behavior-based products generally detect 60 to 70 percent of actual zero-day threats in testing—maybe as high as 80 percent. But to reach the necessary better-than-99-percent range, they invariably start marking non-malicious programs as bad. This high rate of false positives means that behavior-based detection alone is not a viable solution.
新的恶意软件每天都在出现,数量不断上升,但是现有方案无法解决。Trollope于2000就表示过,赛门铁克发布了大概10,00新病毒定义,而在2008他们预计是超过1百万。标准的基于定义的病毒扫描,于80年代中期被发明,尽管在不断改进,实际上今天也没变过。无需定义的行为拦截程序在测试中大概拦截了百分之60到70的零日威胁,最多不超过百分之80。但为了达到必要的超过百分之99的地步,它们开始标记非恶意程序有问题。高误报率表明单独的行为拦截不是可行方案。
Trollope explained that Symantec is in the middle of a three-year push to invent a completely new type of protection against malware. Developed by Carey Nachenberg, a Symantec Fellow and the company's most senior technologist, the innovative technology is built on statistical techniques. Trollope offered a very simple example. If a particular application is installed on millions of systems, it's almost certainly not malicious. But an application that's found on just a handful out of a million almost always is malware.
Trollope表示赛门铁壳在三年中,研究出了全新的针对恶意软件的保护。由Carey Nachenberg开发,Symantec成员,并且是公司最高级技术人员。这个创新的技术基于统计技术。Trollope举了个简单例子,如果某个特定的应用程序在上百万系统发现,几乎可以肯定它无害,但如果,它仅在一百万中的少部分,它几乎肯定有问题。
If successful, this will be a truly significant advancement. Signature-based detection is always a step behind the bad guys —a zero-day threat has free reign until they can cobble up a new signature. Even behavior-based detection needs samples of malware so it can distinguish malicious programs from good ones. The statistical technique doesn't need any information about a program's signature, nor about its behavior. It should detect a new malicious program from day one (with "should" being the operative word).
如果成功,这肯定是伟大的进步。定义扫描永远落后于坏家伙,一个零日威胁有完全的统治权,直到被定义捕获。即使是行为拦截也需要恶意软件样本,来区分恶意软件和安全程序。统计技术不需要任何程序定义信息,或者它的行为。它应该能捕获任何新的零日威胁(在现实世界里总有意外)
Trollope naturally couldn't say more about the details of the new detection system. It's still in development, and Symantec doesn't want to give away too many secrets. He did point out that a huge sample set is needed for statistical significance. The new technology will be present in Symantec's 2009 security products, but not active—just gathering information. They hope to have it fully functional and integrated into the 2010 version of the suite.
Trollope不愿对新的检测系统作更多透漏。它还在开发中,赛门铁壳不希望透漏更多秘密。他表示大量样本设置对于统计技术仍是需要的。新技术将于2009发布,但不启动-----仅仅收集信息。他们希望充分开发它的功能,打算于2010版本引入。
Solving All Your Problems
解决你所有问题
"In my own home," observed Trollope, "we have lots of technology. Laptops, the kitchen computer, wireless printers, network attached storage, music players…and for all of this technology we have problems. Things go wrong all the time. Norton products aren't solving these new problems."
Trollope在自己家里观察到,我们有很多科技产品。笔记本,厨房控制器,无线打字机,网络附加存储,音乐播放器.....和其它有问题的科技产品。麻烦总是发生。诺顿产品不能解决这些问题。
He noted that while NIS 2008 protects the system against threats, it can't help, for example, with connectivity. He'd like to see Symantec solve a wider range of problems. "Going back to my tech support days, I can say confidently that if you have a PC, then you have a problem."
他表示尽管NIS2008保护电脑免于威胁,它却无法处理,比如连接问题。他希望赛门铁壳能解决更多的问题。回想我做技术支持的时候,我敢说只要你有PC,那么你就有问题。
Typically, a user with a problem gets bounced around. The OEM blames Microsoft, Microsoft blames the ISP, the ISP blames Symantec. Often, users call Symantec with problems that are completely unrelated to their Norton product. As an experiment, Trollope's team started funneling some of these calls to a group of professional analysts and helping out the consumers with any type of problem. The experience gained from this trial led to the creation of Symantec's PC Checkup service—for a fee they'll fix whatever is wrong.
比如用户反映问题,OEM会指责微软,微软指责ISP,ISP指责赛门铁壳。经常用户打给赛门铁壳客服,询问不属于诺顿产品的问题。在实验中,Trollope的队伍开始解答打给这些专业分析人员的电话,帮助解决任何问题。来自这次尝试的经验导致PC Checkup服务----他们会收费来修复一切。
Trollope hopes to position Symantec as the company that's all about keeping tech working in your home. The company examines the kind of problems users ask them to solve and looks for product possibilities. Consumers want protection for their kids online, yet aren't happy with current solutions. To address this problem, a team is working on Symantec Family Safety. Families have tons of important personal documents, pictures, music, and more stored on their computers, but only a tiny few backup this data. As a result, Symantec integrated online backup into Norton 360.
"You'll start to see us kick off more products that solve problems," concluded Trollope. "First, we're addressing the number one request in security: better performance. Next, we're inventing new technology to protect against future malware with 99 percent accuracy. Finally, we're going to grow our vision in the world and help solve problems. It's a big shift from just being a security company."
But to those of us who remember the Norton Utilities, maybe it isn't such a big shift after all.
Trollope希望将赛门铁壳定位于一家可以解决你家庭所有科技产品问题的公司。公司遇到过用户要求他们解决这类问题,并寻找产品潜在发展。消费者希望保护他们上网冲浪的孩子,并且不满意现有方案。为解决这类问题,一个队伍正工作于Symantec Family Safety。家庭有很多重要个人文件,照片,音乐,并且大部分储存于机器上,很少备份数据。因此,赛门铁壳将在线备份引入NORTON 360。你会看到更多我们解决问题的产品,Trollope总结道。首先我们重视安全中首要问题,更好的效率。接着我们引入新的科技保护未来威胁,达到百分之99的准确性。最后,我们将在世界里扩大我们的方向,帮助解决问题。从单纯的安全企业这个转换可够大的了!
但是对于我们中关注诺顿产品的人,也许这还不是很大的变化!
http://www.pcmag.com/article2/0,1759,2308131,00.asp?kc=PCRSS05079TX1K0000992
翻译肯定有很多问题,但也使在下努力的结果.
转载请注明,转自卡饭.谢谢.
[ 本帖最后由 hljdqzr 于 2008-6-7 18:51 编辑 ] |