Hey all I though I should give you guys an update seeing as Melih is talking about it right now in the public forum. Comodo is going to be updating the Comodo Cloud with over 6 million safe files that cannot be added to the trusted vendors list for various reason. What this means is that apps that are unrecognized by the local safe list will get checked against the cloud and if found safe will no longer be added to the sandbox. While files unknown by the safelist or the cloud will get sandboxed. This will basically stop all good programs for being sandboxed anymore and should really enhance usability. If you anyone has anything to add ( Melih) please so do. If anyone has any questions don’t hesitate to ask.
That’s awesome!
Do you know any date when it will happen? Any ETA?
They are working on getting everything going as we speak, I don’t know exactly when they will be done. Hopefully someone will tell us when the system is totally operational.
If Comodo can cut down on “safe file” popups, then it truly will be the ultimate free AV solution.
they will, and remember they are not going for ultimate free av solution, they want the ultimate av solution paid or not.
Will that make a difference for those who have Sandbox disabled?
I don’t think so because by disabling the sandbox you are disabling the automatic submission of files so I would assume the automatic look up would not work as well. But truly I don’t know maybe one of the devs can let us know.
I really wish the Comodo Cloud would be used to tame Defense+, apart from helping with Sandbox.
As I have said before, I think both NIS and CIS are great, but prefer NIS for usability. If Comodo improves on popups caused from safe programs, it will be incredible, especially for a free program. Looking forward to testing the new version out once the cloud is working.
BTW - For me it is the D+ popups that are more bothersome that the sandbox popups. I get 3-5 D+ popups for every 1 sandbox.
I think it will work like this:
a file tires to run → inspected by av (if good it will be passed on, if bad you will get a warning) → checked against local whitelist/trusted vendors ( if good it will be allowed to run, if not onlist it will get passed on) → if not on local list it will get sent to the cloud ( if found good in cloud it will be allowed to run, if not found it get passed on) → if found unknown in cloud it will get sandboxed → d+ will start alerting to actions.
6M is only the start
wow, very nice melih and comodo, thats insanely awesome!
even though im perfectly content with how comodo is now
So, according to that, even if you have the Sandbox disabled it will supress D+'s alerts.
If that’s the case it is a very, very good idea.
Again thanks to melih and all the developers. Now I will only say one thing. HUGE white/Safe list.
How soon? Days, Weeks, Months?
truthfully I don’t know, that was a guess on my part on how it will work.
I think this is the next logical step in strengthening prevention technology. The pop-up will decrease greatly as number and internet security will be improved. :-TU
indeed.
Sandbox exist to put unknown files into it…
if we reduce unknowns than we reduce the apps we put in sandbox…
if you don’t have sandbox enabled, then it reduces the D+ alerts you see…
Melih
Is there a reason to keep all of these sigs in the cloud only?
Not that it matters in general, but is this the direction in which CIS will be going? Will the whitelist eventually be kept entirely in the cloud?
I suspect so, for a few reasons there will be so many programs added that the white list will be very big. Will you want to download 500 megs to your computer or more? and it will be faster for them to update new programs, and it will actually be less of a drain on the servers because think about it, let’s say the list is updated 10 times a day and in one day they add 5MB to it, so they have to push out 5MB to 20, million users that means the servers will have to handle almost 100,000 GB of traffic per day, while if it is in the cloud, maybe only half of them access the cloud anymore because they don’t all install a new apps everyday and all known apps are white listed, and lets say it takes only 1MB per day to identify cloud programs so that means the traffic is now only 20,000 GB, a much lower demand on the servers.