Hi. Is there any way to check if bases.cav definition file has been
downloaded correctly? And if not, could you also provide hash signatures
from now on for the full bases.cav definitions release?
Thank you
As far as I know there is no way to check the integrity of the download of bases.cav.
Out of sheer curiosity. Why are you interested in this?
And if not, could you also provide hash signatures from now on for the full bases.cav definitions release?Could you make a wish for this in Wishlist - CIS?Thank you
I’m guessing it would be good to check for corruption (or MITM attacks), I’d guess corruption of databases especially related to AV could be very damaging. If possible I would suggest Comodo sign all their future databases with their own digital signature and only allow databases that have that digital signature, would completely stop MITM attacks and could easily identify corruption (I think)
Wish made here https://forums.comodo.com/wishlist-cis/hash-values-for-basescav-definitions-t107985.0.html
along with my explanations.
Thank you.
I believe CIS already performs some kind of integrity check while importing/updating the AV database.
Yes it does anything wrong with the file the update or import fails.
I presume he wishes to be able to check after he downloads the base file before importing it.
Dennis
I’m guessing a traffic analysis might point it out. The real question is on the algorithm-- if it’s efficient and secure.