P2P updates?

ialtaparmakov · June 17, 2009, 8:10am

i had experience with symantec corporate - it has such feature - central local antivirus server
but
i had an problem with hole in windows - the hole was used by some worms
and network was almost completely blocked
and in this situation symantec corporate was
helpless and hopeless … because the central server was unavailable …

i was system administrator and i know that to maintain reliable server in virused environment
is nightmare and is too difficult …

instead i would suggest comodo the next idea :
what if it was possible to download updates from the next computer in the network ?
i think if someone can make updates to be download in peer to peer mode…
(i mean every comodo instance to be a peer to peer server for updates)
it would be some advantages i think .
at least reliability of providing updates would increase significantly …
and the problem with small network with bandwidth restrictions would be
solved automatically …

of course there is some difficulties in this
for example it is possible to spread fake updates and compromise
comodo but perhaps there could be solution - for example before
downloading from somewhere updates the client should contact comodo
to check some md check sums to ensue that updates are genuine
or the users could create list of trusted friends from which to download updates
i think this idea is not bad

and second something that comodo should think about (if it not already does -
i hope this note is not needed because comodo had already taken needed measures)
for example i have suspicions that some antivirus could be interfered by some network
activity that could spoil antivirus performance.
so comodo should think about ways comodo antivirus to protect itself form
such interference .

thanks
best regards

Arkangyal · July 3, 2009, 1:22pm

Can CIS use P2P technology to increase overall network performance and make the update process faster?
Example:

some computers/servers have updated their signatures (doesn’t matter how many);
you got a “Allow P2P update downloads” switch;
CIS checks the update data’s informations from the server anyway (hash, md5, etc. +version info i guess);
if “Allow P2P update downloads” enabled (checked), it’ll use that method first (if no peers around, then the server);

There shall be a specific rule in CIS to enable this update process (a default one or should be available if i allow P2P update downloads). ALSO, there must be a “Allow P2P update uploads” checkbox, so the user can decide if he wants to participate in this P2P update process.

Economy = yes, less hardwares and resources needed at center;
Efficency = yes, faster update process (more sources, faster locations, etc.);
Security = yes, CIS can check hash infos before the actual update process, CIS defends the user from other P2P connections if needed;

Citizen_K · July 6, 2009, 8:56pm

+1

OmeletGuy · July 6, 2009, 9:06pm

+1

ialtaparmakov · July 23, 2009, 8:47am

i am glad that this idea seems to be useful :))
and other- perhaps if updates are digitally signed by comodo
there will be no need to contact the center to ensure genuine updates
if of course digital signature is reliable enough and not too expensive

then for small isolated networks will be enough to find updates some way , install them to one of
computers and that`s it …

thanks best regards :)))

Kyle142 · October 4, 2009, 12:30pm

+1

jebuchanan · October 5, 2009, 12:22pm

definitely +1

ialtaparmakov · October 8, 2009, 9:16pm

i added poll
this could be useful