We have in excess of 15 million installed base of our CFP/CIS. The profile of these users are advanced users who like power and control of their system and don’t want stuff happening on their PCs without their knowledge. System administrators are within this group as well.
Now, as we make CIS more user friendly and enabling threatcast, the average users will benefit from the feedback on alerts that this experienced and advanced user base provides. This is a very unique position with the scale of user base and progress of CIS into everyday users. This is why Threatcast will work. Of course Comodo will be putting people on validating more popular alerts and migrate these alerts to either safe or blacklist too.
But what if some advanced users blocked a trusted/ok app according to their own preferences, so an average user decided to block the app too. But that average user is blocking an action of the app that the user needs, while the advanced user doesn’t.
I think there has to be pointed a quality control group, the group has to have knowledge about a wide range of applications and has to have the ability to analyse application behavior… this way, the quality and the quantity can be more guaranteed…
yes, threathcast is based on the thinking that the intelligence of the mass is more powerful than the intelligence of 1 person… this is a known theory and many people acknowledge this theory… it sounds very logical, still I have my doubts in some cases… (:WIN)
“in silence, without notification. Simply to check: with TC enabled, D+ in “CleanPC M, SM or PM”, when a new app is launched you may get a pop-up, like always. But, NO MATTER what you answer to that, if the app is listed on DB, you will get that rule! And your choice/rule goes away, without any warn. Even if you explicity type some permissions OR denials, you will get what is in TC DB. For an example: if you set to “ask” for all items for Firefox (trainning), next time you go to see the rule you will see that it is ALL allowed!!! Angry
Oh God… The only way to do your own choose is to let TC disabled at all! This is too much agressive! You can’t have TC for what you want only, or for what you don’t recognize (as a “help” to configure CIS).
I think that this is dangerous, for browsers mostly.” Link
One question, is this supposed to happen in TC? Is this the only way to use it or are there different settings with TC (e.g. “give me rating, but don’t change rules”) -or does this depend on the D+ mode you’re running in?
Well… There is a flaw to this threatcast. A team of Psychopaths could easily override the allow vote and making average people confused and blocked without knowing it that it was safe. You can maybe use the Usuability people to vote Allow or Block first before you release this as final, but have a perfect RC final-like version that doesn’t have as much ThreatCast votes or statistics in them.
First of all Threatcast should be an additional information for CIS users about how others answered to this kind of alert but not the main security considaration. That’s why I think that the Security Considerations tab should be always displayed first and not only if there is no Threatcast rating. ( Or at least add an option to Settings menu which would allow to set which tab should be displayed first when Threatcast is enabled).
Secondly, Theatcast shouldn’t send to database answers of users who didn’t choose ‘Remember my answer’ because most likely they Allowed/Blocked an application only for this session or for testing purposes.