I was researching and we all know that COMODO uses Zero Trust. The research I was doing is that there are other antivirus products that use this technology, not just COMODO.
I wanted to know what the difference is between COMODO and other products that use the same technology, Zero Trust.
There are a few around and even some standalone like CyberLock/VoodooShield https://cyberlock.global/ which I use with whatever setup I’m using. I really like it.
Now can you tell me what the difference is between these more common products on the market, such as the well-known antiviruses, what is the difference between COMODO’s Zero Trust and the ones I mentioned above?
Zero Trust: is a simple Application Control… They deny everything.
Comodo’s Zero Trust does NOT deny everything…it automatically identifies and contains unknowns.
Its very easy to deny everything and call it Zero Trust. It will not be user friendly.
This is important for usability.
If you want a technical description: Only Comodo can provide: “Default Deny Security Posture with Default Allow security posture usability”
A Default Deny Security Posture means that, by default, all actions, connections, or processes are blocked unless explicitly allowed. It’s a highly restrictive approach that prioritizes security by ensuring that only known, trusted entities are permitted to operate within a system. This reduces the risk of unauthorized access or malicious activity but can limit flexibility and ease of use.
In contrast, a Default Allow Security Posture permits most actions, connections, or processes by default, only blocking those that are explicitly marked as unsafe. This approach prioritizes usability, allowing systems and users more freedom, but it increases the risk of inadvertently allowing malicious or unauthorized activities.
Balancing these two involves combining the security of Default Deny with the usability of Default Allow, creating a system where security is not compromised while maintaining user-friendly access to approved actions or processes.
Comodo have zero trust by default, Voodoo Shield is not good as Comodo. Compared to other antiviruses Comodo is harder to bypass but it’s not perfect. It didn’t contain everything but almost everything. Less than 1% of unknowns are not contained like AntivirusDefender6.6.6.lnk malware. In my theory Comodo didn’t containing opened by trusted applications via LNK files which makes it vulnerable little bit. But I need research more.