Idarac
asked on
Anti virus scanning technique
Hi There
We are trying to decide on the method of opening our data files in our application.
1.Open all at the start keep them open throughout the program them close them ast the end.
2. Open and close files as we nned them in the program.
One of things we are wary of is the Antivirus auto scanning feature. How does the Anitvirus work when a file is open in a file based application given the 2 ways for opening files I have outlined above.
We are trying to decide on the method of opening our data files in our application.
1.Open all at the start keep them open throughout the program them close them ast the end.
2. Open and close files as we nned them in the program.
One of things we are wary of is the Antivirus auto scanning feature. How does the Anitvirus work when a file is open in a file based application given the 2 ways for opening files I have outlined above.
ASKER
Thank you for your response.
I guess I wasn't that clear.
We are building an file based application not an anti virus. But we hear alot about perfomance issues especially when the app is subject to an antivirus set to auto scan.
Keeping the Antivirus in mind what would be the perfomance difference between opening all the file at the beginning and close at the end. Or open and close then as we need them.
I guess I wasn't that clear.
We are building an file based application not an anti virus. But we hear alot about perfomance issues especially when the app is subject to an antivirus set to auto scan.
Keeping the Antivirus in mind what would be the perfomance difference between opening all the file at the beginning and close at the end. Or open and close then as we need them.
ASKER CERTIFIED SOLUTION
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
I'm not sure if I understood your questions.
1 - Are you writting a AntiVirus and do you want to know what is the best way to handle with virus signatures files?
2 - Are you writting a commercial application, and you are taking care of it doesn't be detected as a virus?
In this case, relax, most (near all) work based in Virus Signatures, which means that AV companys get a "unique" part of the evil code (virus) and use it to compare agains files, proccess, etc.
Other use Heurist, but if you just open and close your files, in your working directory, you will never get accused as a virus.
Some IPS (Intrusion Prevention Systems) work as anomaly rules, if a application "not trusted" try to be executed, it warn the user and deny the access. However, it's the way it work, just add it at the trusted application and all will be fine. :)
off-topic: I belive this doubt about how to handle your dat files, is more relevant from the point of view of your application performance. Check how is the usage of this data files, with frequency they are used, are all frequencys similar, is critical the time response of your applications, should your application run in slow/old machines, .... answer this questions will help you to choose the better method...
Hope this help,
Regards,