We can all see that the amount of malware being produced is increasing day by day, but most of us probably do not know just how huge the numbers are. I came accross this assessment recently in a post by Bobbi Fleckman
Every day, more and more viruses appear. It's not your imagination. Sophos, a developer of antivirus software, estimates that some 30 pieces of malware come into existence per day. With more than 10.000 viruses per year.
This got me thinking and I would like to offer my thoughts up for discussion.
The majority of the security applications that we all use rely on matching their scan findings against a database of malware signatures. These signature databases have to be updated so as to keep up with the new nasties as they are released. 18 months ago, a weekly update was more than sufficient, but that is no longer the case. It is not uncommon to update daily now.
As the rate of new malware release increases, the need to have more frequent/larger updates will do likewise.The provision of these updates has a cost for the developers and as a result their overheads will increase also. I can foresee the time when the cost in maintaining the currency of the definitions file becomes unsupportable to developers and/or the frequency and size of updates becomes unnatractive to users.
In summary, I fear that if the current malware trends continue, the future of signature based detection may be shorter than we think.
Reasoned discussion is welcome here.