VeriSign offers free web site malware scanning
SSL programme provides certification for safe sites
VeriSign is expanding its SSL certification programme into malware scanning, allowing administrators to display a certification confirming that the site is free of malware attack code.
The service will perform daily scans on a site's HTML code, checking for malicious injections such as iFrames and scripts that redirect to attack sites known as 'drive-by downloads'.
If an attack is spotted, the certification is removed from the site and the administrator is notified of the breach. After removing the attack code, the administrator can contact VeriSign and have the certification image displayed again.
Tim Callan, vice president of marketing at VeriSign, told V3.co.uk that the malware scans are a natural evolution from the company's SSL certification programme launched in 2004.
"In the last few years we've seen the emergence of malware as an attack vector, and the really insidious driver of this is the drive-by download," he said. "The threat landscape has changed and we think there's an opportunity to make a difference."
VeriSign will also extend the certification programme into the web search market with Seal in Search, which will place VeriSign seals next to verified sites in search results.
Callan claimed that the service will be particularly useful to comparison shopping services that comb retail sites. Early tests have shown that search results carrying the seal are 18 per cent more likely to be clicked on by surfers.
Seal in Search is currently available on retail search engines TheFind and PriceGrabber, as well as AVG's Linkscanner security tool.
VeriSign is making the malware scanning and Seal in Search features available at no extra cost to all SSL subscribers in the US.
The company will extend the services throughout Europe within the next three months, and around the globe by the end of the year.
I'm the Beauty and you are the Beast.
A certain someone should do this after the big stink that got made over their security certificate problems.... *coughComodocough*
pacman -Syyu life not found in sync db
yes this looks promising
404 Page Not Found.
This user has not enabled signature viewing, if you wish to view this user's signature please upgrade to a Raymond Gold account. THIS PORTION OF THIS QUOTE HAS BEEN CENSORED BY SOPA.
Thanks for the share.
I don't need to know everything, I just need to know where to find it, when I need it.
Oh sure, let them run all over your site and check all of your code.
Do they sign a non-disclosure agreement first? I think not.
"Two things are infinite: the universe and human stupidity; and I'm not sure about the the universe." Einstein
Verisign is a trusted organisation. Its like saying "I won't install Kaspersky or Avira in my PC, as they read my files".