Comodo Takes a Container Approach to Security
Comodo's SecureBox technology is designed to lock down systems from threats although risks might remain from the host operating system itself.Container virtualization technology has become increasingly popular in 2014, partly because of the meteoric rise of Docker. Yet Docker isn't the only form of containers, and containers aren't just for Web servers. Security vendor Comodo is using its own container technology to help secure end-user systems with a platform called SecureBox. Comodo's antivirus security products have been leveraging sandboxed containers for some time, Kevin Gilchrist, Comodo vice president of product management, explained to eWEEK. As part of Comodo's antivirus product, unknown applications are run inside a container in order to prevent a system infection. The Comodo container technology sits on top of the host operating system and intercepts application calls to sensitive areas of the OS. The new SecureBox technology aims to solve somewhat of a different problem than does Comodo's antivirus product, Gilchrist said. In some cases, a user is not trying to clean up an entire machine, or perhaps the user does not own the system, he explained. He gave the example of a financial services company that came to Comodo with a request to help secure its users' machines but didn't want the responsibility of actually managing those machines. With SecureBox, a user can have a secured area on the OS that creates a container to execute applications safely.
Applications run within the SecureBox are protected from a variety of common threats, including keyloggers, which are hacker tools that grab user keystrokes in order to steal passwords. The SecureBox technology is also tied to a cloud-based antivirus scan from Comodo to further mitigate the risk of exploitation.