back to article Intel: 'We ate McAfee to slip security into silicon'

Chip maker and now software player Intel tried on Tuesday to explain the finer points of its $7.7bn acquisition of security software maker McAfee, which closed at the end of February after jumping some European Commission regulatory hurdles. In a conference call with Wall Street analysts, Renée James, an Intel senior vice …

COMMENTS

This topic is closed for new posts.
FAIL

Belongs?

....."and in the long run to push security down below the operating system kernel, where it belongs."

.

Right. Single point of failure and a security monoculture is an absolutely spiffing idea, isn't it?

2
0
FAIL

Confused

Microsoft didn't buy MacAfee - and Microsoft Security Essentials is good enough.

Intel paid top dollar - was it worth it ?

0
0
Flame

Worth it - nope!

Intel should have bought something that can actually detect viruses.

1
0
Coat

But....

"Intel should have bought something that can actually detect viruses."

McAfee detects and hobbles Windows, doesn't it?

I seriously hope Intel means well and makes an open API to their on-chip AV links, so the likes of Avast, NOD32, et al, can take advantage of this hardware acceleration (or at least lower-than-kernel hooks). It would make AMD processors less desirable in the workplace. If Intel pulls a 666 and embeds a VM micro-McAfee filter that nannies your kernel (be it Windows, Linux, or Mac), it will be the day that regardless of the performance boost of Intel CPUs, I'll be buying AMD 100%. Why hobble your hardware when you tend not to pick up virii anyway? Reminds me of the scare days of putting DRM in your HDD controllers....and your CPU, and northbridge, and southbridge, and.... well you get the idea.

0
0
Bronze badge
Thumb Down

McAfee in a chip?

The only way Intel could have gone worse is if they'd bought the rights to Norton...

6
0
Silver badge
Grenade

Game Changers

"What's more, Chipzilla has gained access to valuable intellectual property." .... Ah yes, the prime product spin-off in the Great Gaming of the Great Game, Crazy Ideas which Work Sublimely to EMPower SMART PC Project Engineers and AEIOU Non-State Actors with Programs which Virtual Machines and Cloud Crowd Command and Control of CHAOS and Havok are able to present with the SMARTer Enabling Development of Future Reality Scapes for Replacement Presents/Manufactured Realities with Myriad Derivative Options for Seamless Placement in Media and Live Operational Virtual Environments with ITs Virtual Remote Control of the Universal Intellectual Property Space ....... and CyberIntelAIgent Terrain with XSSXXXXStreams Teamed with Novel Energy and Quantum Control of the Virtual Operating System.

And if that is not what Intel is all about, then do they have a) another swift and chaotic mega purchase to make and/or b) competitive viable opposition with overwhelming stealth advantage and/or c) hostile and alien take-over market conditions for havoc in chaos situations. And that is not to suggest that Havok is a CHAOS** mole and SMARTer Great Anonymous Game Trojan, although in Worlds where Nothing is Impossible, is it always Possible, and whenever Possible and Advantageous, is it ever more likely in IT to be Probable and a Definite Fact rather than a Dubious Fiction.

*Astute Entities Invisibly Operating Universally

** Clouds Hosting Advanced Operating Systems

Of course, what is to say that such a fruity, spicy source is not a fine sauce developed for HP and the Orient and hardware marketplaces too.

0
0
FAIL

Great

I never wanted McAfee products on a PC even if you paid me to run them, and now Intel's going to cram them into the silicon anyway. Woohoo for progress, now a little bit of every intel chip I pay for goes towards this acquisition. On a positive note, maybe the day will come where they shut down McAfee's software development so we don't have systems with both on it. Hardly seems likely though, now it'll be in the driver pack.

0
0
Anonymous Coward

ok

buy ARM next time?

0
0
WTF?

McAfee ... more like mcBorkUrPC!

So do we now have to brace for the update that borks our ESX or Linux clusets due to Intel pushing a update? What a scary thought!

0
0
Thumb Down

Crapware baked into every chip...

Sounds like a good reason for Intel's embedded competitors to start sticking "ARM inside" stickers on every piece of kit they sell. I honestly can't see how the McAfee that every Windows admin has learned to hate has anything to teach Intel about embedded security.

1
0
Silver badge
Paris Hilton

While they have their explaining hat on

They could perhaps explain why they partnered with Symantec for this;

http://www.theregister.co.uk/2011/02/12/intel_ipt/

0
0
Silver badge
Joke

antivirus in a chip

Does this mean that the successor to Sandy Bridge won't run Windows?

1
0

Something like that would happen if av guys didn't take measures

I have noticed Kaspersky 2011 have already put svchost.exe of Windows to stock ignore list. It is kinda funny to see it end up there because it acts like a virus itself, messing up real antiviruses (not mcafee) heuristic ai code.

Of course they must have coded a seperate module to watch it.

One gotta wonder how many millions of lines had to be written because windows internals act pretty much like a virus.

0
1
FAIL

McAfee? On a chip? ROFL!

Space is at a *premium* on chip layouts, how the hell's that going to work?

"Today, Intel introduced their new Core Duo + McAfee security chip... Coming in a 42,924 pin package on a chip the size of a medium lasagne, it represents a new triumph(*) for wafer-scale integration. A spokesman for Intel today denied that 98% of the die was in fact occupied by 'empty, vacuous-but-pretty-looking bloat'".

(*) - In the Lewis Page sense of the word.

2
0
Silver badge
Troll

The real reason they need McAfee?

So that average users will need 4+ core CPUs to write a letter... :P

1
0
FAIL

Well Duh!

If Intel wants to build McAfee into their chips then it's a good reason to buy AMD, McAfee is terrible, much like a story that simply repeats what both Intel and McAfee already told us when they first announced their joining.

0
0
Paris Hilton

Ahh good?

iNTEL thinks security is important?

0
0
Big Brother

Oh Great

While pushing the anti-virus below the OS layer might sound like an awesome idea on paper, it's going to give malware authors a fixed height bar they need to jump.

As it stands, trying to hide malware from a single, or a few anti-virus packages is feasible but not all anti-virus products work the same way so the malware does get found. Each anti-virus package has it's own bar height the malware authors need to jump in order to hide from detection.

If you go putting the detection engine into silicon, the speed that the detection takes place will be blistering and when the silicon is released the malware won't have anywhere to hide, but with the ingenuity and ability of some of these malware authors it will be a matter of weeks before new malware will start coming out that is able to hide from the hardware detection engine.

Once the malware is able to hide from the onboard detection, it becomes useless until you release updated silicon and ship new mainboards, which for customers is expensive and annoying but for intel and the mainboard manufacturers is a profitable affair!

1
0
Anonymous Coward

belt + braces

just because you have AV in silicon does not preclude you from having it in software as well

0
0
Silver badge
FAIL

That thing I'm wondering is...

So what happens when it's database needs updating? Flash it to the chip? or have the chip look for a (Hopefully) encrypted file somewhere on a drive or flash chip in the machine?

And how fast will this get cracked and used to introduce viruses and malware that completely bypasses whatever OS, EFI or bios the machine is running?

0
0
Pint

True...

While that is true, you will already have paid a premium to the mainboard manufacturer for the inclusion of the anti-virus silicon, which is really more money down the drain, not only in licensing of the silicon, but power consumption to run not only the useless silicon anti-virus but the additional CPU load of the secondary AV.

To me, it's all a waste of money, current AV methods are pretty effective if you keep on top of the updates and use safe browsing habits.

0
0
Happy

Ba-dum TISH!

As called here: http://forums.theregister.co.uk/forum/1/2010/08/19/intel_mcafee/

by others as well as myself!

Although I do find myself wondering how they'd EVER get McAfee to not be a vast consumer of resources and actually run fast...

0
0
Terminator

Why whitelisting don't work

Adobe Warns Of Zero-Day Attacks

http://www.eweekeurope.co.uk/news/adobe-warns-of-zero-day-attacks-23865

0
0

Removed from whitelist (hopefully)

All serious av companies (e.g. Not mcafee) with white list scheme includes de-listing in their products via definition updates.

I really suspect anything rather than file integrity is white listed in case of adobe flash plugin. I am sure of other companies but not using mcafee products since 1998 where it failed to detect its own cih infected exe.

0
0
Terminator

keep security products in step with malware?

> McAfee has an installed base of over 300 million endpoints, and has amassed 500 patents as it built its products and the systems that keep its security products in step with malware.

How about designing computers that don't ever run malware. Keeping an ever growing whitelist of malware is bound to fail.

> Wind River has 200 OEM partners, and they crank out about a billion new devices a year. That's a lot of McAfee licenses ..

0
0
FAIL

Yeah, how about designing computers that don't ever run malware?

Of course anyone capable of doing that would probably prefer to use their magical powers to solve the halting problem, but maybe you could get them to design you a CPU after that...

1
0
Bronze badge
Flame

Oh tremendous

Try uninstalling it now, sucker!

I can only assume this is the work of some subversive anti-determinist movement within Intel trying to invalidate Moore's Law by making each successive processor perform half as well as the last.

Kill it! Kill it with fire!

0
0
Silver badge

Porky Pies for Sale ..... Everyone a Winner when spiked with Hot Source

"Chip maker and now software player Intel tried on Tuesday to explain the finer points of its $7.7bn acquisition of security software maker McAfee, which closed at the end of February after jumping some European Commission regulatory hurdles."

Of course, such seemingly incompatible technological marriages [a chip maker and dodgy malware pimping crack security software house .... a chalk and cheese amalgam] have got nothing to do with the "Keeping the Share Markets and Stock Traders Alive and Ticking in a Collapsing Ponzi Capitalist Great Game", is it. Oh no, most definitely not . The arranged marriage makes perfect sense and is a fab union made in heaven.

0
0
Gold badge

'... to slip security into silicon'

I'm confused. Intel slipped security into silicon when they produced the 286 (at Microsoft's behest). I'm not aware of any holes in the resulting 4-ring model, despite about 3 decades of time to find them. (Hmm, KISS anyone?)

Is this a case of some senior exec not knowing the first thing about his company's own products?

I'm even more confused. McCrappy's product relies on being internet connected to update an open-ended database of signatures. You can't bake "open-ended" into hardware, and certainly not on the "hundreds of megabytes" scale used by this particular brand.

So is this also a case of that senior exec not knowing the first thing about his acquisition's products either?

0
0

Just a phone call or mail to Holland

They could ask why Thunderbyte (TBAV) moved to software giving up dedicated card back in 90s. Operating systems, especially windows post vista are amazingly complex or we would never have to update av software at first place.

They spent billions for Trusted computing where even most lame mainboard maker disables in bios defaults. This will be another feature disabled by default or, another "clean registry" tip among pc newbie sites.

If MS wasn't greedy and coded an antivirus API instead, just like defrag API?

0
0

Security in Si?

Perhaps few remember the "LOADALL" hole in the 286 security model, which I believe _was_ exploited.

And the unfortunate hole (between segments and pages) that was plugged most recently by the "NX bit", although if things had gone all Multics-like (as the 286 clearly intended) rather than all Windows/POSIX-like that hole would not have been there.

Not that I disagree with the basic argument that security in hardware should be more simple, not less. The complexity is where the faults hide.

0
0
Gold badge

Re: LOADALL

Rings a bell. Thanks.

0
0
This topic is closed for new posts.

Forums