encrypting system files to prevent malware?


  1. sdowney717
    Posts : 705
    Windows 7 Ultimate x64
       New #1

    encrypting system files to prevent malware?


    I just had a thought.
    Could the entire file system be encrypted with private keys?
    That would mean updates and installs would need to become encrypted.

    Then when files are executed, a decryption is needed for them to run.
    Malware could not run as it would not have been encrypted by your private key..
    So run thru the decrypter, the file is trashed.
    Would this be too slow to work?
      My Computer
    Quote Quote

  3. soho1
    Posts : 469
    Win 7 Pro 64-bit
       New #2

    Not sure what you envision. If a decryption is required to run, how would you provide the decryption keys for all the thousands of program executions the OS would normally perform?

    This doesn't sound like it would necessarily prevent a change to a key'd file, just that it was now a non-key malware file. Sorry if I don't follow.
      My Computer
    Quote Quote

  4. sdowney717
    Posts : 705
    Windows 7 Ultimate x64
    Thread Starter
       New #3

    Everyone would have a private key unknown to anyone else, including the malware.
    Means you could not share a program file like an exe or dll to another system unless it was decrypted by you first.
    A non keyed malware file could not run as all files that will run must run a decryption event on them.

    Malware that rides along installing other programs would have to know your private key to encrypt the addition malware it installs by itself, otherwise the malware installed could not execute as a file.

    Not saying any of this would work at all.
      My Computer
    Quote Quote

  6. LMiller7
    Posts : 2,497
    Windows 7 Pro 64 bit
       New #4

    I am sure you are not the first to have this idea. To me it sounds like a good idea on the surface but falls apart when you get into the details. I can see a number of issues but they are not easily described and I will not try.
      My Computer
    Quote Quote

  7. logicearth
    Posts : 5,642
    Windows 10 Pro (x64)
       New #5

    You know Microsoft was already looking at ways to secure the boot process and the system files from such things. Use of Digital Signatures haven't really taken off like they hopped. Then when trying to secure the boot they used UEFI's SecureBoot method. We saw how that went down. Everyone was in a tizy over nothing. But encrypting the files isn't going to do anything really.

    Summary of a Digital Signature:
    Create a hash of the source material, use your private key to encrypt the hash.
    Send the file and the newly created signature to the recipient.
    The recipient creates a hash of the material, then decrypts the signature with your public key.
    You use that method to determine if the material was forged or tampered with.
      My Computer
    Quote Quote

 

  Related Discussions
OK, yesterday, a random .exe was found on my desktop (that i never downloaded) and it opened automatically saying that all of my files were encrypted and i needed to click something to remove encryption... Sensing an obvious trojan I decided to shred the file with iobit and everything was fine....
According to Miscrosoft (How to use Encrypting File System (EFS) with Internet Information Services) the following is/was a best practice: "Encrypt the Temp folder (%TEMP%) to ensure that the temporary files that are created by various applications are encrypted" Two questions: (1) Is...
Our Sites
Site Links
About Us
Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

 © Designer Media Ltd
All times are GMT -5. The time now is 21:07.
Find Us