The just-released beta of Symantec's Norton Internet Security 2010 is more notable for what's under the hood than what you actually see. However, if you're planning to try it out, you'd better not do it on your main PC -- this is not only a beta release, but a temporary one as well. Currently, the installed beta says that it is good for only 14 days.
A shift from signatures to reputation
Symantec's comprehensive suite offers protection against viruses, Trojans, rootkits, spyware and malware of all kinds, as did the previous versions. Like those versions, it includes a firewall, intrusion protection, e-mail protection and Web protection; for example, it integrates with your browser and search engine to warn you away from visiting sites that might be malicious.
Symantec says that the newest release of its security suite marks a major shift away from signature-based detection to what it calls "reputation-based security technologies," which it claims offer more complete and up-to-date protection.
According to Symantec, traditional signature-based solutions simply can't keep up with the massive amounts of new malware released every year. The company says that Symantec researchers see more than 200 million attacks on PCs every month, many of them threats not seen before that may slip by signature-based security software. Because of that, the company claims, signature-based solutions by themselves can no longer adequately protect PCs.
Its new reputation-based security strategy relies heavily on Symantec's global product reach, in which millions of people who use Norton products and opt in to the Norton Community send information anonymously about the applications running on their system. Using this data, Symantec calculates a "reputation score" for applications, and uses that reputation score, in addition to traditional malware signatures, as the engine to keep PCs safe in Norton Internet Security Suite 2010.
Norton Internet Security 2010 isn't the first time a reputation-based technology has been used by anti-malware vendors. Cloudmark Desktop, for example, has been using it for years to protect against spam. But Cloudmark is a far smaller company than Symantec, with a smaller user base, and not as comprehensive a security suite. In addition, protecting against spam is far simpler than protecting against the myriad constantly evolving threats on the Web.
These days it takes a large-scale lab to judge whether reputation-based security is superior to signature-based security, so the final answer will have to wait until the fall of 2009 when NIS 2010 is expected to be released in final form. At that point, various labs will weigh in with their results.
The initial download of the beta installs a small piece of software that in turn downloads the beta itself, which is 88.5MB. Installation is relatively fast. In my case, it first uninstalled Panda Internet Security, which was active on the test computer, before installing itself.
I had several hiccups with my installation. At one point, one of the installation screens said that it had encountered an unrecoverable error, but rest of the installation still proceeded without issues. At another point, a screen popped up and told me that the program had encountered an error and was gathering information about it, but never said what the error was.
When I first tried scanning my system with the software, it wouldn't perform a scan because the virus definitions weren't up to date. But after some clicking around, I managed to download the latest definitions, and the scan proceeded without a hitch.
Aside from installation glitches, there may be one very serious drawback to this beta -- the software says that the subscription is good for only 14 days. It's unclear whether the subscription will extend for free beyond the 14 days because it is still in beta.
So be warned that if you download the software, it may not work properly after two weeks. (I've asked Symantec for clarification on this question and will update the story when I hear back.)
The interface: You've seen it before
Users of Norton Internet Security 2009 will feel right at home with the new version of the program, because the basic interface and all its workings are nearly identical to the existing version.
The main screen is the control center, which gives you access to your security functions and lets you turn features on and off. It's organized slightly differently than previous versions of the software, with three main sections: Computer, Network and Web (rather than the previous Computer, Web and Identity). Most of the underlying features, though, are the same.
As with the previous version, there are monitors on the left side of the main screen that show your CPU's current usage, and how much of that Norton is taking up. There's no real reason for showing you this information, except to drive home the point that Norton is no longer the bloated security suite of the past, and takes up much less RAM than previously.
That's certainly the case, although it still slows down your system more than lightweight antivirus tools such as Microsoft's recently released Microsoft Security Essentials or ALWIL Software's Avast!, both of which are free.