adplus-dvertising
frame-decoration

Question

Why can't encryption-based approaches address the vulnerability of malware?

a.

The CPU cannot decrypt and access code or data in the program

b.

Malware is too complex for encryption

c.

Encryption is not powerful enough to protect against malware

d.

Encryption makes it too difficult to analyze malware

Posted under Reverse Engineering

Answer: (a).The CPU cannot decrypt and access code or data in the program Explanation:No encryption-based approach can address this problem because it is always going to have to remain possible for the system’s CPU to decrypt and access any code or data in the program.

Engage with the Community - Add Your Comment

Confused About the Answer? Ask for Details Here.

Know the Explanation? Add it Here.

Q. Why can't encryption-based approaches address the vulnerability of malware?

Similar Questions

Discover Related MCQs

Q. What are some ways to hide malicious software?

Q. What is the most powerful analysis method for analyzing malware?

Q. What are antireversing techniques?

Q. What is the easiest way for antivirus programs to identify malicious programs?

Q. What is polymorphism?

Q. What is the weakness of polymorphism-based solutions?

Q. How does polymorphism prolong the analysis process of a malicious program?

Q. What is the potential weakness of the decryption code in a polymorphic program?

Q. What is required before entering a function that can be polymorphed?

Q. What is metamorphism in the context of malware?

Q. What is the benefit of using metamorphism in malware?

Q. What is required for a metamorphic engine to work?

Q. What kind of alterations can be automatically applied to a program by a metamorphic engine?

Q. What is a metamorphic engine?

Q. What are some parameters that can be randomized by a metamorphic engine?

Q. How does reversing a condition affect the program's code?

Q. What is garbage insertion?

Q. How can metamorphic engines make malware more difficult to identify?

Q. What should you do before attempting to analyze malware?

Q. What is the recommended method for transferring executables to the test system?