The Container - An Overview
Comodo Containment is an isolated operating environment for unknown and untrusted applications. Running an application in the container means that it cannot make permanent changes to other processes, programs or data on your 'real' system. Comodo have integrated containment technology directly into the security architecture of Comodo Client Security to complement and strengthen the Firewall, Advanced Protection, File Rating and Antivirus modules.
Applications in the container are executed under a carefully selected set of privileges and write to a virtual file system and registry instead of the real system. This delivers the smoothest user experience possible by allowing unknown applications to run and operate as they normally would while denying them the potential to cause lasting damage. Users can also print documents from within the container. This is useful, for example, if a suspicious PDF has valid information that should be printed.
After an unknown application has been placed in the container, CCS also automatically queues it for submission to Comodo Cloud Scanners for automatic behavior analysis. Firstly, the files undergo another antivirus scan on our servers. If the scan discovers the file to be malicious, then it is designated as malware, the result is sent back to the local installation of CCS and the local black-list is updated. If the scan does not detect that the file is malicious then its behavior will be monitored by running it in a virtual environment within Comodo's Instant Malware Analysis (CIMA) servers and all its activities are recorded. If these behaviors are found to be malicious then the file is manually analyzed by Comodo technicians to confirm whether it is a malicious file or not. If found to be malicious, the executable is then added to the antivirus black list, the results sent back to the local installation of CCS, file quarantined and the user alerted.
By uniquely deploying 'containment as security', CCS offers improved security, fewer pop-ups and greater ease of use than ever before.