Three aspects were measured – detection capabilities, CPU usage and RAM usage – and each AV was put in its own virtual machine which each contained 70 mutated malwares. These malwares’ signatures are also not currently recognised by free online scanning service, Virus Total.
Needless to say Cylance beat out their traditional AV competitors, detecting all 70 malwares in its environment while still maintaining pretty low RAM and CPU usage.
As opposed to traditional malware detection which is signature-based and resource-consuming because of the side-by-side signature comparison method, Cylance works on something called ‘file energy’; you can tell if a file is good or bad at a glance.
Moving forward, Cylance foresees detection methods moving beyond signatures comparison on towards something similar to their ‘aura’ detection technology.
