Raymond Roberts Microsoft
Jakub Kaminski Microsoft
Eileen Sinnott Autodesk
The constant and consistent trend of malicious activity targeting the AutoCAD platform has led to a review of existing AutoCAD features; generally from a security point of view, and specifically, from a malware protection view. As a result of this review, several security enhancements have been included in the AutoCAD platform to stem the flow of malicious activity targeted towards it.
In this paper, we will present and discuss the enhancements implemented in AutoCAD 2013 Service Pack 1, along with some of the changes still on the drawing board.
We then test the impact of improvements - using infection scenarios actually seen in the wild and gauge the effectiveness of the new enhancements.
We will also compare these enhancements against a baseline install of AutoCAD and detail the differences in results, demonstrating the impact of security improvements.
As a result, we determine how these changes may impact current and future malware targeting the AutoCAD platform.
VB2013 takes place 2-4 October 2013 in Berlin, Germany.
The full programme for VB2013, including abstracts for each paper, can be viewed here.
