https://community.checkpoint.com/t5/Firewall-and-Security-Management/hashed-updates-of-malware-signatures/m-p/231679#M44680 <P>There isn't any public documentation about what the PTC Download Agent does in terms of storing the offline signatures, much less confirming integrity.<BR />Best to reach out to your local office where the specific requirements can be discussed, possibly requiring an RFE.</P> Mon, 04 Nov 2024 19:51:45 GMT PhoneBoy 2024-11-04T19:51:45Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/hashed-updates-of-malware-signatures/m-p/231615#M44665 <P>is is anywhere in check point documentation a reference to the fact that when updating the databases of the security gateways with the new malware signatures the hash values of those files are also made available in order to check the integrity of those files? or is it any other method made available by check point in order to verify/ensure integrity of the feeds? But I'd need anyway a document/link where is stated that...</P> Mon, 04 Nov 2024 09:02:43 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/hashed-updates-of-malware-signatures/m-p/231615#M44665 Gherghi 2024-11-04T09:02:43Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/hashed-updates-of-malware-signatures/m-p/231665#M44676 <P>Malware hashes are checked via ThreatCloud, not from a local file.<BR />Unless, of course, you are using your own <A href="https://support.checkpoint.com/results/sk/sk132193" target="_self">Custom Intelligence Feeds</A>.</P> Mon, 04 Nov 2024 18:21:38 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/hashed-updates-of-malware-signatures/m-p/231665#M44676 PhoneBoy 2024-11-04T18:21:38Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/hashed-updates-of-malware-signatures/m-p/231676#M44679 <P>Yes, but what if the customer wants offline updates via Private ThreatCloud? How the customer could check the integrity of the updates downloaded from the Check Point Public Threat Cloud?</P> Mon, 04 Nov 2024 19:03:55 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/hashed-updates-of-malware-signatures/m-p/231676#M44679 Gherghi 2024-11-04T19:03:55Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/hashed-updates-of-malware-signatures/m-p/231679#M44680 <P>There isn't any public documentation about what the PTC Download Agent does in terms of storing the offline signatures, much less confirming integrity.<BR />Best to reach out to your local office where the specific requirements can be discussed, possibly requiring an RFE.</P> Mon, 04 Nov 2024 19:51:45 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/hashed-updates-of-malware-signatures/m-p/231679#M44680 PhoneBoy 2024-11-04T19:51:45Z