Antimalware group sets product testing guidelines

Anti-Malware Testing Standards Organization establishes methods for antimalware testing

The Anti-Malware Testing Standards Organization announced on Monday that its membership has agreed on guidelines and principles for testing anti-malware products.

AMTSO includes more than a dozen antimalware vendors as well as the independent antivirus tester AV-test.org. AMTSO's collaborative effort to establish commonly agreed methods for antimalware testing are summed up in the two documents issued Monday, "Fundamental Principles of Testing" and "Best Practices for Dynamic Testing."

One AMTSO member, McAfee, said approval of the standards and guidelines is a "significant step for the security industry as a whole" because the collaborative effort should lead to more accurate tests of antimalware products, which McAfee indicated "are sometimes incomplete, inaccurate or misleading."

Several other AMTSO members, including Symantec, ESET, F-Secure, Bit9, Kaspersky Lab, IBM, Trend Micro, Sophos, Panda Security and Webroot, issued statements also reflecting optimism that the unity of purpose will lead to better testing of products that may influence consumer choice.

The first AMTSO document published Monday "encompasses fundamental principles of testing" and concerns common-sense concepts of reasonableness, says Dave Marcus, director of security research and communications at McAfee, a founding member of AMTSO, which he says is about a year old.

The second ATMSO document focuses on best practices for evaluating host-based antimalware products using traditional antivirus signatures in products used on desktops and servers, he said.

The underlying issue for the industry as pertains to product testing is there is often debate about what a malware sample selection actually is, Marcus says.

"What is the sample actually, is it malware, such as a malicious Trojan, or is it adware or spyware?" Marcus notes. "This is important because it gives the public and consumers what is detecting what and how accurately something is detected."

Marcus says AMTSO is expected to take up issues around network-based antimalware detection in the future as well as the question of alternative non-signature-based malware-detection methods, including behavior-based detection.

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

Tags malwareAMTSO

Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.

Ellen Messmer

Network World
Show Comments

Most Popular Reviews

Latest Articles

Resources

PCW Evaluation Team

Cate Bacon

Aruba Instant On AP11D

The strength of the Aruba Instant On AP11D is that the design and feature set support the modern, flexible, and mobile way of working.

Dr Prabigya Shiwakoti

Aruba Instant On AP11D

Aruba backs the AP11D up with a two-year warranty and 24/7 phone support.

Tom Pope

Dynabook Portégé X30L-G

Ultimately this laptop has achieved everything I would hope for in a laptop for work, while fitting that into a form factor and weight that is remarkable.

Tom Sellers

MSI P65

This smart laptop was enjoyable to use and great to work on – creating content was super simple.

Lolita Wang

MSI GT76

It really doesn’t get more “gaming laptop” than this.

Featured Content

Product Launch Showcase

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?