The Anti-Malware Testing Standards Organization (AMTSO) had another Membersmeeting on May 4 and May 5 2009 In Budapest, Hungary. At this meeting, 3 standard documents were finished and adopted. One of them is pretty unique as it is covering means to provide public analysis of anti-malware reviews where testing methodology used is compared to AMTSO’s standards for anti-malware testing. The primary goal of this analysis is to provide consumers with information on the accuracy and reliability of product reviews, and to improve the overall quality of anti-malware testing.
There are too many tests that do not publish any details on methodology used or sample set used, which leaves users only to guess why a specifc result was established. Without clarification, that test is as much worth as nothing then. Hopefully, with this process of public analysis, clarity will come for the end-users and the end-users can read why a test is 'not good'.
The two other papers adopted were “Suggested Methods for the Validation of Samples” to help the tester with deciding which samples are good to use for testing purposes and which are not and “Best Practices for Testing In‐the‐Cloud Security Products” which provides an overview of the problems faced in conducting reliable and repeatable tests of security products. As ‘In-The-Cloud’ is the buzzword of the moment, it is likely that many testers will try to test these solutions and we encourage them to read the documents and offered advice on how to approach the testing to minimize the problems this new technology brings to testing.
The full press release can be read here.
Add comment
If you find the content of this comment offensive, you can report it and our crew will have a look at it
Comments