iEntry 10th Anniversary RSS Archive

IT Management Begins With Security
SecurityProNews > News > Security News > Unintentional Betrayal Of CIOs
Search:
[ news_security_news ]

Unintentional Betrayal Of CIOs



Ryan Sherstobitoff
Contributing Writer
2008-03-13

SecurityProNews: Insider Reports Insider Reports RSS Feed


Currently, buying decisions for security solutions are heavily influenced by the reviews and certifications they receive that measure product quality and effectiveness.

These ratings, published by independent third parties, are oftentimes used as a barometer for how CIOs make buying decisions and whether they decide to go with one product over another. What CIOs don't realize however, is that the sources they have been depending on for these "valuable" second opinions, are using outdated and inaccurate testing methodologies, and therefore, providing a false sense of security.

The current testing methodologies utilized by reviewers and independent third parties to verify that a product meets certain requirements mainly takes into perspective a small portion of the vendor's protection model related to prevention capabilities for malicious code. Security products are being rated against their ability to catch known viruses via signature based defenses. In addition, these tests do not take into consideration the vendor's proactive capabilities, either through heuristics or behavioral-based technologies. Thus, current malware testing does not reflect the vendor's actual capabilities to protect their customers from the most relevant security threats.

The main problem with this approach is that signature-based defenses are failing to protect companies against the onslaught of new threats that are classified by malware technicians each day by the thousands. In fact, the average infection rate in systems with up-to-date protection is 72 percent according to a study conducted by PandaLabs . Using these inaccurate testing methodologies, product reviewers are not looking at the entire picture and are only basing their ratings on a portion of the entire product's detection capability. If the reviews are not all-encompassing, conducted inconclusively and/or neglect to factor in all aspects of malware detection and prevention, the ratings will be skewed.

So what is the anti-malware industry doing about this issue?

The industry is addressing this problem through the formation of a standards group known as the Anti-Malware Testing Standards Organization-or AMTSO-in which Panda Security is a founding member. The objective of the AMTSO is to promote standards and best practices for correctly testing and evaluating the effectiveness of anti-malware solutions on the market. A vast number of other vendors including Microsoft, IBM, McAfee and Symantec are also a part of this group because they all recognize that significant improvements need to be made in the review process.

With the formation of the AMTSO, reviewers and independent third parties will begin to adopt the best practices developed for testing and evaluating anti-malware solutions-taking into consideration all parts of a vendor's protection model and not just focusing on signature-based detection as the sole driver for product quality.

By adopting these standards, reviews will become more encompassing of the entire product's security capability and will offer a more authentic performance rating. This will benefit CIOs in the long term as they will be purchasing products on the basis of actual protection capabilities and not a pre-conceived notion that users are protected by the signature module.


About the Author:
Ryan Sherstobitoff is chief corporate evangelist of Panda Security. Sherstobitoff oversees and manages the strategic response to new and emerging virus attacks.

Sherstobitoff’s extensive experience includes work designing and managing network infrastructures, as well as mobilizing and managing security technologies throughout widely dispersed large-scale networks. Sherstobitoff has worked on a variety of security technologies in a myriad of platforms and environments, including financial, industrial, and service infrastructures.

Prior to joining Panda Security, Sherstobitoff worked as a consultant for GE and Crystal Decisions (Business Objects).

Sherstobitoff earned a professional designation in Information Systems from Okanagan University in British Columbia. He holds industry certifications in Microsoft MCSE, Microsoft MCSA, A+, Cisco CCNA and Comptia A+ Certified.

More news_security_news Articles

SecurityProNews: Insider Reports Insider Reports RSS Feed

Get Your Site Submitted for Free in the World's Largest B2B Directory!

Email Address:
* URL:
*
*Indicates Mandatory Field

Terms & Conditions

iEntry Featured Services: Jayde Member Services | Forums | Freeware | Advertise with Us

Contact Us | Advertise | Newsletter Archive | Sitemap | Submit an Article | News Feeds
SecurityProNews is an iEntry, Inc.® publication - 1998-2009 All Rights Reserved | Privacy Policy and Legal		 Join the WebProWorld Forums: Click Here
Virus Warnings

Subscribe to
SecurityProNews FREE!


[ more newsletters ]

Featured On:
article resources
Search Articles:
[advanced search]

WebProWorld.com
Get in-touch with industry experts and leaders
Post your site for review by expert and peers
Ask Security, IT, Development and Design questions

Free Membership: Join Now!

Visit WebProWorld.com

Titan Quest Forum
The #1 Titan Quest forum
Halo 3 Forum
The best Halo, Halo 2, Halo 3 forum
Nintendo Wii
Nintendo Wii news and views
Mac Software
The best in OS X freeware
Graphics Forum
Your source for graphic tutorials
SecurityProNews.com | Breaking eBusiness News Get Your IT Questions Answered - Click Here SecurityProNews News Feeds