• DocumentCode
    672493
  • Title

    Four Fs of anti-malware testing: A practical approach to testing endpoint security products

  • Author

    Edwards, Simon P. G.

  • Author_Institution
    Dennis Technol. Labs., Dennis Publishing Ltd., London, UK
  • fYear
    2013
  • fDate
    30-30 Oct. 2013
  • Firstpage
    1
  • Lastpage
    9
  • Abstract
    This paper presents a practical approach to testing anti-malware products, focusing on the following four areas: 1. Defining the scope of the test, 2. Interpreting the test results, 3. Methods of data collection and 4. Managing the financial costs of a test. I will also note a number of common mistakes that testers make and explore some of the technical and non-technical challenges that testers face, including attacks on test methodologies by the anti-malware industry and other third-parties. While the principles discussed apply to many types of anti-malware testing, on different platforms, this paper addresses specific issues relating to testing anti-malware products that run on x86/64 platforms and exposing them to `live´ malware threats that actively attack systems on the internet at the same time.
  • Keywords
    Internet; data acquisition; invasive software; program testing; Internet; antimalware industry; antimalware product testing; data collection; financial cost management; live malware threats; Face; Industries; Internet; Malware; Software; Testing;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Anti-malware Testing Research (WATeR), 2013 Workshop on
  • Conference_Location
    Montreal, QC
  • Type

    conf

  • DOI
    10.1109/WATeR.2013.6707875
  • Filename
    6707875