Testing times for internet security

Advice 2010-01-11 12:35
Armed with an understanding of how third party testing is conducted, resellers are in a strong position to advise their

‘Anti-virus sucks’. That bold statement made by Trend Micro CEO, Eva Chen. Far from being an empty, headline-grabbing claim, it warns of other data security risks being overlooked in favour of everyone’s favourite IT villain, the computer virus.

The risks that exist beyond viruses
At the heart of Eva’s concern, is the flawed belief among many businesses that if they have regularly updated anti-virus protection, their network, their business and their brand, is as well protected from serious risks as it can be. Bolstering their confidence are the reassurances provided by the anti-virus industry, working hard to warn of threats while helping their customers to protect against them. While their role is undeniably worthy, businesses need to understand that their anti-virus alone is not going to protect them against the current and next generation security risks and threats being channeled through the internet. These threats include malware, which has many sinister tricks up its sleeve including spyware and adware programs. It can also include risks like key-loggers, Trojan horses and worms. The problem is that anti-virus software alone won’t catch the latest malware, because it simply does not know how to detect it. And, with 5.5m pieces of unique malware discovered last year, it’s clear why Eva believes anti-virus alone sucks.
Third party testing – useful, or misleading?
Guilty of perpetuating this misguided understanding of what constitutes comprehensive security, are some third party testing labs. Their tests – and the subsequent reports that customers depend on for advice about which security product to buy – are often conducted using out of date and restricted testing methodology, and they often fail to test for or report on protection levels against the contemporary security risks a company may face.  Therefore, many independent tests fail to fully arm the customer with the information they need to make decisions about what security solution is right for their business.
A more effective way to test
To address this, Trend Micro is encouraging the industry adoption of a new third party anti-malware testing methodology that better reflect today's "real-world" conditions. One forward-thinking organisation, the NSS Labs, is providing two key metrics in addition to traditional threat detection rates. First, measurement of detection and blocking of threats based on their URL source, and, second, measurement of the time delay between when a security vendor is first aware of a potential new threat, and when protection from that threat is available at customer endpoints – or, the so-called 'time-to-protect'. The focus of third party testing should be on complete protection for customers, and it is essential that this protection – and testing - now extends far beyond simple anti-virus detection.
Bridging the testing gap
However, NSS Lab’s testing methodology is still in the minority, so until such time that other third party tests catch up and update their testing methods, resellers can play an essential role in making their customers aware that not all third party tests and reports provide a true picture of a product’s ability to protect against threats like malware. They can advise their customers by ensuring they understand how product testing is conducted, how the testing methodology can differ between third parties, and how relevant the tests are to their particular security needs.

21st century threats need 21st century protection
From a technology and threat management perspective, Trend Micro has expanded its offerings to meet increasing web threats head on, in the form of its Smart Protection Network. It is a multi-layered strategy to combat sophisticated Web attacks elicited by underground cybercrime networks for the growing number of businesses that are increasingly reliant upon the Internet. The new solution uses a combination of in-the-cloud technologies with other client-based techniques, which are leveraged as both on-premise products as well as hosted services. In fact, in NSS Labs’ recent group test of industry-leading consumer and corporate security products' effectiveness against socially engineered malware, it was proved that the cloud-client layered-protection approach out-performs competing solutions, and provides the best possible malware protection available.
As the internet becomes an increasingly essential part of our personal and business lives, and the back-bone of modern communication and commerce, a sad truth is that it will be the subject of increasingly more sophisticated attacks. Armed with the right knowledge and understanding of how third party testing is conducted, resellers are in a strong position to comprehensively advise their customers on which products to buy. While malicious attacks will continue to ‘suck’, at least their customers’ internet security won’t.

Tags:
Software
Security
Security
trend micro
anti virus

Related Articles

Potts takes partner role at IBM
Richard Potts names midmarket as a priority for IBM
Computerlinks strengthens security portfolio
Tufin and Sourcefire deals announced
Phoenix and City University
Phoenix boosts IT system for City University