AMTSO releases draft guidelines for public comment

Posted by   Virus Bulletin on   Aug 26, 2008

First major publication emerges from testing standards body.

The Anti-Malware Testing Standards Organization, the global body set up to improve and support the testing of security software, has made available a draft of its first document, a set of general guidelines intended to encourage greater accuracy, reliability and trustworthiness in testing.

The document provides guidance on numerous aspects of testing, including strictures on ensuring the safe handling of malicious code and the running of fair, useful and accountable tests, and advice on openness and statistical validity in testing.

The document, the product of meetings held by the organisation since its foundation early this year and the formation of several committees and working groups, is now being made available for public appraisal, with a comment period running until October 17th. Final discussion and a vote on ratification of the proposed set of principles will take place at the next meeting, expected to take place in London at the end of October.

A link to the document, and details of how to submit comments, can be found on the official AMTSO blog, here. Full details on AMTSO are on their website here.

Posted on 26 August 2008 by Virus Bulletin

twitter.png
fb.png
linkedin.png
googleplus.png
reddit.png

 

Latest posts:

Standalone product test: FireEye Endpoint

Virus Bulletin ran a standalone test on FireEye's Endpoint Security solution.

VB2017 video: Consequences of bad security in health care

Jelena Milosevic, a nurse with a passion for IT security, is uniquely placed to witness poor security practices in the health care sector, and to fully understand the consequences. Today, we publish the recording of a presentation given by Jelena at…

Vulnerabilities play only a tiny role in the security risks that come with mobile phones

Both bad news (all devices were pwnd) and good news (pwning is increasingly difficult) came from the most recent mobile Pwn2Own competition. But the practical security risks that come with using mobile phones have little to do with vulnerabilities.

VB2017 paper: The (testing) world turned upside down

At VB2017 in Madrid, industry veteran and ESET Senior Research Fellow David Harley presented a paper on the state of security software testing. Today we publish David's paper in both HTML and PDF format.

VB2017 video: Turning Trickbot: decoding an encrypted command-and-control channel

Trickbot, a banking trojan which appeared this year, seems to be a new, more modular, and more extensible malware descendant of the notorious Dyre botnet trojan. At VB2017, Symantec researcher Andrew Brandt presented a walkthrough of a typical…