Platinum Product Test Report Kaspersky Lab Anti ... - West Coast Labs

Kaspersky Lab Product Performance
Validation Testing & Certification
Malware Test Suites
West Coast Labs puts considerable effort into ensuring the relevance of samples
used in testing.
There are three key components to this process. The company’s research facilities
continuously monitor the malware attacks and intercept attempts to attack the
corporate network of a global company with thousands of users spread over 4
continents.
WCL also has the advantage of an international system of honeypots, machines
based in many countries on most continents that sit on open networks waiting to be
attacked. When attacks occur the malware is intercepted and reported back to a
central repository, where it is de-duped, checked for corruption and validity, stored
and can then be used as a sample for testing products.
In the Real Time Testing System, which forms one component of the Checkmark
Platinum Product Award, the malware is sent through the test network almost
immediately and is subsequently considered to be eligible for inclusion in other test
collections.
Another method of collection and validation is through honeyclients. Located in
Europe, Asia and the USA, these are systems designed to trawl the Internet to
discover “drive-by downloads” (where malware is downloaded in the background
unknown to the user who is looking at an otherwise perfectly acceptable web site),
and to download files by visiting these websites and capturing the output. Again, this
malware is sent through the Real Time system almost immediately and is eligible for
inclusion in other collections.
Page 33 of 40