Platinum Product Test Report Kaspersky Lab Anti ... - West Coast Labs
Platinum Product Test Report Kaspersky Lab Anti ... - West Coast Labs
Platinum Product Test Report Kaspersky Lab Anti ... - West Coast Labs
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
<strong>Kaspersky</strong> <strong>Lab</strong> <strong>Product</strong> Performance<br />
Validation <strong>Test</strong>ing & Certification<br />
Malware <strong>Test</strong> Suites<br />
With so much new malware appearing each day, it is necessary to concentrate on<br />
that malware that is most frequently found (or prevalent), and that attacks via the<br />
methods protected by the system under test; it is, for example, pointless sending<br />
“drive-by” malware through an email security product - it would never normally be<br />
spread by email and so the product will never be expected to deal with it.<br />
It is also important to make certain that the malware used reflects what users are<br />
genuinely seeing. Older malware endures in the real world for years after its<br />
appearance, and products must therefore maintain defences against it. It is<br />
tempting to reduce system overheads by removing older definitions, but this must<br />
not be done if the user is then left at risk. All WCL’s static collections therefore<br />
include an element of malware that is not new but that is still bombarding<br />
honeypots and users’ systems, to confirm that protection against it is still effective.<br />
There are many sorts of malware, including (though not exclusively) viruses of a<br />
number of types, worms (spreading both by email and across networks), bots,<br />
downloaders, backdoors, Trojans and keyloggers. The Checkmark certifications<br />
divide them into three large groups, Trojans, Spyware and Viruses. Real Time testing<br />
covers any malware using the diffusion methods under test, and a custom test will<br />
include whatever may be required by the specifications of the test.<br />
The collation of <strong>West</strong> <strong>Coast</strong> <strong>Lab</strong>s’ test suites also includes a number of processes<br />
ensuring that samples used are viable, valid and appropriate – any samples found<br />
to be unusable are discarded unless there is a specific reason for them being in the<br />
test suite, for example, testing against samples reported as corrupted.<br />
Page 35 of 40