http://community.norton.com/t5/Norton-Protection-Blog/AMTSO-Reviewing-the-Reviews/ba-p/40155 In January of this year, Symantec became a founding member of the <a href="http://www.amtso.org/" target="_blank">Anti-Malware Testing Standards Organization</a> (AMTSO). Symantec and about 40 of the leading academics, reviewers, testers and vendors in the security industry joined forces to form the organization dedicated to helping improve the objectivity, quality and relevance of anti-malware technology testing. Since then, we&rsquo;ve met several times and shared numerous spirited debates, but something we have agreed upon since our inception is the charter of the organization: <p><span style="font-size: 10pt; font-family: Symbol"><span>&middot;<span style="font: 7pt 'Times New Roman'">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </span></span></span><span style="font-size: 9pt; font-family: 'Arial','sans-serif'">Providing a forum for discussions related to the testing of anti-malware and related products; </span></p><p><span style="font-size: 10pt; font-family: Symbol"><span>&middot;<span style="font: 7pt 'Times New Roman'">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </span></span></span><span style="font-size: 9pt; font-family: 'Arial','sans-serif'">Developing and publicizing objective standards and best practices for testing of anti-malware and related products; </span></p><p><span style="font-size: 10pt; font-family: Symbol"><span>&middot;<span style="font: 7pt 'Times New Roman'">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </span></span></span><span style="font-size: 9pt; font-family: 'Arial','sans-serif'">Promoting education and awareness of issues related to the testing of anti-malware and related products;</span></p><p><span style="font-size: 10pt; font-family: Symbol"><span>&middot;<span style="font: 7pt 'Times New Roman'">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </span></span></span><span style="font-size: 9pt; font-family: 'Arial','sans-serif'">Providing tools and resources to aid standards-based testing methodologies; and,</span></p><p><span style="font-size: 10pt; font-family: Symbol"><span>&middot;<span style="font: 7pt 'Times New Roman'">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </span></span></span><span style="font-size: 9pt; font-family: 'Arial','sans-serif'">Providing analysis and review of current and future testing of anti-malware and related products.</span></p><p>&nbsp;</p><p><span style="font-size: 10pt; font-family: 'Arial','sans-serif'">Now that the first two official documents for the AMTSO have been adopted and published (<a href="http://www.amtso.org/documents/cat_view/13-amtso-principles-and-guidelines.html" target="_blank" title="blocked::http://www.amtso.org/documents/cat_view/13-amtso-principles-and-guidelines.html"><span style="color: windowtext">http://www.amtso.org/documents/cat_view/13-amtso-principles-and-guidelines.html</span></a>) the next step will be to put these principles into practice.&nbsp; AMTSO is now working on a process to Review the Reviews.&nbsp; This will be a process whereby a published review can be critiqued to see where it did or did not follow the AMTSO principles and guidelines &ndash; and for the latter give specific feedback as to why.&nbsp; This is understandably a potentially very controversial thing to do.&nbsp; </span><span style="font-size: 10pt; font-family: 'Arial','sans-serif'">&nbsp;</span><span style="font-size: 10pt; font-family: 'Arial','sans-serif'">I&rsquo;d like to share my personal views on how this process should be conducted.</span><span style="font-size: 10pt; font-family: 'Arial','sans-serif'">&nbsp;</span></p><p>&nbsp;</p><p><span style="font-size: 10pt; font-family: 'Arial','sans-serif'">The two main concerns people have about &ldquo;reviewing the reviews&rdquo; are that the process will seem to be AV vendors &ldquo;whining&rdquo; about losing a review and that a thorough analysis of a review cannot be done in a timely enough manner to blunt the damage caused by a problematic review.&nbsp; To address the former several specific steps have been outlined.&nbsp; For the second point this process will be explicitly understood not to attempt to prevent any damage from such a review, but rather to help improve future reviews.</span><span style="font-size: 10pt; font-family: 'Arial','sans-serif'">&nbsp;</span><span style="font-size: 10pt; font-family: 'Arial','sans-serif'">The general outline of the &ldquo;Review Analysis&rdquo; would be as follows.</span></p><p><span style="font-size: 10pt; font-family: Symbol"><span>&middot;<span style="font: 7pt 'Times New Roman'">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </span></span></span><span style="font-size: 10pt; font-family: 'Arial','sans-serif'">Process must be impartial</span></p><p><span style="font-size: 10pt; font-family: Symbol"><span>&middot;<span style="font: 7pt 'Times New Roman'">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </span></span></span><span style="font-size: 10pt; font-family: 'Arial','sans-serif'">Process must be transparent</span></p><p><span style="font-size: 10pt; font-family: Symbol"><span>&middot;<span style="font: 7pt 'Times New Roman'">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </span></span></span><span style="font-size: 10pt; font-family: 'Arial','sans-serif'">Process is analytical only</span></p><p><span style="font-size: 10pt; font-family: Symbol"><span>&middot;<span style="font: 7pt 'Times New Roman'">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </span></span></span><span style="font-size: 10pt; font-family: 'Arial','sans-serif'">Review analysis is not intended nor will it be able to &ldquo;unring the bell.&rdquo;&nbsp;&nbsp;</span><span style="font-size: 10pt; font-family: 'Arial','sans-serif'">&nbsp;</span></p><p>&nbsp;</p><p><strong><span style="font-size: 10pt; font-family: 'Arial','sans-serif'">Process must be impartial</span></strong><strong><span style="font-size: 10pt; font-family: 'Arial','sans-serif'">&nbsp;</span></strong></p><p><span style="font-size: 10pt; font-family: 'Arial','sans-serif'">Steps should be taken to ensure that first there is a consensus that the review should be analyzed.&nbsp; It is important that an entity not simply request the analysis because they lost, or did not like something that was done.&nbsp; Two specific steps should be included.&nbsp; First, specific examples of violations of the Principles and Guidelines must be identified.&nbsp; Second, multiple entities must agree with those violations.&nbsp; These two steps should help ensure that there is solid ground for the request.</span><span style="font-size: 10pt; font-family: 'Arial','sans-serif'">&nbsp;</span></p><p>&nbsp;</p><p><strong><span style="font-size: 10pt; font-family: 'Arial','sans-serif'">Process must be transparent</span></strong><strong><span style="font-size: 10pt; font-family: 'Arial','sans-serif'">&nbsp;</span></strong></p><p><span style="font-size: 10pt; font-family: 'Arial','sans-serif'">The process of analyzing the review must be as open and visible as possible.&nbsp; The entities requesting the analysis as well as their arguments for why should be made public.&nbsp; The entity that conducted the review must have an opportunity to respond.&nbsp; Other interested parties &ndash; both supporting and criticizing &ndash; must have an opportunity to comment.</span><strong><span style="font-size: 10pt; font-family: 'Arial','sans-serif'">&nbsp;</span></strong></p><p>&nbsp;</p><p>&nbsp;</p><p><strong><span style="font-size: 10pt; font-family: 'Arial','sans-serif'">Process is analytical only.</span></strong><strong><span style="font-size: 10pt; font-family: 'Arial','sans-serif'">&nbsp;</span></strong></p><p><span style="font-size: 10pt; font-family: 'Arial','sans-serif'">The output of this process should be as objective as possible, and should not contain subjective statements (such as &ldquo;This was a poorly conducted test.&rdquo;).&nbsp; The output should be specific language regarding where the review in question is and is not in compliance with the AMTSO Principles and Guidelines &ndash; and why.&nbsp; It may contain recommendations about specific steps which can be undertaken to gain compliance.&nbsp;&nbsp;</span><strong><span style="font-size: 10pt; font-family: 'Arial','sans-serif'">&nbsp;</span></strong></p><p>&nbsp;</p><p>&nbsp;</p><p><strong><span style="font-size: 10pt; font-family: 'Arial','sans-serif'">Analysis cannot &ldquo;unring the bell.&rdquo;</span></strong></p><p><span style="font-size: 10pt; font-family: 'Arial','sans-serif'">This analysis will naturally take some time, but the larger goal is to improve future reviews, as opposed to responding quickly enough to give press quotes while a story is &ldquo;hot.&rdquo;&nbsp; The committee review should happen in a timely manner, but this process should not be counted on to mitigate damage of a bad review.</span><span style="font-size: 10pt; font-family: 'Arial','sans-serif'">&nbsp;</span></p><p>&nbsp;</p><p><span style="font-size: 10pt; font-family: 'Arial','sans-serif'">So what do you think about our goals for Review Analysis? I&rsquo;m very interested in your feedback regarding my opinion of what I&rsquo;d like to see happen, so please leave your comments and questions in the section below.</span></p><!-- AddThis Button BEGIN --><br /><a href="http://www.addthis.com/bookmark.php" target="_blank" title="Bookmark and Share" onclick="window.open('http://www.addthis.com/bookmark.php?wt=nw&pub=sondrasondra&url='+encodeURIComponent(location.href)+'&title='+encodeURIComponent(document.title), 'addthis', 'scrollbars=yes,menubar=no,width=620,height=520,resizable=yes,toolbar=no,location=no,status=no,screenX=200,screenY=100,left=200,top=100'); return false;"><img src="http://s9.addthis.com/button1-share.gif" border="0" alt="Bookmark and Share" width="125" height="16" /></a><br /><!-- AddThis Button END --><br /><div class="message-edit-history"></div><div class='message-edit-history'><span class='edit-author'>Message Edited by Sondra_Magness on </span><span class='local-date'> 11-13-2008</span><span class='local-time'> 02:10 PM</span></div> Wed, 12 Nov 2008 23:16:54 GMT MarkKennedy 2008-11-12T23:16:54Z http://community.norton.com/t5/Norton-Protection-Blog/AMTSO-Reviewing-the-Reviews/ba-p/40155 In January of this year, Symantec became a founding member of the Anti-Malware Testing Standards Organization (AMTSO). Symantec and about 40 of the leading academics, reviewers, testers and vendors in the security industry joined forces to form the organization dedicated to helping improve the objectivity, quality and relevance of anti-malware technology testing. Since then, the first two official documents for the AMTSO have been adopted and published. The next step will be to put these principles into practice. We’re now working on a process to Review the Reviews - a potentially very controversial thing to do. Read on to learn my personal views on how I think this process should be conducted. <p><span style="font-size: 10pt; font-family: 'Arial','sans-serif'"><img src="http://norton.lithium.com/norton/attachments/norton/uploads/52/1/AMTSO.gif" border="0" /> Wed, 12 Nov 2008 23:16:54 GMT http://community.norton.com/t5/Norton-Protection-Blog/AMTSO-Reviewing-the-Reviews/ba-p/40155 MarkKennedy 2008-11-12T23:16:54Z http://community.norton.com/t5/Norton-Protection-Blog/AMTSO-Reviewing-the-Reviews/bc-p/155306 <span class="Apple-style-span">Just wanted to get some info on how to respond to the report that says i have 36 problems. I have quarantined them, the log says they are quarantined but when i run my scan it comes back with 36 infected files. Do i have to do anything more to remove them from my computer or just accept that this virus is out of harms way? I used to have parallels with MS but have since removed that software. The virus says it has infected exe files. I have a mac so i don't know what this means. Help?</span> Mon, 28 Sep 2009 22:40:37 GMT http://community.norton.com/t5/Norton-Protection-Blog/AMTSO-Reviewing-the-Reviews/bc-p/155306 cmiller53 2009-09-28T22:40:37Z http://community.norton.com/t5/Norton-Protection-Blog/AMTSO-Reviewing-the-Reviews/bc-p/155421 <p>Hi cmiller53</p><p> </p><p>Post your issue to the mac forum and someone should pick it up there.</p><p> </p><p>Thanks</p> Tue, 29 Sep 2009 05:32:37 GMT http://community.norton.com/t5/Norton-Protection-Blog/AMTSO-Reviewing-the-Reviews/bc-p/155421 mdturner 2009-09-29T05:32:37Z