The following paper has been added to the AMTSO resources page at http://www.amtso.org/related-resources.html:
Bringing Testing into the Cloud: Testing Metrics & Methodologies for Cloud-client Security Infrastructure
By Anthony Arrott, Wei Yan, Geoff Grindrod & Jeffrey Wong
Trend Micro, Inc.
ABSTRACT
An expanded method for testing AV products is described and demonstrated. The proposed method expands AV product protection scoring from malware file detection rates to include credit for blocking access to the URLs that serve downloaded malware files. This expansion is required because AV vendors have responded to the vast increase in the rate at which new unique malware variants are introduced to the Internet by blocking malware files based on their source URLs. Blocking by malware source provides a faster time-to-protect and utilizes less customer resources in updating threat information to the point of protection. The ability to include the performance of this extra layer of protection in benchmarking tests of competing AV products is critical for customers in assessing the real protection AV products provide.
This paper was presented at the AVAR conference in Kyoto in 2009.
AMTSO Board of Directors
Tags: 2009, Anthony Arrott, AVAR, cloud-client, Geoff Grindrod, Jeffrey Wong, Kyoto, Resources page, testing in the cloud, testing methodology, testing metrics, testing papers, Trend Micro, URL blocking, Wei Yan
