Testing latest Virus Definitions

295 pts.
Tags:
Antivirus software
Manual Testing
Quality assurance
Virus Definitions
How to ensure that our AV software can handle the latest Virus defination. Is there any global repositories where these viruses are defined and which can be used for Testing?[o:p][/o:p]

ASKED: December 31, 2009  9:57 AM
UPDATED: January 15, 2010  9:45 PM

Answer Wiki

Thanks. We'll let you know when a new response is added.

Each reapository will tell you what you are downloading but for testing purposes, you need to create a lab for yourself. No one, other than yourself, has the software, nor the configuration and knowledge of how you do business than youself. That is why, when downloading patches and av, large corporations and government agencies will first download the software to their internal labs where they have different computers set up with the different environments for testing. After rigourous testing, for a period of time, if all goes well, then the patches and av is distributed to the working environment. I would not want to be the one to send something out to the working environment without first testing it and wind up bringing down, say, an major sql database. I know this is not the answer you wanted, but, it is the right answer.

Discuss This Question: 6  Replies

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
  • Mayurkhe
    From where to download these virus definations?
    295 pointsBadges:
    report
  • r3boot
    well, virus definitions are downloaded from the AV servers, should i say the makers of the anti-virus you have installed on your network/computer
    1,220 pointsBadges:
    report
  • Uscgcwo4
    Here are some tips From a SANS "OUCH" article on anti-malware choices & testing: "Get some good bets by reading comparative reviews of competing products published by third-parties, such as PCWorld, Consumer Reports, and MacWorld. - - Hedge your bet by opting for a trial version, if available, and one that you can upgrade to a full subscription without reinstalling. - - Weigh effectiveness, performance, features, support and, lastly, price-at most a difference of $30/year. - - Verify that the product includes anti-virus, anti-spyware, anti-phishing, anti-spam, a two-way software firewall, and automatic online updating. - - Performance and effectiveness are judged best by the results of professional testing, like those performed by AV-test.org and www.av-comparatives.org." Some other thing to consider are applicability to your industry and useability. And please remember that AV solutions are only a part of the multi-tiered security solution that you should have protecting your business. Hope this helps! "K"
    265 pointsBadges:
    report
  • Mayurkhe
    How to ensure that we have all types of virus defination ? Just like the "EICAR" file? Are there any other test files available? Can we define a virus for testing?
    295 pointsBadges:
    report
  • Mayurkhe
    Most discussion here is loosing off my orifinal question : How to ensure that our AV software can handle the latest Virus defination . I am testing a AV named say " ABC" . There is another reputed AV say XYZ. A virus called say "XX" which is detected by XYZ , may be passsed undetected by ABC. How will we test AV ABC for various various definations. My understanding is vairus definations are available when a AV updated from AV server. While testing , how do i get a affected files/data to test this definations? How do i ensure that realaiablity of this file/data i am using for testing ?
    295 pointsBadges:
    report
  • Uscgcwo4
    If you didn't find the information at the www.av-test.org or www.av-comparatives.org on the "blacklisting" products maybe "whitelisting" is the way you should go. Where blacklisting searches your system for known malware and then eliminates the known bad program. Whitelisting continuously searches your network for authorized programs and eliminates anything else. www.Lumension.com is a good place to start. P.S Another good site to find out more on "Common Vulnerabilities and Exposures (CVE)" is http://cve.mitre.org
    265 pointsBadges:
    report

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following