Manu Nccsa15
-
Upload
manu-sankar -
Category
Documents
-
view
218 -
download
0
description
Transcript of Manu Nccsa15
-
An Improved Mechanism for Antivirus Testing
By Manusankar C
Assistant Professor Dept. of Computer Science
SSV College Valayanchirangara
-
AbstractAs the cyber technologies are emerging, the threats are also growing in a proportionate manner. In this paper I would like to propose a new mechanism for testing various security products by considering various antivirus software as specimens. The current way of testing Antivirus products are not sufficient and safe, so we will go with a virtual testbed for safe testing and an integrated test strategy for improved testing.
-
IntroductionGrowth of Security Software Industry.
Traditional way of testing.
Simulated testbeds for industrial control systems.
Antivirus programs are designed to detect and delete malicious files.
-
Existing ScenarioIsolated physical test networks.
Big players in the field.
AV-Comparitives, ICSA Labs, NSS Labs, Dennis Technology Labs
Not
Affordable
Transparent
-
My Goal
Simpler testing
Transparency
Freedom
-
Issue Areas
Known signature issue in Antivirus Softwares.
Content Scanning only.
-
Basic Test Cases
How effective they are in detecting any new infection, whose digital signature is unknown?
How quickly files can be scanned for viruses?
How deep-file virus scanning impacts overall system performance?
-
Proposed TestsFile Detection tests
Performance test
Real world Protection Test
Behaviour Tests
False Alarm Test
Threat removal tests
Some other tests specifically based on the type of security products.
-
Proposed SystemVBOX was modified.
Python programmes were used for solving test cases.
linux and Mac Platforms were used in the initial stages for deploying test beds
Windows 7 was used inside the testbeds.
-
Products TestedOpen AV
Avast Free Antivirus
AVG Internet Security
AVIRA Antivirus Pro
Bit Defender Internet Security
eScan Internet Security
ESET Smart Security
Kaspersky AV
Mc. Afee Internet Security
Symantec Antivirus
Panda Free Antivirus
Quick Heal Antivirus
-
Conclusion
The work is in its alpha stage.
Currently in the process of saturating the results and comparing it with the available test results from the leading labs in this field.
-
Future
My future plan is to develop a web platform where the users can enter their system specifications and then test various security products they are planning to purchase and to get the performance results.
-
Thank You