Anti-Malware Testing Standards Organization

Anti-Malware Testing Standards Organization (AMTSO) is an international non-profit organization set up in 2008[1] to address a perceived need for improvement in the quality, relevance and objectivity of anti-malware testing methodologies.

Stated objectivesEdit

According to the AMTSO web site, the organization's charter lists the following objectives:

  • Providing a forum for discussions related to the testing of anti-malware and related products.
  • Developing and publicizing objective standards and best practices for testing of anti-malware and related products.
  • Promoting education and awareness of issues related to the testing of anti-malware and related products.
  • Providing tools and resources to aid standards-based testing methodologies.

OrganizationEdit

Until 2012 AMTSO was administered by an elected and unpaid Board of Directors, with strategic and other input from an Advisory Board, and six committees to handle specific operations such as membership, fees, PR and so on. Subsequently, a major infrastructural change took place, introducing an executive team with a CEO, CTO, CFO and VPs of Marketing and Strategy[2] in addition to the already existing Board.

MembershipEdit

While it grew out of discussions between security vendors and security product testing organizations, membership of AMTSO is also open to academics, reviewers, publications,[3] and does include some individual members.[4] However, the high cost of full membership generally discourages individual members and small organizations from joining, and in early 2011, the organization offered a much cheaper subscription rate[5] that didn't, however, offer full voting rights.[6] AMTSO currently offers a two-tier membership model: entity members get full benefits of membership, while individual members get the same benefits apart from the right to vote.[7]

Membership controversyEdit

Some members of the wider security community and even testers have raised issue with the organization's membership,[8] which includes a preponderance of security vendors.[9]

WorkEdit

The organization has created some potentially useful resources for testers, including a page that flags relevant papers and other resources outside AMTSO,[10] and a repository of guidelines documents for the benefit of aspiring testers[11] on a wide range of topics. Another popular freely available resource is the Security Features Check, which attempts to download a faux malicious file to a desktop or Android device. This is a simple test to ensure that basic anti-malware standards are implemented on the test device.[12]

It also organizes workshops three times a year: discussion and generation of guidelines documents are a major by-product of these sessions.[citation needed]

ReferencesEdit

  1. ^ "Anti-Malware Testing Standards Organization – Risk Management with Stuart King and Duncan Hart". www.computerweekly.com.
  2. ^ "Archived copy". Archived from the original on 2011-07-02. Retrieved 2011-06-27.CS1 maint: archived copy as title (link)
  3. ^ "AMTSO". www.amtso.org.
  4. ^ "Archived copy". Archived from the original on 2011-07-05. Retrieved 2011-06-27.CS1 maint: archived copy as title (link)
  5. ^ "Archived copy". Archived from the original on 2011-07-22. Retrieved 2011-06-27.CS1 maint: archived copy as title (link)
  6. ^ "Archived copy". Archived from the original on 2011-07-02. Retrieved 2011-06-27.CS1 maint: archived copy as title (link)
  7. ^ "Joining AMTSO » AMTSO". amtso.org.
  8. ^ "Archived copy". Archived from the original on 2011-12-17. Retrieved 2011-06-27.CS1 maint: archived copy as title (link)
  9. ^ "AMTSO: a serious attempt to clean up anti-malware testing; or just a great big con?". 15 June 2010.
  10. ^ "Archived copy". Archived from the original on 2011-07-02. Retrieved 2011-06-27.CS1 maint: archived copy as title (link)
  11. ^ "Archived copy". Archived from the original on 2011-06-12. Retrieved 2011-06-27.CS1 maint: archived copy as title (link)
  12. ^ Halfacre, John. "Anti-Malware Testing Standards Organization". RemoveMalware.net. Retrieved 9 August 2016.

External linksEdit