Security consortium creates guidelines

Group says new standardized methods are needed to help consumers decide effectiveness of security products.

Greg Sandoval Former Staff writer

Greg Sandoval covers media and digital entertainment for CNET News. Based in New York, Sandoval is a former reporter for The Washington Post and the Los Angeles Times. E-mail Greg, or follow him on Twitter at @sandoCNET.

See full bio

Greg Sandoval

Jan. 30, 2006 6:57 p.m. PT

A new consortium of security companies has established guidelines for defining spyware and testing anti-spyware products.

The guidelines could help consumers determine the risks posed by new software and the effectiveness of anti-spyware products.

At a time when the number of spyware applications doubles each year, security companies are banding together to find ways to eliminate confusion about how to test security products.

"Few product testers currently document their test samples or methodology," the companies said in a statement. "Many use very small sample sets in their testing environments. As a result, there is no distinguishable benchmark for comparison."

The software makers are part of a larger organization, called the Anti-Spyware Coalition, which is working to standardize industry terms and technology for battling spyware.

Next on the group's agenda: Defining threat-naming conventions, intelligence-sharing best practices, and emergency information distribution guidelines. The group says it will use definitions already created by the Anti-Spyware Coalition.