OESISOK™ Antispyware Criteria - Version 1.2

OESISOK™ Antispyware designation is currently available only to desktop antispyware applications. Gateway, mail server, or other online antispyware scanners do not currently qualify. Applications submitted for certification must meet the following criteria before they are designated OESISOK.


 Installation test              Rogue application test    
   
     
     OESIS® Local
Detection Test 		   

     
     Digital signature
verification 		             Spyware scanning and
detection test 		   



Installation Test

A submitted application is installed on all supported operating systems. In order to complete this test, it must clear all of the following checks:

  • The application installer completes without errors on all supported operating system and language combinations reflected in application documentation.

Rogue Application Test

A submitted application is checked against known lists of rogue applications. In order to complete this test, it must clear all of the following checks:

  • Application or its vendor is not listed as ”rogue” according to the OPSWAT internal database.
  • Application installer and binaries are scanned against multiple anti-malware engines listed below. None of the following engines should report any application file as “suspicious”, “threat” or other nomenclature indicative of the submitted application being rogue.
    • Spybot Search & Destroy 1.5
    • Lavasoft Ad-Aware 2007 Free Edition
    • Symantec Antivirus
    • McAfee VirusScan
    • CA eTrust™
    • Norman Virus Control
    • ESET NOD32 Antivirus Engine
    • VirusBuster EDK
    • Microworld eScan Engine
    • Kaspersky Anti-Virus®
    • ClamAV

OESIS® Local Detection Test

A submitted application is checked to ensure it will be detected by the OESIS Framework.



Appendix - Verification Testing

When an application is submitted for the OESISOK Antivirus designation, the following tests will be performed for statistical data analysis:

Digital Signature Verification

All binaries installed as part of the submitted application should be digitally signed with a certificate by the vendor and counter signed by a trusted authority. In order to complete this test the following should be signed:

  • All application binaries installed as a Windows Service

Spyware Scanning and Detection Test

A submitted application is checked for its ability to detect spyware. In order to complete this test, the application must complete the following:

  • Detect at least 60% of spyware from OPSWAT’s repository (which include over 1,000 worms, trojans, & backdoors).
  • Detect 0 threats on a clean install of the following operating systems:
    • Windows Vista
    • Windows XP
    • Windows 2000
    • Mac OS X 10.4
    • Mac OS X 10.5

Spyware detection data will be available to the public and to OESIS® Customers.