Slashdot Mirror

← Back to Stories (view on slashdot.org)

AV-Test Deems Windows Security Essentials "Very Good"

Posted by timothy on from the if-you're-in-the-right-demographic dept.

CWmike writes "Microsoft's new free security software, Windows Security Essentials, passed a preliminary antivirus exam with flying colors, said independent and trusted firm AV-Test, which tested Essentials, launched yesterday in beta, on Windows XP, Vista and Windows 7. It put it up against nearly 3,200 common viruses, bot Trojans and worms, said Andreas Marx, one of the firm's managers. The malware was culled from the most recent WildList, a list of threats actually actively attacking computers. 'All files were properly detected and treated by the product,' Marx said in an e-mail. 'That's good, as several other [antivirus] scanners are still not able to detect and kill all of these critters yet.' It also tested well on false positives."

21 of 318 comments (clear)

  1. Malware? by homes32 · · Score: 5, Insightful

    viruses, trojans, and worms, are all nice and dandy but what about malware? That is what most people have to worry about these days.

    1. Re:Malware? by molafson · · Score: 5, Informative

      "AV-Test also examined the program's anti-rootkit skills and its ability to scrub a system of malware it finds with a limited number of samples and "found no reasons to complain," Marx said. "[Security Essentials] is able to remove found malware very well, but further tests against larger sets of samples are required before we can come to a final conclusion."

    2. Re:Malware? by Talchas · · Score: 5, Insightful

      Even against viruses, trojans and worms, it really won't stop them from getting owned. It may help against old viruses spreading, but it is unlikely to help much against new ones. And new ones often will take out the antivirus, leaving you with an even falser sense of security.

      --
      As the Americans learned so painfully in Earth's final century,free flow of information is the only safeguard against...
    3. Re:Malware? by Jurily · · Score: 5, Informative

      Mod parent up. The "several other [antivirus] scanners" won't detect new ones because they're tested against before release.

      From a software engineering point of view, malware is state of the art.

    4. Re:Malware? by CrashNBrn · · Score: 5, Informative

      I'd be pretty suprised if they're AV-tool doesn't handle "Malware" - considering Mark Russinovich of sysinternals works for Microsoft now, and was the one to discover Sony's Rootkit and provide the fix for it. Among the many other tools he has provided over the years and still updates regularly.
      http://blogs.technet.com/markrussinovich/

    5. Re:Malware? by trifish · · Score: 5, Informative

      > It may help against old viruses spreading, but it is unlikely to help much against new ones.

      You refer to heuristic scanning, or pro-active security. This means that the software is able to discover new unknown viruses based on their behavior or properties.

      You might be surprised but MS Security Essentials has been found to have the best heuristics (60%) in retroactive tests (outdated definitions, therefore, unknown viruses) with by far the least number of false positives (which is crucial for good heuristics).

      They even overtook the former leader, NOD32 (and often even in performance).

      Source for heuristics (2009):
      http://www.av-comparatives.org/images/stories/test/ondret/avc_report22.pdf

  2. I wonder how Symantec, Norton, et will react by supercell · · Score: 5, Interesting

    Norton, Symantec and others have created an entire multi-billion dollar subscription based industry around virus protection for Windows. I wonder how they are going to react to this potential bomb for there business model?

    1. Re:I wonder how Symantec, Norton, et will react by gewalker · · Score: 5, Funny

      Well, we know one thing for certain: "Resistance is futile"

    2. Re:I wonder how Symantec, Norton, et will react by Anonymous Coward · · Score: 5, Interesting

      claim anti-trust and attempt to sue.

      How dare microsoft plug security holes themselves.

      Come on EU, save us from a secure windows platform.

    3. Re:I wonder how Symantec, Norton, et will react by Anonymous Coward · · Score: 5, Funny

      "Resistance is futile"

      Yes but only if much less than 1 Ohm

  3. Hitler's Kosher Hotdogs by EdIII · · Score: 5, Interesting

    It's interesting, but at this point can Microsoft really convince anyone that they are serious about putting out a quality product? I think that is there biggest problem here... PR.j I will admit I laughed when I saw the article, and it is Microsoft's reputation that made me laugh. Maybe it is good, but I am I really willing to give them the chance with something that important?

    I can remember articles talking about Windows Firewall in the past as being pretty darn good too, yet it seems the first thing a tech person does is to deactivate these days.

    Let's face it. If Microsoft was seriously competent about doing these "core" activities, would the 3rd party market be as big as it is?

    In any case it will be interesting if they start shipping Windows with this pre-installed. Then maybe the manufacturers won't be so quick to bundle Norton/McAffee with their products, and THAT will be fun to watch.

  4. Probably Pretty Good by Sponge+Bath · · Score: 5, Insightful

    With all that talent, resources, and internal knowledge they should have a slam dunk. Unfortunately I have a lot of distrust built up from over the years about what MS sticks under the hood. It will take many years of good reviews and endorsements before I feed comfortable that the MS AV does not give any special passes to iffy software from a MS partner, or that the MS firewall will correctly block things from going out when configured to if the originator is an MS component.

  5. It makes sense by phantomfive · · Score: 5, Interesting

    The Microsoft style is to solve problems by throwing a lot of people at it, and they use that strategy fairly well. Instead of simplifying the structure to where it can be reasonably dealt with by a small group of people, they are happy to make it big. For example, compare the number of system calls in the windows kernel with the number in the Linux kernel. Having so many more system calls means each internal refactor will have to take more into consideration, as well as requiring more testing, but it's ok, Microsoft is happy to throw lots of testers at it. The ASP.net model, which basically wraps a whole system around html/javascript to encapsulate it and make it easier for the average programmer was an amazingly man-hour intensive job, once again requiring lots of testing and many special cases, and yet Microsoft did it.

    That operating style is especially well suited to AV software, because it is a job that can be easily broken up and handed out to different programmers, and catching all the viruses is a job that can be easily helped if you have a lot of programmers and testers. It makes sense that Microsoft would write good AV software.

    --
    Qxe4
    1. Re:It makes sense by Dutchboy2000 · · Score: 5, Interesting

      In my view, using a "small subset of the .NET framework" is not an argument against using ASP.NET. .NET is a huge and extremely varied framework (as you evidently know well). It would be a very odd case where any particular application - whether it be web or Win32 - would require the majority of the functionality provided through .NET.

      But the fact that all I need is a screwdriver does not lessen the value of having a well-stocked toolbox. The first time I had to create a web application that could consume and perform complex recursive logic on XML files created by a mobile application framework, I didn't have to wonder whether .NET provided the necessary functionality. I knew it did even though I'd never used it before.

      I'm not going to sit here and tell you there aren't things about .NET that drive me nuts. And, in fairness, I don't have a lot of experience with other web application frameworks. Still, .NET gives me what I need when I need it and without a lot of fuss. The biggest problems I deal with each day have very little to do with my framework of choice and much more to do with things outside of my control. C'est la vie, eh?

      By the way, I'm the Anonymous Coward that posted above. I just created a new Slashdot account so now I can be a Well-Known Coward.

  6. Re:Anti-trust? by bill_kress · · Score: 5, Interesting

    There was talk about antitrust suits when Microsoft first included the TCP/IP stack in windows. Before that you had to go to another vendor.

    It made life a LOT more easy once it was built into the OS.

    I'm pretty sure the same thing will be true of AV software.

  7. MS still has superb programmers by geekboy642 · · Score: 5, Insightful

    It's always been this way. Microsoft rests on their laurels until an upstart company starts making money at their expense. Between Mac, Linux, and the insane proliferation of general crapware, MS has a real image problem on their hands. Luckily for Microsoft, the best and the brightest can be wooed by the kind of money they're able to throw around. When they throw their top programmers at a job, the results are stunning, just witness the turnaround from early Vista to the current beta of Windows 7.
    Sadly, the end result will be bad for consumers. Other security companies will be badly hurt by the release of this freebie, and MS will go back to sleep, leaving the security marketplace to stagnate like the pre-Firefox browser market stagnated.

    --
    Just another "DOJ fascist authoritarian totalitarian bootlicker" -- Zeio
  8. Re:Anti-trust? by not+already+in+use · · Score: 5, Insightful

    I imagine it will be a vary hard case to make since really all they are trying to do is fix their broken OS.

    How is releasing anti-virus software fixing their "broken OS?" Are you implying that a non-broken OS is completely immune to viruses and malware or are you just spewing typical anti-Microsoft vitriol?

    Oh ok... Thought so.

    --
    Similes are like metaphors
  9. Re:directed self-interest by dublin · · Score: 5, Insightful

    Any computer consultant worth his salt won't get drawn into silly squabbles over OS/platform/software/language/etc., and will recommend the *best* solution for the client. Don't ever let bigotry blind you...

    I describe myself as a dyed-in-the-wool Unix proponent (24 years now), but I run Windows on my desktop machines, and have recommended Windows on many occasions, including some large-scale Fortune 20 deployments, where it made more sense. (For servers, I avoid Windows unless the app environment really needs it or runs markedly better there, but there are still a good number of those situations. Given my druthers, I design new systems around open source technologies, mostly because of the lifecycle cost savings. Auditing all those licenses is a non-trivial cost and PITA, not to mention acquiring them in the first place - and avoiding licensed software makes leveraging cloud computing *much* easier...)

    Windows certainly has its faults, and I'm a big critic, but it also has its place, and for a good number of things (even some server-based things), Windows is the best choice - sometimes by a good margin.

    --
    "The future's good and the present is nothing to sneeze at." - Roblimo's last ./ post
  10. Re:Windows Defender? by ECCN · · Score: 5, Informative

    Defender is Anti-Spyware only. Security Essentials is Anti-Virus & Anti-Spyware combined, so it effectively replaces Defender outright.

  11. Re:It seems wrong for an OS vendor/maker to do thi by TSPhoenix · · Score: 5, Interesting

    Its a social problem, not a technical one.

    All UAC did was train people to press "Yes" on every dialog even more zealously than before. A system based around asking important questions to people who neither understand or care is not a good one. sudo works because everyone using it does care.

    What MS is doing here is clever IMO. Instead of trusting the user to not do anything dumb, they've instead given them a big "Press me to fix your computer" button to wail on. People will see their computer is being slow, hit the button and hopefully the problem will be fixed.

  12. Re:Maybe, but... by shutdown+-p+now · · Score: 5, Interesting

    Viruses don't target server environments. That's pretty much by definition - as they require active user interaction to spread.

    Exploits are a different thing, but, really, have you looked at vulnerability stats in Apache vs IIS6/7 lately? Try it, you might be surprised.