Post by anwenwilson on Jun 29, 2017 11:35:05 GMT 1
There are plenty of great antivirus products out there, but sometimes they miss the mark. Seeing how much malware a security program catches is one way to evaluate it, but so is recording its number of false positives. A false positive is when antivirus mistakenly reports a safe and legitimate program as dangerous malware. That's annoying for users trying to access trusted programs but even worse for the creators of the unfairly demonized software. The Institute of Electrical and Electronics Engineers (IEEE) wants to put a stop to this, and PCMag's resident security ascetic Neil Rubenking has brought us the details of its plans.False positives are often the result of antivirus software encountering a safe program too new to recognize. IEEE's solution hinges on the Clean File Metadata Exchange (CMX) service. With CMX, software authors can submit metadata for new files such as new programs or updates to existing programs before they are even released. Security vendors could then access this data in real-time to stay current with the latest legitimate files and prevent their programs from flagging them as malware. CMX is not a database, though. It holds onto data for a week or two as it validates and delivers it to subscribers. Anyone checking in less frequently and looking for older data will have to pull an archive.