Back in the Dark Ages (well, between 1989 and 2006), I was much involved in an informal sort of way with testing and evaluating security products – especially anti-virus products – mostly on behalf of the organizations for which I was working: Imperial Cancer Research Fund and, later, the NHS Information Authority. When I left the National Health Service, I started to provide authoring and consultancy services to the security industry, so you might say I became a gamekeeper turned poacher.
For nearly three years I was one of the directors of the Anti-Malware Testing Organization (AMTSO), and was heavily involved with the organization going right back to its formative meeting in Bilbao. Early in 2012, I stepped down from the Board since Righard Zwienenberg had just joined ESET, the AV company I represented within the organization, and two representatives of the same company cannot be on the Board of Directors at the same time.
For much of the time that I was on the Board, I was (somewhat reluctantly) involved in much of the PR for the organization (such as it was) and set up (among other things) the AMTSO blog and twitter account. While any member of the AMTSO board (and a few other people) could have contributed to either account, in practice no-one else did. In October 2012 the AMTSO executive team made it clear that neither the blog nor the twitter account were required any longer,. The official AMTSO blog is the one here though at the time of writing, there are no entries more recent than April 2012, and none of the articles I published on the WordPress blog are available there. So the Anti-Malware Testing blog was originally intended as a home for some of those articles, though I (and my colleague from Mac Virus, Old Mac Bloggit) have already posted some more blogs there.
So, in case it isn’t already obvious, NONE of the commentary here is (or ever was) made on behalf of AMTSO: my opinions are my own. And views expressed here are not necessarily shared by ESET or any other company with whom I work as a consultant.
Primarily, this site was originally intended to allow me to continue commenting in an independent capacity on the testing scene in general. However, one or two other people in the testing and anti-malware industries have expressed an interest in contributing commentary and discussion, and I’ll be happy to publish knowledgeable (or at least interesting) and responsible commentary, if it comes my way. (Please, no product pitches…)
Tip of the hat here to Andrew Hayter, who has agreed to help with reviewing content if it catches on, and suggested some examples of the sort of content likely to be seen as appropriate. More detailed information here.
David Harley CITP FBCS CISSP
Mac Virus/Small Blue-Green World
ESET Senior Research Fellow (but not speaking on behalf of ESET)