Enterprise anti-virus software

Does your security solution need a boost? Ian Parsons takes a look at six of the leading enterprise grade anti-virus solutions on the market and tells you what's what

Although it is perfectly possible to install and manage anti-virus software on small networks without needing any management software, the task becomes too time consuming and error-prone where large numbers of systems are involved. Larger networks require centralised management software with remote deployment and updating facilities, management reporting and an alerting system triggered when a virus is detected.

But while consumer anti-virus software is widely reviewed, its corporate counterpart is often ignored. In this group test we hope to redress that and have selected six of the market-leading vendors pitting their products against each other to find out which is best for your business.

Testing

We tested the products on a small local network with systems running either Windows XP Professional with Service Pack 2, Windows 2000 Server or Windows Server 2003. Each system was imaged and restored after each installation and tests run so that each subsequent test would start from the same base line

This also avoided problems that could occur if a previous installation had modified system files or Registry entries and had not restored them to their previous state. The software was installed in accordance with the installation instructions supplied with the product.

Once the software was installed and configured we updated the virus signatures. We then ran a simple test using the freely available European Institute for Computer Anti-Virus Research (EICAR) test files to ensure that the systems were working correctly.

These files, available from www.eicar.org, are designed to mimic a virus without actually being one, and signature-based anti-virus scanners should detect and report them as they would a real virus.

Having proved that the system was functioning correctly we allowed it to run for several hours to check that automatic updating was working as expected. Ideally, the software allows frequent updates to minimise the chances of new virus arriving before the signature files have been updated.

We then isolated the network from the Internet and introduced a selection of genuine viruses and remote control software to see how the system reacted. This was not intended as an exhaustive test, and we would have been surprised if any of the software had failed to detect them. Its main purpose was to provide some realistic data to drive the reporting and alerting systems.

We also wanted to see how the software reacted to the legitimate presence of the remote control software. We have seen earlier versions of some anti-virus software react as though they had found keystroke loggers or Trojans and promptly attempt to remove them, causing considerable annoyance in the process. Such potential false positives should be reported so that the system administrators can decide on a course of action.

Featured Resources

Humility in AI: Building trustworthy and ethical AI systems

How humble AI can help safeguard your business

Download now

Future of video conferencing

Optimising video conferencing features to achieve business goals

Download now

Leadership compass: Privileged Access Management

Securing privileged accounts in a high-risk environment

Download now

Why you need to include the cloud in your disaster recovery plan

Preserving data for business success

Download now

Most Popular

Huawei Mate 40 Pro 5G review: A tragically brilliant Mate
Mobile Phones

Huawei Mate 40 Pro 5G review: A tragically brilliant Mate

26 Nov 2020
What is phishing?
phishing

What is phishing?

25 Nov 2020
Microsoft Teams no longer works on Internet Explorer
Microsoft Office

Microsoft Teams no longer works on Internet Explorer

30 Nov 2020