- Oct 1, 2019
- 1,120
The use of AV-labs: to provide information on how products perform and protect so AV-buyers and freeware AV-users can make informed decisions.
Why I think testing "labs" are useless
- Thread starter RoboMan
- Start date
Please provide comments and solutions that are helpful to the author of this topic.
- May 3, 2015
- 1,743
I have been saying something similar for a few years now. All top brands offer similar protection, so choose the ones that don't create any problem, do not slow you
down, that you are comfortable with the interface. Finally, the one that is cheaper.
All top brands have hidden bugs that are not evident at first. So, in an ideal situation, use their trial period to the last day. Use your computer as you would every day. Notice if the web pages you visit have any trouble loading. Do you have problems accessing anything in your network? Can you print to your wireless printer or scan from your wireless scanner?
While using the trial do not go throwing thousands of malwares at the software. Eventually some product will miss a sample and infect your machine for good. Also keep in mind that product A will eventually detect sample X while product B won't. This doesn't make product A better than B. You may bet there is a sample Y out there that product B detects, and A doesn't.
down, that you are comfortable with the interface. Finally, the one that is cheaper.
All top brands have hidden bugs that are not evident at first. So, in an ideal situation, use their trial period to the last day. Use your computer as you would every day. Notice if the web pages you visit have any trouble loading. Do you have problems accessing anything in your network? Can you print to your wireless printer or scan from your wireless scanner?
While using the trial do not go throwing thousands of malwares at the software. Eventually some product will miss a sample and infect your machine for good. Also keep in mind that product A will eventually detect sample X while product B won't. This doesn't make product A better than B. You may bet there is a sample Y out there that product B detects, and A doesn't.
Last edited:
- Jul 2, 2014
- 1,717
This is so true, but sadly in real world people don't take it that way. For them a 1% difference means so much they are ready to antivirus-hop.
I like it when the tests reveal enough information about their samples that we can draw meaningful real world conclusions.
For example, years ago this community was one of the first to start noting how BitDefender’s signatures lagged for zero day protection. That drove the intuition that if you choose a BD product it needs to be combined with something else that protects against emerging threats — whether that’s a second engine or a dynamic behavior blocker.
Even recently, @harlan4096’s tests showed that F-Secure had repeated blind spots to both scriptors as well as broad whitelisting of legitimate processes that could be abused (Python, Node.JS, etc).
When a test just says that product A detected 490 out of 500 threats and product B detected 480 out of 500, I think it’s crazy that people switch AV software based off those kinds of results. In a lot of the lab tests there simply is not enough spread between the products and the tests exaggerate slight differences, less than a few percent detection differences. Worse, other labs conflate non-protection scores in with the overall score (ease of use, false positive on a largely irrelevant battery of software, etc)
Same like my test unfortunately.
You can only go that far relying on signatures. Then the behavioural blocker was amazing til it had a slider to adjust the aggressiveness, but it didn’t take long for them to kill that, as well as the IDS adjustment.
I also don’t trust the performance test anymore that puts product A on the first place, product B last. From my tests I saw how product that has been deemed one of the heaviest, can actually be the best one for a very old laptop. I also saw how a product amongst the first might be an overload for my SSD.
- Mar 9, 2014
- 599
In terms of protection, tests are very helpful given the costs of security programs.
For performance, YMMV. One quick test involves using benchmark software after installing a program. The catch is that one will have to make sure that the program is uninstalled correctly after testing, which may mean using any uninstallers or cleaners provided by the company.
Finally, one reason for switching is that the performance sometimes goes down due to changes in the operating system and/or the security program.
For performance, YMMV. One quick test involves using benchmark software after installing a program. The catch is that one will have to make sure that the program is uninstalled correctly after testing, which may mean using any uninstallers or cleaners provided by the company.
Finally, one reason for switching is that the performance sometimes goes down due to changes in the operating system and/or the security program.
- May 3, 2015
- 1,743
As far as I'm concerned the best way to test performance is to install it in your machine and use it. If you can't feel the difference, then it's light. A 0,1ms diference to load a webpage, for instance, doesn't bother me or make the product "heavier".
Don't even mention RAM. High RAM usage does not in any way qualify a product as heavy.
Don't even mention RAM. High RAM usage does not in any way qualify a product as heavy.
Similar threads
