Feeds

Industry coalition takes stab at defining spyware

Grappling with semantics

  • alert
  • submit to reddit

Beginner's guide to SSL certificates

Technology companies have formed an alliance with public interest groups to tackle spyware. Membership of the Anti-Spyware Coalition (here) includes large software developers, anti-spyware companies and others. Current members include AOL, Computer Associates, EarthLink, HP, Lavasoft, McAfee, Microsoft, PC Tools, Symantec, Trend Micro, Yahoo!, UC Berkeley, the Business Software Alliance and the Cyber Security Industry Alliance.

ASC has ventured where angels fear to tread in drafting a definition for "spyware" (below), which it's offering up for public debate. Comments (to ASC not El Reg, thank you) are invited until 12 August after which ASC will formulate a "final definition" for spyware which it promises will incorporate the best recommendations for the public at large.

Spyware and other potentially unwanted technologies are those that "impair users' control over material changes that affect their user experience, privacy, or system security; use of their system resources, including what programs are installed on their computers; or collection, use, and distribution of their personal or otherwise sensitive information."

That's a bit of a mouthful but ASC hopes its definition will settle a few pub arguments and allow vendors to concentrate on weightier matters, such as fighting the growth of spyware. "One of the biggest challenges we've had with spyware has been agreeing on what it is," said Ari Schwartz, Associate Director of the Center for Democracy and Technology, which has led the work of the group. "The anti-spyware community needs a way to quickly and decisively categorize the new programs spawning at exponential rates across the Internet. The definitions will serve as a foundation for all future efforts to help users make more informed decisions about which programs to keep and which to delete."

To help consumers, the coalition has drafted an extensive glossary of terms like adware, port scanner, screen scraper, and others commonly associated with unwanted programs. If they get around to defining virus, worm, Trojan and root kit then we'd really be onto something.

The ASC has also outlined common procedures for dispute resolution for vendors who believe their software has been unfairly flagged by an anti-spyware company as part of its efforts to make the practices of anti-spyware companies more transparent.The organisation is also offering consumers tips on how to stay clear of spyware infestation here. ®

Related stories

Vendors exit anti-spyware group (COAST)
Anti-spyware group collapses
Adware firm 180solutions in image makeover
MS downgrades Claria adware detection
Judge bans company's deceptive anti-spyware claims
UK preps major security awareness campaign
US moves towards anti-spyware law

Top 5 reasons to deploy VMware with Tegile

More from The Register

next story
UK smart meters arrive in 2020. Hackers have ALREADY found a flaw
Energy summit bods warned of free energy bonanza
DRUPAL-OPCALYPSE! Devs say best assume your CMS is owned
SQLi hole was hit hard, fast, and before most admins knew it needed patching
Feds seek potential 'second Snowden' gov doc leaker – report
Hang on, Ed wasn't here when we compiled THIS document
Mozilla releases geolocating WiFi sniffer for Android
As if the civilians who never change access point passwords will ever opt out of this one
Why weasel words might not work for Whisper
CEO suspends editor but privacy questions remain
DEATH by PowerPoint: Microsoft warns of 0-day attack hidden in slides
Might put out patch in update, might chuck it out sooner
prev story

Whitepapers

Why cloud backup?
Combining the latest advancements in disk-based backup with secure, integrated, cloud technologies offer organizations fast and assured recovery of their critical enterprise data.
Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Storage capacity and performance optimization at Mizuno USA
Mizuno USA turn to Tegile storage technology to solve both their SAN and backup issues.
Protecting users from Firesheep and other Sidejacking attacks with SSL
Discussing the vulnerabilities inherent in Wi-Fi networks, and how using TLS/SSL for your entire site will assure security.