Is free virus protection inferior?

What price is virus protection worth?

It seems the CEO of a company that distributes free antivirus (AV) software is taking exception to something a Symantec official said about the differences between free and paid AV. The funny thing is that it took him a year to get angry about it—leading us to believe that it’s all just a big publicity stunt. It’s getting a lot of attention to be sure, but it’s a stunt nonetheless.

In 2009, Tech Blorge reporter John Pospisil interviewed David Hall, Symantec’s product manager for consumer products in the Asia-Pacific region. “There is a very, very big gap between what antivirus does and the threats that are being delivered today,” Hall said in that interview. “If you are only relying on free antivirus to offer you protection in this modern age, you are not getting the protection you need to be able to stay clean and have a reasonable chance of avoiding identity theft. That’s why free antivirus is not enough; you need in-depth layered technologies, which only come from the more mature paid suites.”

Fast-forward to the present day, and we have Comodo CEO Melih Abdulhayaglou suddenly offended by that remark and challenging Symantec to a showdown.

This is actually a pretty smart move based on previous reviews of AV performance we’ve done in the GCN Lab. Our most recent AV review this year  showed no functional difference between free and paid programs in terms of stopping viruses, and it’s been that way for many years. In fact, you have to go all the way back to 2006 to find an AV roundup where viruses were missed by some companies.

The lab has a secure computer that is kept locked away, filled with nasty viruses. And we use virus creation tools plus good old-fashion programming elbow grease to create new ones for any AV test. They are then loaded into a traffic generator and slammed into a computer protected by antivirus tools. But here’s the thing: pretty much every AV program with proper updates is going to be able to stop every virus these days. If one gets through, it’s actually news. That’s not to say a virus couldn’t suddenly erupt and start killing off computers, but such a virus probably would affect both paid and free programs in equal measure.

The point is that if you are talking about basic protection, all AV suites are pretty much equal. We’ve never tested, or even heard of, Comodo. But we would be willing to bet next week’s donuts that they could pass this basic test. Protection however, is a lot more than just that basic goal of stopping viruses. These days true protection includes halting spam, phishing attacks, transmission of personal information, the scanning of links to ensure a Website isn’t infected before you visit it, stopping keyloggers and snoops. And a protection suite has to have a clean interface as well, or else all that protection will be wasted inside a bad GUI that could almost be like spam itself. It’s actually difficult to find a program that only stops viruses, since the protection it would offer would be minimal compared to the level and types of threats out there today.

That’s why when we test AV software these days, we look at all aspects of a program. It gets the basic tests, but most of its overall grade is based on other factors. That basic testing is more or less just a check box on our reviewer’s form, sort of a Pass/Fail situation. If it passes, then the real testing can begin.

We loved Symantec’s response to Comodo. They gave them the addresses and contact info for testing labs like the one at GCN, and invited them to participate in roundup reviews alongside the Norton product. And we second that notion. The next time we perform one, we would love to have Comodo along.

 

Reader Comments

Mon, Oct 4, 2010 strelaoz

The funny thing is David Hall from Symantec didn't know that PC Tools (part of Symantec) offered free anti-virus products as well? Why even bother to buy out the company in the first place? btw, David Hall is a new kid to the industry.

Thu, Sep 30, 2010 Mikial Youssef

I’ve never heard of Comodo either. Are they trying to be like a komodo dragon but don’t know how to spell it or do they mean comodo as in “of the commode.” In any case, there is no way that these guys can stand up to Symantec protection. I look forward to seeing what happens when the GCN lab puts them head to head. Someone’s gonna get flushed.

Thu, Sep 30, 2010 Ray DC

Reread Symantec's quote "There is a very, very big gap between what antivirus does and the threats that are being delivered today,” “If you are only relying on . . . antivirus to offer you protection . . . you are not getting the protection you need to be able to stay clean and have a reasonable chance of avoiding identity theft. you need in-depth layered technologies, which only come from the more mature . . . suites. That’s why . . . antivirus is not enough. But Microsoft know that, with two different products: Windows Defender and Microsoft Security Essentials. Does Commodo prevent other forms of malware? I admit I don't know enought about Commodo.

Wed, Sep 29, 2010 Jeffrey A. Williams Frisco Texas

I know one of the security pros at Comodo a bit and find him to be very competent as well as a regular IETF participant. I have used Comodo's AV and fine it superior in many respects to any other I have ever used on a comparison test basis.

Wed, Sep 29, 2010

It's kinda scary that you've never heard of Comodo. They've received good reviews in some of the geek press for years... I first heard of them when their free firewall software was very positively reviewed circa 5 years ago.

Show All Comments

Please post your comments here. Comments are moderated, so they may not appear immediately after submitting. We will not post comments that we consider abusive or off-topic.

Please type the letters/numbers you see above