Group Delivers 'Spyware' Definition

With the definition set, the ASC sets out to find the apps that can be considered spyware.

By Jim Wagner | Posted Oct 28, 2005
Print ArticleEmail Article
  • Share on Facebook
  • Share on Twitter
  • Share on LinkedIn

After four months and nearly 400 comments, the Anti-Spyware Coalition (ASC) has published a final definition of terms used in the spyware business, officials announced Thursday.

The group also published an interim risk-modeling document that can be used to determine whether a piece of software is actually spyware, according to its consensus definition. The ASC will take public comments on the risk-modeling document until Nov. 27.

The ASC published an interim report in July defining a variety of terms used in the spyware industry -- adware, droneware and screen scrapers for example -- and asked for public comments before the organization submitted a finalized version.

According to the ASC, spyware is defined as, "A term for tracking software deployed without adequate notice, consent or control for the user. In its broader sense, spyware is used as a synonym for what the ASC calls 'Spyware and Other Potentially Unwanted Technologies.'"

The finalized definitions, which officials said would be updated as needed, include documents containing safety tips for end users, as well as the best approach for resolving vendor disputes between anti-spyware companies and software publishers.

Why would an organization spend so much time devising a common definition for what many Internet users already know and deal with on a regular basis?

But the industry organization, made up of companies such as AOL , McAfee, Microsoft and the Center for Democracy & Technology (ADT), have found the word "spyware" can mean something different from person to person or company to company.

"The spyware definitions give those of us united in the battle against spyware a common language, while the risk-modeling document clearly lays out the behaviors that make certain software dangerous," Ari Schwartz, ADT associate director, said in a statement. "These developments move us closer to a world in which consumers have the upper hand over those who create malicious, unwanted technology."

From the common definition and risk-modeling foundation they've now created, organization officials said, the group can move on to other areas to help prevent the spread of spyware. The ASC plans to work next on best practices to be used by the industry.

According to an August report by FaceTime Communications, companies are spending an average $130,000 a month to clean up spyware introduced by unsanctioned applications.

Article courtesy of internetnews.com

Comment and Contribute
(Maximum characters: 1200). You have
characters left.
Get the Latest Scoop with Enterprise Networking Planet Newsletter