Report: Four percent of security products pass first round of certification

A new report from ICSA Labs, a division of Verizon Business that offers vendor-neutral testing and certification of security products, found that 78 percent of security products don't pass the first tests and often require two rounds of additional testing to obtain certification. The main reason: They don't do what they are supposed to do.

The "ICSA Labs Product Assurance Report" was created with the Verizon Business Data Breach Investigations research arm. The researchers drew on tests of thousands of security products during the last two decades and aim to educate buyers about the typical problems associated with the certification process.

The report said 4 percent of products actually pass the first round. Of course, most manufacturers address the problems and resubmit them for approval, after which 82 percent of products submitted for certification go on to eventually receive it. Products included in the study were anti-virus, network firewall, Web app firewall, network IPS, IPSec VPN, SSL VPN and custom testing products.

For more:
- check out this InformationWeek article

Related Articles:
Open-source security worries IT execs
Biggest hacking case ever sends security warning
Survey: Most businesses are not attending to cloud security