OESIS OK

Badges associated with the three levels of certification.

OESIS OK is a security software certification program, founded by OPSWAT, and sponsored by OPSWAT, Fiberlink, H3C and Juniper Networks, for a variety of application types. Including:

  • Antiphishing
  • Antispyware
  • Antivirus
  • Backup Clients
  • Data Loss Prevention
  • Device Access Control
  • Hard Disk Encryption
  • Health Agents
  • Instant Messengers
  • Patch Management
  • Personal Firewalls
  • URL Filtering
  • Virtual Machines
  • VPN Clients

Although the program shares the idea of software certification with testing agencies like ICSA Labs, West Coast Labs, VB100 and AV-Comparatives, unlike those agencies it does not certify applications for their efficacy, but rather for their level of interoperability/manageability with third-party technology solutions. The program, therefore, is not in competition with anti-malware testing companies and has, in fact, formed partnerships with several of them.

As of June 2010 membership consists of 45 application vendors including AT&T, AVG Technologies, Avira, Check Point, ESET, Juniper Networks, Kaspersky, Kingsoft, Panda Software, Verizon and others.

Certification

OESIS Local libraries. Certification is based on the level of interoperability with the OESIS Framework. This framework is an industry standard SDK for policy creation, remediation and support utilities that require detection and manageability functions and is commonly used as the basis for SSL VPN and NAC products. Since it is licensed by numerous technology companies certification is one way for software vendors to promote their applications as interoperable with solutions from Cisco Systems, Juniper Networks, F5 Networks, support.com, Fiberlink and many others.

Certification is three-tiered, with each tier offering an increased number of interoperable products.

  • Identified
  • Certified
  • Gold Certified

Criteria differ for each application category. For example, for an antivirus application, criteria for Certified status includes, among other things, the ability to activate an update of the application and detect whether it is currently protecting the endpoint. Whereas Gold Certification adds the ability to force the application to launch a scan and retrieve a history of detected threats.

Diagnostic Utility

The Am I OESIS OK? diagnostic utility allows users to check the certification status of their own installed security applications. The utility will also report whether the user’s applications have received quality certifications from the major third-party testing agencies and whether their antivirus signatures are up to date.