Every PC and laptop needs antivirus, antispyware and a firewall. But what constitutes 'good' security software? Here we outline what to look for when selecting your desktop or laptop's defensive arsenal.
If you have a Windows PC, especially one connected to the internet, you must run reputable security software. There's no excuse: even if you have no concern for your own computer and data, leaving a system unprotected encourages cybercriminals, and makes the computing world worse for us all.
It's also important that your internet security arsenal is kept up to date. And although some users may prefer to mix and match products to produce their perfect blend, it often makes sense to install an internet security suite that contains all the necessary elements.
The best products will offer features that go beyond the traditional antivirus, antispyware, antispam and firewall concoction of internet security suites – you might see parental controls, 'cloud' protection, anti-phishing, anti-rootkit, virtual web browsers and keyboards, link- and file scanners, gaming modes, online backup and more included. As malware develops more quickly than ever before, signature-based virus detection is no longer enough, and we suggest that any package worth its salt should have at least behavioural protection. See also: Group test: what's the best security software?
Installing multiple security products from different vendors is usually a bad idea, as they can conflict. With many households now owning more than one computer, the best value is usually offered by a one-year, three-user licence. However, you can save some cash with a single-user licence if you have only one computer.
If you're happy with your product and prepared to take a punt on its future performance, you could save money by signing up for two or even five years.
Not all security products are created equal, however. To help you decide which of each type of product to install, we work with world-renowned independent security testing lab AV-Test.org to evaluate the effectiveness of security software. No security software is foolproof, but be sure to check independent test results such as our Top 5 chart to make sure that your chosen product is of the required standard.
Here are 12 key things to look for when assessing which software to choose. Not every program or suite will have all these features, and that's fine. Consider these features signs of a good setup, and try to blend together as many as possible. We've assigned each a level of importance to further help your decision.
Security software: The basics
1. Signature detection. Once upon a time, signature-based detection was the be all and end all of security software. This is the method by which malware in the wild is recognised and analysed by security experts. They then upload the signatures of viruses and their dodgy brethren, telling your PC not to allow such filth to install.
The advent of 'zero-day threats' – vulnerabilities exploited on the day they are discovered – has marginalised signature-based antivirus and –spyware. The creation of malware has been commoditised to the extent that anyone with a bit of cash and tech savvy can become a hacker: analysis simply can't work fast enough to keep up.
But we're a long way from a world in which signature-based antivirus is not required. With literally millions of pieces of malware in the Windows world, a solid virus database gives your PC a base level of protection, removing the vast majority of threats from the equation before the more labour-intensive security functions take over.
2. Behaviour- and cloud-based detection. These are the functions that take over when the signature database has done its thing, and both are rapidly becoming crucial to any security setup. Security vendors often append fancy names to these functions; ultimately, you're looking for features that can discern new and unknown viruses by monitoring processes' behaviour, or judge software on the basis of user experience.
Behavioural or heuristic detection judges potential malware based on what it does to your PC. But legitimate software may require access permissions very similar to those requested by malware. False positives can be a problem, so it's important to check independent reviews.
The best security software supplements behavioural detection by taking note of the choices users make when presented with a malware warning. Intelligent software can then assign a user-led rating to suspect programs, adding weight to the suspicions of the behavioural engine, reducing false positives and speeding up the whole process.
The bigger the userbase, the better the quality of its crowd-sourced information – but this doesn't mean only the biggest players are worth consideration, since vendors often share user information. Independent reviews can help you judge their effectiveness.
3. A robust, two-way firewall. Windows has its own perfectly acceptable firewall, and any security suite you buy will come with its own software that filters out threats before they get anywhere near your system. But not all firewalls are created equal.
The best firewalls have additional functions that, for instance, monitor your internet connection and keep strangers from accessing your Wi-Fi. They should also be just as vigorous at preventing data leaking out from your PC as stopping your system pulling down malware. You also need to make sure your chosen firewall is regularly updated. And if you are using a third-party firewall, ensure that you disable the native Windows one.
Security software: Recovering from disaster
4. Cleanup or rescue mode. It's critical that your chosen security software is as good at removing threats as it is in finding them. But discerning how successful each program is at this crucial function can be difficult to judge. As we may have said before, independent reviews from magazines such as PC Advisor are your friend, in this regard, but there are some features to look for that will help you make a decision.
Any security software that's serious about malware removal should have some kind of cleanup or rescue mode. This should be a function that can start your PC in a trusted environment, which is then used for cleanup and restoration with no danger to your data. It's by no means critical, but a useful addition.
5. Data protection, theft prevention and privacy. All malware exists for one reason: to make money. The best way of doing that is to steal your data, then spoof your persona to make purchases, sell your details to spammers, or simply dip into your bank account. As an increasing amount of our connected computing happens on laptops, tablets and smartphones, modern security software has to protect you the person, rather than just your devices.
If your laptop is stolen and it's insured, you can replace the hardware. The loss of the data held on it may be less easy to recover. And that's before you consider the sentimental and monetary cost of having to replace personal photos and purchased movies and music.
The ideal security setup should include some form of data filter that prevents critical information such as your bank details from ever leaving your computer, except for legitimate reasons. Anti-phishing, the ability to block websites supporting scams or credit-card phishing attempts, is critical here, as is encryption of email, IM and file transfer.
And the best security software offers functionality that will allow you to recover quickly from a potentially critical theft: virtual or physical. The ability to remotely locate, message and wipe your lost laptop or smartphone is key.
6. Secure backup. Backup is a hassle, until it's required; at which point it becomes your best friend. While not strictly a security feature, the best security software offers secure online space to protect your critical files. Look for storage options where data is encrypted using industry-standard AES algorithms, ensuring that it's never accessible to malicious third parties.
NEXT PAGE: protecting you from you >>