In a report released Tuesday, ICSA Labs noted that 78 percent of product failures during the first series of tests are due to inadequate performance of core product functionality. A division under Verizon Business, ICSA--which tests and certifies security products--said it based the findings on data collated from over 20 years of product testing.
According to the report, the second most common reason for failures at initial testing is due to the failure to completely and accurately log data, accounting for 58 percent of initial failures. According to ICSA, some vendors and enterprise users consider data logging a nuisance and merely as a "box to check".
The third most common cause of failure is the product's inherent security problems, said ICSA. These problems include vulnerabilities that compromise the confidentiality or integrity of the system, and random behavior that affects product availability.
For more, read "Most security products flunk quality tests" on ZDNet Asia.