Spyware Gets a Definition

The anti-spyware coalition, a consortium of industry leaders such as Microsoft, AOL and Symantec, released their "Final Working Report of Spyware Definitions." The report is a stab at resolving a growing and increasingly complicated problem. Spyware continues to proliferate and plague users, while the anti-spyware programs that are supposed to save us haven't been able to agree what is and what is not spyware and use subjective or secret criteria in their processes.

Promoters of the anti-spyware coalition (ASC) say that this is a necessary step. Vendors need to use a common language and to share information about new and expanding threats. If successful, consumers would ultimately benefit with improved anti-spyware products with more transparency and better efficacy.

Detractors say that the coalition will make it easier for spyware programs to game the system. They can technically comply with the coalition rules, while still being basically evil spyware.

In my opinion, the detractors have it wrong. Reading the anti-spyware coalition guidelines, it is clear that if a program complies we are all better off. For example, the ASC guidelines state that programs must follow a vast set of specific guidelines, including:

• Get user consent prior to install
• Provide easy to use uninstall process
• Provide adequate disclosure about product behavior

... and more. If a product is doing all of these things, then it can't be spying. After all, the user installed it, the user knows what it is doing, and the user can easily uninstall it at any time.

Any program that meets all that criteria on my machine is welcome to stay. Link.