Operational Technology Cybersecurity Software Certification Test 2026

This report documents the results of the Operational Technology (OT) Certification Test conducted by AV-Comparatives in January 2026. The certification evaluates the effectiveness of security products in preventing execution-based attacks in post-breach scenarios, specifically in fully offline environments typical of Operational Technology systems. The test focuses on the ability to prevent or detect the execution of untrusted binary code when an attacker has already gained local access to the system. The certification process includes two distinct tracks: the OT Certification and the Zero-Trust Certification, each reflecting different operational realities. The OT Certification is tailored for environments that are air-gapped and do not rely on cloud connectivity, while the Zero-Trust Certification is designed for connected enterprise environments. The report outlines the methodology, test scenarios, and the criteria for certification, emphasizing the importance of distinguishing between legitimate software updates and malicious execution attempts in air-gapped OT environments. All tests were conducted under strict offline conditions to simulate real-world deployment scenarios.