Common Tasks

Recent Posts

Community

Email Notifications

Personal Links

Archives

Security Protection - Harry Waldron (CS)

Security Best Practices, Breaking News, & Updates

Common Malware Enumeration - New CME standard for AV vendors

Department of Homeland Security CERT provides one of the best websites related to computer security.  They have recently addressed a major issue among anti-virus companies, where common naming conventions don't exist due to the competitive nature of being first many times.  Also, some AV products can handle several variants with a single defiition, where other AV vendors must specifically define a new variant each time a new compression or packing technique is used on the executable.       

Chris Mosby, a very talented security modertor in My IT Forums commented on this need in anOpen Letter to Anti-Virus Software Companiesin November 2004.  This new system won't be perfect, but it's a step in the right direction.  It'll help companies like the one I work for which uses corporate McAfee VS 8.0i on the desktop and SAV for email filtering.

Common Malware Enumeration (CME) - Home Page
http://cme.mitre.org/

Common Malware Enumeration (CME) - FAQ
http://cme.mitre.org/about/faqs.html

Common Malware Enumeration (CME) - Current List
http://cme.mitre.org/data/list.html

Common Malware Enumeration (CME) - How it Works
http://cme.mitre.org/cme/process.html

Common Malware Enumeration (CME) - Press Release
http://cme.mitre.org/about/docs.html

Posted: Oct 09 2005, 07:50 AM by Harry Waldron | with no comments