Common Malware Enumeration Initiative

LogError writes "The Common Malware Enumeration Initiative was just announced. Headed by the United States Computer Emergency Readiness Team (US-CERT) and supported by an editorial board of anti-virus vendors and related organizations it should provide a neutral, shared identification method for malware outbreaks."

Which Platforms?

[Brent+Spiner]

I don't see any specifics. Is this going to be Windows-centric, or are they reporting on ALL malware, regardless of platform?

Wrong approach to the problem

[BierGuzzl]

It would be WAY easier to keep a list of names and heuristics for all of the legitimate code out there and have a default deny policy with a whitelist. The only condition that would need to be met is that no legitimate application is denied entry or the concept could become worse than DRM.

Poor naming...

[Senzei]

Like the half dozen or so other responses I have seen I think the naming system is a good idea, but the names generated for it would lead to confusion, especially amongst the less computer savvy.

I think the solution is to handle things the same way that we handle hurricanes. Keep a big list of names and iterate through that for each new virus.

In that vein I would like to now suggest that viruses be given the dumbest names possible as a means of discouraging stupid kids from writing them to seek publicity. After all who would want to see themselves listed as the author of ChickenChaser .5 or TinyPocketRocket 1.3"

Bad Thing?

[Phreakiture]

Didn't we already decide, that enumaration, amongst other things was a Dumb Idea?