The project of integrating the name virus has been criticized

The project of integrating the name virus has been criticized Picture 1 The CME created to eliminate the problem arose due to the different naming of security software providers, such as the latest Sober worm called Sober.Z or Sober.X. However, some experts seem to doubt the effectiveness of the plan.

The idea of ​​CME was formed a year ago with the participation of US-CERT Network Security Center, US Department of Homeland Security and antivirus program companies such as Microsoft, Trend Micro, McAfee and Symantec. .The plan was announced by the SANS Security Institute via a general e-mail, saying "the project will classify data sources about dangerous software, list new viruses for users, analysts or whatever. who wants to have accurate information about the malicious codes ".

However, Chris Mosby, a system administrator in the US, strongly opposed this plan.He affirmed that the project was "the opinion of isolationists" and made it difficult for administrators to break the virus."The hardest part of the CME project a year ago - distinguishing exploit codes that look like each other - has now begun to work effectively. But CME is still just a poor list, including another name. Viruses are used by companies, without providing any details or links, "Mosby said.

SANS admits this makes the project's prospects narrowed significantly.CME is not even quality by independent programs like the virus database of Secunia security company.

"One should not criticize just because it is not a 100% complete solution. The new CME takes the first steps, but it is clearly on the right track. The most important thing is that the CME creates the relationship, compare between individual names, "said Graham Cluley, security adviser at British security firm Sophos."The system will gradually improve over time. Connection links and descriptive information will definitely be included in the project."