Jump to content

Wikipedia:Articles for deletion/Malware Spread Mitigation

Add links
From Wikipedia, the free encyclopedia
< Wikipedia:Articles for deletion

This is an old revision of this page, as edited by Mronayne (talk | contribs) at 16:01, 12 July 2007 (→‎[[Malware Spread Mitigation]]). The present address (URL) is a permanent link to this revision, which may differ significantly from the current revision.

Malware Spread Mitigation

Malware Spread Mitigation (edit | talk | history | protect | delete | links | watch | logs | views) – (View log)

Notability not asserted, suspected promotional material. New author with no other meaningful contributions. A supposed infosec term that is marginally visible in Google, is defined in a remarkably vague way (Northeast Blackout of 2003, KFLOCS, chaos theory and such) - and in the end seems to be a covert ad for a proprietary and not necessarily notable technology used by this company in their products. The company itself does not seem to be particularly frequently noted either. lcamtuf 11:51, 11 July 2007 (UTC)[reply]

  • KEEP I have been working in the computer industry for a while and have come across many terms, including "Malware Spread Mitigation," during web searches for products which stop malware in its tracks. My interest is in low-level code that can run on a variety of platforms (PC's, embedded systems, etc.). The term, which is fairly new (like "Code Access Security," a term already in Wikipedia), refers to a new concept in preventing viruses from spreading to other systems. Like many computer-related terms, this one -- which user Lcamtuf called "supposed infosec" -- can already be found in web searches both in phrase and in concept.
    The parenthetical reference to "big word" was somewhat amusing, especially since Wikipedia already has an entry for "Popek and Goldberg virtualization requirements." If Lcamtuf is looking to rid the world of "big words," there are many places to look. But what grabbed my attention here was that, unlike other Wikipedia entries, I was struck by Lcamtuf's tone and rather disparaging comment about the author's lack of meaningful contributions, and his comment about "suspected promotional material." If the entry contains a line which the administrators think is promotional, the text can always be modified. I think deletion would be too extreme. And if Lcamtuf (whose real name is Michal Zalewski) wants to chide submittors for, as he calls it, "promotional material," he can start by removing the Wikipedia reference to his own book, "Silence on the Wire."
    It turns out that Mr. Zalewski (Lcamtuf) might indeed have a motivation to have the entire concept removed from our computer security vocabulary. He works for a competitor company which provides blacklisting technology. Having researched Savant Protection, both press releases and other independent sources, it seems clear that Savant Protection's approach is not only the best at preventing execution, but also the best at stopping the spread across systems. I think the emphasis on new approaches to virus and spread protection, like countless other trends in the computer industry, will spawn new terms which will become -- or are already becoming -- part of our vocabulary. goodville 16:00, 11 July 2007 (UTC) This template must be substituted.[reply]
    • As a matter of policy, Wikipedia is not a place to describe terms or ideas that "will become or are already becoming" a part of our knowledge or vocabulary. Furthermore, extraordinary claims of efficiency or notability require extraordinary (and verifiable) third-party proofs. See WP:OR. --lcamtuf 16:48, 11 July 2007 (UTC)[reply]
  • Keep First and foremost the entry is new and not fully baked. Second, it is a legitimate entry since this is a new computer security approach that can be added to the other approaches such as blacklisting, whitelisting etc. So is lcamtuf saying that nothing new should be added to Wiki because it is not highly ranked in Google or notable yet? lcamtuf should then remove his entries promoting his book and perhaps the AV company he works for. If whitelisting is posted, another somewhat new approach - relatively to blacklisting, then Malware Spread Mitigation should be noted. This is an accepted approach in the security community and with several of the top analyst firms. This appears to be a case of a large firm exerting itself on a changing market. My understand was that Wikipedia is a knowledge tool and that postings should be of this ilk. The posting is not promotional (I have seen much, much worse). Great care was taken to not be so. The entry should be allowed to exist and let the community contribute. Of course it could be edited to use small words if they are too complex for the reader - geesh. ishisaka 16:11 11 July 2007 (UTC)
    • Again, as a rule, we do not describe concepts that "can be added" to common knowledge - we focus exclusively on concepts that already are included there, by reputable, verifiable third-party sources (such as peer-reviewed journals). --lcamtuf 16:48, 11 July 2007 (UTC)[reply]
      • So you would have me believe that every entry is Wikipedia can quote a third party source on the day it is entered? That would require a lot of content to be deleted. — Preceding unsigned comment added by 24.61.93.173 (talkcontribs)
  • Delete per lack of "significant coverage by independent media" Only hit on google news archives is a press release Corpx 16:43, 11 July 2007 (UTC)[reply]
  • Delete All but one of the hits on a standard google search are press releases from the same company. Not discussed in any of the reliable sources that are likely to discuss something like this (e.g. securityfocus, zdnet). JulesH 17:01, 11 July 2007 (UTC)[reply]
  • Keep Let's give sometime for this article to develop before XFDing it. Thansk Taprobanus 17:15, 11 July 2007 (UTC)[reply]
How do you know ? just a question Taprobanus 17:48, 11 July 2007 (UTC)[reply]
  • KeepI did some checking-seems SC Magazine, Government Computing News, eWEEK and NETWORK WORLD have some very good things to say...new terms, new technologies, new knowledge - let it stand an TVJones 19:06, 11 July 2007 (UTC)TVJones (talkcontribs) has made few or no other edits outside this topic. [reply]
  • Delete - appears to be a neologism (or more like a protologism) that gets most of its traction from one company's phrasing with regards to its product. I came up with mostly press releases in searches; notability doesn't appear to be established, and I don't think it will be any time soon. Tony Fox (arf!) review? 20:19, 11 July 2007 (UTC)[reply]
  • Delete, NN advertising slogan. --Dhartung | Talk 23:26, 11 July 2007 (UTC)[reply]
    • A Google search shows there are numerous sources attributed to numerous companies all providing malware spread mitigation. Cannot be a slogan if mentioned across several companies and media outlets. Research please — Preceding unsigned comment added by 24.61.93.173 (talkcontribs)
      • Can you link to some of them, please? When I performed that search I found approximately 100 press releases from Savant, and precisely one article that used the term otherwise, and not in relation to the technology described in the article. JulesH 09:56, 12 July 2007 (UTC)[reply]
  • KEEP A Google search using the terms virus or worm or bot or malware plus mitigation excluding “Savant Protection” from the results produces 1,770,000 hits! Implied in most, and explicit in many, of the references is the notion of preventing harmful computer code from propagating to other non-infected computers. Every malware related product on the market promotes and differentiates their capabilities for effectively performing this service. I believe that the term Malware Spread Mitigation, although somewhat new in terms of putting these specific words together in this way, is not new in what it represents. It is an excellent lens for focusing attention on this critical area of computer security. With the help of the Wikipedia community it can be enhanced over time to bring a much needed focal point to this specific subject area. Isn’t that what Wikipedia is all about? I also believe that there is plenty of precedent for acceptance of Malware Spread Mitigation. The term computer security incident management already exists in Wikipedia as does Anti-spam techniques (e-mail), Trusted Computing, and Computer security to name a few. I was also surprised to see McAfee VirusScan and Norton AntiVirus entries along with a number of other commercial antivirus products listed in Wikipedia. Compared to these entries I see absolutely no self-promotion by Savant Protection in this entry. In fact, I would recommend that Savant Protection create their own entry seeing that McAfee and Norton are allowed. :-) Mronayne 14:12, 12 July 2007 (UTC) This template must be substituted.[reply]
    • Google search for virus OR worm OR bot OR malware +mitigation -“Savant Protection” is remarkably broad and predominantly returns pages unrelated to the subject of this article. --lcamtuf 14:30, 12 July 2007 (UTC)[reply]
    • A Google search on Computer Security = 5,250,000 hits! On Trusted Computing = 1,360,000 hits! Both are accepted Wikipedia entries. And, I believe that there are a significant number of results from my search that do pertain to the detection, isolation, and removal of malware – in essence, stopping the spread of malware – most definitely the subject of this article.
Retrieved from "https://en.wikipedia.org/w/index.php?title=Wikipedia:Articles_for_deletion/Malware_Spread_Mitigation&oldid=144203585"