Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update annotation on Malware_Subject/Findings_Bundles for clarity #77

Closed
ikiril01 opened this issue Jun 20, 2014 · 1 comment
Closed

Update annotation on Malware_Subject/Findings_Bundles for clarity #77

ikiril01 opened this issue Jun 20, 2014 · 1 comment
Labels
Com-Package Pri-Medium Type-Enhancement
Milestone
MAEC 5.0

Comments

@ikiril01
Copy link
Member

The current annotation for the Findings_Bundles element in the Malware Subject is rather confusing. In particular, this statement is rather a misnomer:
"The term “Findings Bundles” is used rather than simply “Bundles” to imply that
the content was derived from analysis".

Clearly, all content captured in a Bundle would be derived from some form of analysis. What we're intending to state here is that the Findings Bundles are intended to capture only the true analytical findings for the malware instance and NOT metadata or other secondary data such as labels assigned to the sample, the tools that were used in the analysis, etc.
@ikiril01 ikiril01 added this to the MAEC 4.2 milestone Oct 17, 2014
@ikiril01 ikiril01 modified the milestones: MAEC 5.0, MAEC 4.2 Dec 11, 2014
@ikiril01
Copy link
Member Author

No longer relevant given #104.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Com-Package Pri-Medium Type-Enhancement
Projects
None yet
Milestone
MAEC 5.0
Development

No branches or pull requests
1 participant
@ikiril01