Automatic Rule Consolidation
Automatically consolidate / composite rules which offer the same allow permissions but for different files, paths, functions, etc.
Each executable should fit into ONE rule per allow / deny type.
This would make users MUCH safer by actually being able to audit their HIDS and Firewall rules.
If a DENY rule negates an ALLOW rule, disable / delete the ALLOW.
Allow users to see how rules are going to be composited and allow them the option to keep individual rules
This would prevent having 1000+ rules are 1 week of learning mode. Some of my install exe's have literally