Application control is implemented using cryptographic hash rules, publisher certificate rules or path rules.
Topic
Application control
Applicable to
all
History
Priority
recommended
Apr 2020
Application control is implemented using cryptographic hash rules, publisher certificate rules or path rules.
Security controls 0843, 1490, 0955, 1471, 1392, 1544, 0846 and 0957 were modified to replace ‘application whitelisting’ with ‘application control’.
Mar 2020
Application whitelisting is implemented using cryptographic hash rules, publisher certificate rules or path rules.
2017
Application whitelisting must be implemented using at least one of the following methods:• cryptographic hashes• publisher certificates• absolute paths• parent folders.
Control Text Changed. No public explaination.
2015
Agencies must implement application whitelisting using at least one of the methods:• cryptographic hashes• publisher certificates• absolute paths• parent folders.
2010
It is recommended agencies restrict the decision whether to run an executable based on the following, in theorder of preference shown:••••cryptographic hashexecutable absolute pathdigital signatureparent folder.