graphgrc

SCF - CFG-03.3 - Unauthorized or Authorized Software (Blacklisting or Whitelisting)

Mechanisms exist to whitelist or blacklist applications in an order to limit what is authorized to execute on systems.

Mapped framework controls

NIST 800-53

• CM-7(5)

Control questions

Does the organization whitelist or blacklist applications in an order to limit what is authorized to execute on systems?

This site is open source. Improve this page.