Guide to Application Whitelisting

Adam  Sedgewick; Murugiah P. Souppaya; Karen  Scarfone

The .gov means it’s official.
Federal government websites often end in .gov or .mil. Before sharing sensitive information, make sure you’re on a federal government site.

The site is secure.
The https:// ensures that you are connecting to the official website and that any information you provide is encrypted and transmitted securely.

PUBLICATIONS

Guide to Application Whitelisting

Published

October 28, 2015

Author(s)

Adam Sedgewick, Murugiah P. Souppaya, Karen Scarfone

Abstract

An application whitelist is a list of applications and application components that are authorized for use in an organization. Application whitelisting technologies use whitelists to control which applications are permitted to execute on a host. This helps to stop the execution of malware, unlicensed software, and other unauthorized software. This publication is intended to assist organizations in understanding the basics of application whitelisting. It also explains planning and implementation for whitelisting technologies throughout the security deployment lifecycle.

Citation

Special Publication (NIST SP) - 800-167

Report Number

800-167

NIST Pub Series

Special Publication (NIST SP)

Pub Type

NIST Pubs

Download Paper

DOI Link

Keywords

access control, application control, application whitelisting, information security, software security, whitelisting

Identity and access management and Cybersecurity

Created October 28, 2015, Updated June 9, 2020