💼 CM-7(4) Least Functionality | Unauthorized Software — Deny-by-exception

Contextual name: 💼 CM-7(4) Least Functionality | Unauthorized Software — Deny-by-exception
ID: /frameworks/nist-sp-800-53-r5/cm/07/04
Located in: 💼 CM-7 Least Functionality

Description

(a) Identify [Assignment: organization-defined software programs not authorized to execute on the system]; (b) Employ an allow-all, deny-by-exception policy to prohibit the execution of unauthorized software programs on the system; and (c) Review and update the list of unauthorized software programs [Assignment: organization-defined frequency].

Similar

Internal
- ID: dec-c-457fa627

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags

Description​

Similar​

Sub Sections​

Description

Similar

Sub Sections