πΌ CM-7(4) Least Functionality | Unauthorized Software β Deny-by-exception
- Contextual name: πΌ CM-7(4) Least Functionality | Unauthorized Software β Deny-by-exception
- ID:
/frameworks/nist-sp-800-53-r5/cm/07/04 - Located in: πΌ CM-7 Least Functionality
Descriptionβ
(a) Identify [Assignment: organization-defined software programs not authorized to execute on the system]; (b) Employ an allow-all, deny-by-exception policy to prohibit the execution of unauthorized software programs on the system; and (c) Review and update the list of unauthorized software programs [Assignment: organization-defined frequency].
Similarβ
- Internal
- ID:
dec-c-457fa627
- ID:
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|