Abstract: This guide describes Microsoft AppLocker settings recommended by the NSA’s Information Assurance Directorate (IAD) for deploying location-based application whitelisting on your network. Alternative application whitelisting implementations that may support your organizational needs are commercially available. These alternative implementations may provide support to multiple different operating system platforms for a fee. This guide also provides administrators with a walkthrough on how to use AppLocker and implement the settings. Using AppLocker for application whitelisting enforcement will not stop all malicious software. It provides an additional layer in a defense-in-depth strategy. The intent of this guidance is to prevent users from unknowingly or accidentally executing malicious code or unauthorized software.
Date Published: 01 August 2014
Last Reviewed: 01 August 2014
Creator: Vulnerability Solutions
Dissemination Control: N/A
Length: 51 page(s)