Application Whitelisting Using Microsoft AppLocker

Abstract: This guide describes Microsoft AppLocker settings recommended by the NSA’s Information Assurance Directorate (IAD) for deploying location-based application whitelisting on your network. Alternative application whitelisting implementations that may support your organizational needs are commercially available. These alternative implementations may provide support to multiple different operating system platforms for a fee. This guide also provides administrators with a walkthrough on how to use AppLocker and implement the settings. Using AppLocker for application whitelisting enforcement will not stop all malicious software. It provides an additional layer in a defense-in-depth strategy. The intent of this guidance is to prevent users from unknowingly or accidentally executing malicious code or unauthorized software.

Date Published:

Last Reviewed: 01 August 2014

Creator: Vulnerability Solutions

Dissemination Control: N/A

Length: 51 page(s)

Format: pdf

Type: Guide/Plan; Configuration Guide; Reference/Overview; Report

Tags: Application Whitelisting; Microsoft; Applocker