Application control is a core strategy used by businesses to prevent cyber-attacks; with the overall goal to completely prevent any malicious code from accessing and running automatically on a computer or network. Malware can enter a system through a variety of applications, including executables, software libraries, scripts and installers.
The process of controlling involves generating an index (or list) of approved applications which are allowed to run in trusted locations on a computer network. This means, any application not on this list cannot run, and thus, cannot install malware.
Many organizations implement blacklisting, which is the process of preventing certain known programs from running. Whilst important, this process is not as thorough as controlling as it will only stop known malware and malicious applications. Controlling takes security measures to the next level; however, it can be much harder to establish than a blacklist.
A key barrier to establishing a control for applications is it can be incredibly time-consuming in identifying all the trusted applications you wish your computer to run.
Our GOLD and above CSMS packages include a custom-built application control tool, which has been designed to allow rapid identification of acceptable codes and files to run on computers and networks.