Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 12 Next »

AppLocker, which is built in to Windows 7 Enterprise and later, prevents unknown programs from running unless installed or otherwise pre-cleared by an admin first. This is increasingly necessary because even antivirus companies are publicly saying that antivirus provides little protection against current malware. Rather than attempt to enumerate what's bad, application whitelisting technologies like AppLocker enumerate what's good, and deny everything else. This turns out to be less difficult than it sounds.

Current Status

A "reporting-only" AppLocker policy is in place for most campus computers. The policy is maintained by Information Security.

Selected Business Office and ITS computers have been placed in an organizational unit (OU) that blocks unapproved programs.

References For Understanding AppLocker

(Yes, AppLocker makes even more sense for servers, which run a more predictable set of software.)

  • No labels