Application Whitelisting: Enhancing Host Security

by Dave Shackleford Sept. 1, 2017 via SANS Institute

Today’s host-based security tools are facing an unprecedented number of issues, stemming largely from the increasing complexity and volume of enterprise applications, and threats to these applications. For more than a decade, organizations have applied blacklisting—blocking and alerting applications and behaviors based on signatures and heuristics—to protect their networks and, later, their end point systems.