Application whitelisting has identified as the top security essential tool by Business IT. Application whitelisting implements a security method that, if utilized correctly, will only allow trusted programs to run. Since malware is not a trusted program, the executable will not be allowed to run. Theoretically. this will eliminate malware infections on PCs that are using this whitelisting technology.
There are, however, some reservations with using application whitelisting. First, is the increased workload for the PC user, or IT departments. With the use of whitelisting, any program or file that has not been tested and proven safe, will be categorized as “unknown”. These applications will not be able to run until they are added to the whitelist. Some solutions that include whitelisting leave the testing of “unknown” files, to the user or IT pros. Clearly, this is not ideal because there could be multiple files that need to be tested on a daily basis. However, not all security solutions that use application whitelisting leave the testing up to the users. PC Matic and PC Matic Pro will send the “unknown” files to their malware research team. Within 24 hours, these files are tested and categorized as either safe or malicious. Therefore, no additional work for the user or IT departments.
Another concern with whitelisting is classifying good files as “unknown”. This is called a false positive. With the use of application whitelisting, false positives do occur. However, many users feel the increased security against malware is a fair trade-off, for the occasional false positive.
You can learn more about application whitelisting here.
5,823 total views, 6 views today