2.9: Implement Application Whitelisting of Scripts

CSF v1.1 References:

PF v1.0 References:

Threats Addressed:


Info icon.

The next version of the control set incorporates all or part of this control into: 2.7: Allowlist Authorized Scripts.

Control Statement

The organization’s application whitelisting software must ensure that only authorized, digitally signed scripts (such as *.ps1, *.py, macros, etc.) are allowed to run on a system.

[csf.tools Note: For more information on the Critical Security Controls, visit the Center for Internet Security.]