8.3: Enable Operating System Anti-Exploitation Features/Deploy Anti-Exploit Technologies

CSF v1.1 References:

PR.IP-1

PF v1.0 References:

PR.PO-P1

Threats Addressed:

Elevation of Privilege

Group:

Next Version:

Critical Security Controls Version 8:
10.5: Enable Anti-Exploitation Features

Control Statement

Enable anti-exploitation features such as Data Execution Prevention (DEP) or Address Space Layout Randomization (ASLR) that are available in an operating system or deploy appropriate toolkits that can be configured to apply protection to a broader set of applications and executables.

[csf.tools Note: For more information on the Critical Security Controls, visit the Center for Internet Security.]

Control Statement

Related Controls

NIST Special Publication 800-53 Revision 5

NIST Special Publication 800-53 Revision 4