10.5: Enable Anti-Exploitation Features

CSF v1.1 References:

DE.CM-4

Threats Addressed:

Elevation of Privilege

Group:

Previous Version:

Critical Security Controls Version 7.1:
8.3: Enable Operating System Anti-Exploitation Features/Deploy Anti-Exploit Technologies

Control Statement

Enable anti-exploitation features on enterprise assets and software, where possible, such as Microsoft® Data Execution Prevention (DEP), Windows® Defender Exploit Guard (WDEG), or Apple® System Integrity Protection (SIP) and Gatekeeper™.

[csf.tools Note: For more information on the Critical Security Controls, visit the Center for Internet Security.]

Control Statement

Related Controls

NIST Special Publication 800-53 Revision 5

NIST Special Publication 800-53 Revision 4