2.6: Allowlist Authorized Libraries
CSF v1.1 References:
Threats Addressed:
Previous Version:
- Critical Security Controls Version 7.1:
- 2.8: Implement Application Whitelisting of Libraries
Control Statement
Use technical controls to ensure that only authorized software libraries, such as specific .dll, .ocx, .so, etc., files, are allowed to load into a system process. Block unauthorized libraries from loading into a system process. Reassess bi-annually, or more frequently.
[csf.tools Note: For more information on the Critical Security Controls, visit the Center for Internet Security.]